Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/iRk6QrKBCVrFoRZfuf8icR2GUZ8.roa
File: iRk6QrKBCVrFoRZfuf8icR2GUZ8.roa (raw, json)
Hash identifier: PXPhvmAzmAp7edcSCK4tHlVtrRZd6oUbk6BwWn3AvKo=
Subject key identifier: 89:19:3A:42:B2:81:09:5A:C5:A1:16:5F:B9:FF:22:71:1D:86:51:9F
Certificate issuer: /CN=58bb54987639ba0c6cfbcad598c3f5e39fca945c
Certificate serial: 018CC94BE80BFA9625F76AE0DC92B8939E3A
Authority key identifier: 58:BB:54:98:76:39:BA:0C:6C:FB:CA:D5:98:C3:F5:E3:9F:CA:94:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLtUmHY5ugxs-8rVmMP145_KlFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/iRk6QrKBCVrFoRZfuf8icR2GUZ8.roa
Signing time: Tue 02 Jan 2024 08:30:44 +0000
ROA not before: Tue 02 Jan 2024 08:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59871
IP address blocks: 185.68.68.0/22 maxlen: 22
2a03:2a60:8100::/48 maxlen: 48
2a03:2a60:8000::/48 maxlen: 48
2a03:2a60:8101::/48 maxlen: 48
2a03:2a60:8001::/48 maxlen: 48
2a03:2a60:dc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/WLtUmHY5ugxs-8rVmMP145_KlFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/WLtUmHY5ugxs-8rVmMP145_KlFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLtUmHY5ugxs-8rVmMP145_KlFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 20:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4b:e8:0b:fa:96:25:f7:6a:e0:dc:92:b8:93:9e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bb54987639ba0c6cfbcad598c3f5e39fca945c
Validity
Not Before: Jan 2 08:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89193a42b281095ac5a1165fb9ff22711d86519f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:98:31:02:48:d0:13:12:75:74:ac:76:29:cd:
c4:85:62:50:37:61:9f:29:17:a6:0d:b2:97:37:1f:
a2:c5:d8:3e:aa:2c:82:7d:22:e9:c4:6b:8e:fa:a5:
36:61:fc:1f:db:56:e9:45:22:d6:5f:9c:94:2e:66:
3a:22:69:51:d0:ca:4c:93:31:4d:03:df:0d:dd:e1:
36:15:45:6a:77:a2:94:3d:03:ff:a4:d6:02:de:0d:
73:44:01:83:94:07:f0:e9:7e:e7:2c:ab:cd:7c:90:
1f:b7:1b:44:a6:53:ef:2c:e9:c4:96:cc:61:e5:f8:
be:7b:a7:d0:70:c5:f7:d5:1e:4a:0f:ef:f2:df:bf:
78:22:b2:79:cb:dc:e7:cf:30:e3:41:29:ab:96:42:
aa:f3:58:93:bd:b8:6f:aa:f2:06:47:52:e6:ae:13:
2f:7e:52:71:e7:a2:ff:62:81:65:1a:2b:9d:63:40:
2d:46:a6:b2:cf:7b:35:3e:35:fd:aa:70:6b:88:e2:
1a:a9:39:c6:29:30:5c:f9:51:94:25:8c:2f:6c:83:
5b:59:be:52:d5:9e:96:99:8b:f3:2b:85:3f:3a:75:
3d:b1:a6:72:51:5f:d3:47:8f:54:64:2d:69:15:0e:
a1:e6:d9:d6:29:43:f1:65:da:ea:95:81:ee:4b:1c:
d9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:19:3A:42:B2:81:09:5A:C5:A1:16:5F:B9:FF:22:71:1D:86:51:9F
X509v3 Authority Key Identifier:
keyid:58:BB:54:98:76:39:BA:0C:6C:FB:CA:D5:98:C3:F5:E3:9F:CA:94:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLtUmHY5ugxs-8rVmMP145_KlFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/iRk6QrKBCVrFoRZfuf8icR2GUZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/WLtUmHY5ugxs-8rVmMP145_KlFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.68.0/22
IPv6:
2a03:2a60:dc::/48
2a03:2a60:8000::/47
2a03:2a60:8100::/47
Signature Algorithm: sha256WithRSAEncryption
2e:e7:78:49:58:b1:3c:dc:c7:e2:c5:98:2f:f0:0b:49:3e:dc:
d6:e1:2a:3f:a2:6b:22:bf:f7:ed:09:bb:97:a3:19:c1:8d:4f:
98:f7:d2:e4:8b:29:14:46:ad:30:4a:e0:0c:8b:7c:ec:87:be:
7d:cb:37:62:88:2c:55:8e:e0:e7:29:4c:77:59:b0:b3:7d:53:
37:22:d6:5e:04:10:05:af:03:94:74:5b:d6:e8:59:37:e7:f2:
57:d2:bc:c8:ff:e9:31:2d:98:ce:bf:0a:c7:12:d4:8b:f6:e5:
ea:48:17:5a:52:9a:05:27:10:9b:1f:4d:03:46:40:6a:45:35:
ad:10:c7:52:82:55:21:23:18:d8:ed:53:7b:ed:e4:73:fc:f1:
0e:f9:ee:ea:e7:eb:ad:de:1a:8e:c5:e7:01:07:4b:8a:b8:da:
b1:1d:1c:34:b9:08:54:32:4a:fb:dc:b0:de:ad:ea:25:6f:8e:
eb:d7:29:c6:c3:13:d6:58:64:a9:48:a0:92:91:4a:b3:47:85:
ff:5c:bf:67:1a:4a:a6:8c:42:02:7d:0e:33:d0:d4:2f:91:3b:
8e:d7:ca:8c:d6:2a:f3:39:12:f4:92:de:ef:6e:24:07:05:a5:
ef:39:f0:75:79:a6:29:14:b4:6b:c6:b0:6b:65:1d:f8:22:b3:
aa:97:b7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org