Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/6Ci5zG5tF9RDLNgpsOEdCuZAICY.roa
File: 6Ci5zG5tF9RDLNgpsOEdCuZAICY.roa (raw, json)
Hash identifier: skAeetT44AnR5V3pB0Pj7DmPx24InIJ4YMqaRiyRSVg=
Subject key identifier: E8:28:B9:CC:6E:6D:17:D4:43:2C:D8:29:B0:E1:1D:0A:E6:40:20:26
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 018FC8FC96040D550C9E81F291C9B0E789C1
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/6Ci5zG5tF9RDLNgpsOEdCuZAICY.roa
Signing time: Thu 30 May 2024 10:12:27 +0000
ROA not before: Thu 30 May 2024 10:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 37.114.32.0/24 maxlen: 24
43.251.162.0/24 maxlen: 24
43.251.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 20:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:fc:96:04:0d:55:0c:9e:81:f2:91:c9:b0:e7:89:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: May 30 10:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e828b9cc6e6d17d4432cd829b0e11d0ae6402026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:08:bf:8a:02:fe:4c:62:a5:5b:07:09:1a:e3:
0c:5f:53:75:8b:5a:c6:80:a9:93:83:a6:99:9f:34:
62:80:09:1f:f9:1c:89:90:eb:5e:59:e3:a6:3b:a0:
c5:65:0d:99:c4:6b:0c:73:36:82:ee:44:02:31:19:
a3:92:1d:01:02:74:ab:5b:ce:16:da:a0:f1:e0:78:
f5:6a:40:dc:27:1f:95:79:a1:e2:c5:f4:fb:a8:db:
f3:53:95:e8:75:05:b9:c0:54:30:2a:5c:bc:40:98:
37:21:e8:22:11:04:a8:2b:98:92:57:04:01:31:3c:
34:aa:19:bd:71:2e:01:9b:67:4b:94:56:82:6a:e6:
ab:13:c6:2d:8e:2e:2d:37:ed:3e:09:47:85:31:92:
d9:96:6e:3c:43:a8:81:1a:9b:f2:ae:f7:ff:f8:f0:
62:48:fc:e2:cd:f8:7d:c9:11:b0:1f:85:ec:a7:2d:
4e:be:40:71:0c:94:11:95:27:d3:d5:55:b1:26:2d:
19:9b:7b:1e:81:59:b8:36:f6:d0:27:05:57:67:bb:
4e:16:df:fe:a8:13:ca:5d:9c:30:38:81:e1:71:a1:
a9:5a:48:a4:a4:74:d5:a7:40:6a:6c:3a:66:30:72:
d8:10:06:ec:eb:ff:c8:d1:1c:29:65:5b:8d:88:f0:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:28:B9:CC:6E:6D:17:D4:43:2C:D8:29:B0:E1:1D:0A:E6:40:20:26
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/6Ci5zG5tF9RDLNgpsOEdCuZAICY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.32.0/24
43.251.162.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:cb:87:c7:13:36:56:c2:1e:a6:2d:5e:65:b8:a8:ac:58:7c:
dc:f9:df:21:68:21:33:c0:cc:32:c6:64:86:3e:e8:ba:82:4c:
5a:76:a1:f1:61:32:db:1d:fb:76:f1:b4:58:a6:cc:16:9f:d2:
f5:c1:0a:4e:dc:5a:07:3b:7b:10:c8:91:25:cf:c3:8b:18:e3:
ae:ac:37:39:1c:c0:a8:22:53:16:29:35:2a:59:fc:69:a1:fb:
67:22:61:cd:76:cf:79:45:8f:2d:9f:e7:59:9b:9e:f3:67:d4:
69:d9:22:69:03:7d:82:bd:51:c3:06:43:6e:b5:2b:b0:71:e8:
df:cc:1a:d4:6a:c1:fe:8b:d3:0b:63:a2:f0:f9:ce:2f:6f:09:
9d:3b:2d:39:3d:7d:f9:45:47:5e:4f:ac:ce:06:38:29:51:c0:
5d:fc:db:69:13:53:41:bf:42:fc:6c:ee:7a:2c:fe:cf:82:e4:
dc:15:d5:7c:64:f4:d5:50:d2:4b:ff:ca:83:fb:ec:fd:f2:e8:
71:ed:be:de:6a:63:36:c2:a6:28:47:bb:04:9d:a3:ed:35:8f:
fe:bb:85:3c:69:bb:23:f4:6c:0d:a6:32:c6:06:69:80:de:19:
73:8d:3d:33:82:53:4f:3d:9e:68:22:a8:c5:28:b0:4e:d7:17:
7d:79:3b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 05:34:41 2024 by rpki-client on console-fra.rpki-client.org