Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/6PD_Fy4oCcGH8VWdgiopri_CFeA.roa
File: 6PD_Fy4oCcGH8VWdgiopri_CFeA.roa (raw, json)
Hash identifier: 6NiPOaH1QXrOyYuJe5QOnL9MGM0fAMcuV/+B7WWwpPo=
Subject key identifier: E8:F0:FF:17:2E:28:09:C1:87:F1:55:9D:82:2A:29:AE:2F:C2:15:E0
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01922954AF40B5E27D0C898ABBA3E7B8E0ED
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/6PD_Fy4oCcGH8VWdgiopri_CFeA.roa
Signing time: Wed 25 Sep 2024 13:17:48 +0000
ROA not before: Wed 25 Sep 2024 13:17:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58087
IP address blocks: 37.114.37.0/24 maxlen: 24
37.114.46.0/24 maxlen: 24
37.114.50.0/24 maxlen: 24
37.114.63.0/24 maxlen: 24
185.14.92.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 04:03:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:54:af:40:b5:e2:7d:0c:89:8a:bb:a3:e7:b8:e0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Sep 25 13:17:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8f0ff172e2809c187f1559d822a29ae2fc215e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e6:1c:33:90:1f:12:1a:63:44:87:8c:49:eb:
20:f0:b7:36:6a:37:68:7b:91:b5:99:95:7f:18:d5:
6b:82:88:d4:4f:86:c1:8a:c2:82:a6:aa:da:78:31:
f4:79:dc:f3:44:61:3d:d2:3c:89:f4:e8:56:e8:c8:
de:47:8b:14:51:c7:ae:32:31:53:2f:f0:e1:55:99:
59:b3:c1:7a:f5:9d:a8:d8:80:c7:51:1a:a9:fd:40:
79:37:30:b7:46:83:fc:a1:d0:2a:28:2a:d9:66:ca:
1c:f1:8d:a3:f9:6d:0f:b1:1c:63:ef:66:36:c1:6e:
93:81:bf:e4:b8:c4:93:18:86:99:d4:e1:36:15:a4:
1d:bc:52:9e:f5:6d:1f:1f:b6:c9:1d:f3:f7:56:d4:
79:2d:3d:e8:ae:e9:73:3f:9e:26:4a:d0:5d:25:75:
ab:fa:2d:e2:90:0e:41:0d:55:a1:e7:1a:ea:47:fc:
42:75:b8:a7:80:be:53:a0:d1:08:18:1a:39:24:b7:
1f:6e:56:9c:61:7a:5d:a9:51:72:8c:51:1a:6a:d1:
a8:c7:11:35:07:ab:43:c2:f9:d7:f2:e3:55:88:5b:
39:71:a3:b0:f9:e4:aa:5f:b2:0b:79:56:bf:c0:36:
e6:60:39:68:2f:58:3c:97:ea:aa:32:29:44:f7:0d:
40:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F0:FF:17:2E:28:09:C1:87:F1:55:9D:82:2A:29:AE:2F:C2:15:E0
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/6PD_Fy4oCcGH8VWdgiopri_CFeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.37.0/24
37.114.46.0/24
37.114.50.0/24
37.114.63.0/24
185.14.92.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f9:d5:09:be:93:7f:b0:75:4b:1e:cc:39:61:e5:01:d1:30:
3d:a6:c7:63:cc:d4:95:3a:a8:7f:d6:7a:a8:3a:64:31:d0:2a:
44:24:21:bf:68:44:ea:09:33:e6:1f:7b:6f:5c:f9:10:e4:f5:
b6:9d:cc:82:81:0c:7d:42:73:47:1a:da:74:c2:1a:cd:ad:ae:
e0:7c:4c:9f:08:f8:be:75:0b:46:da:cf:fa:79:b5:79:6f:08:
69:77:8f:2d:43:3c:36:3d:63:ec:7e:2e:5b:6b:62:ba:06:3e:
83:11:b9:04:81:8e:db:77:67:56:d2:e3:35:82:59:8c:89:fc:
6d:0d:ad:62:83:e1:f7:5b:23:a1:cd:a7:fe:c4:26:cf:96:42:
66:35:81:99:74:57:3c:12:e2:37:bb:59:52:d2:02:52:9c:5f:
16:46:93:94:15:1a:ee:86:5a:52:ed:88:a6:91:c1:01:e8:94:
df:9b:a0:9b:77:0a:f0:ad:eb:e4:34:21:bb:69:fd:07:80:cb:
ee:22:04:09:ee:4f:79:5c:d7:dd:74:32:02:30:43:fa:74:49:
7e:3a:b6:c9:28:e1:52:de:9e:8f:54:d1:e7:45:ec:0a:83:be:
fb:e6:30:7a:a1:3f:d8:58:9f:e1:8f:5e:8f:e0:4a:bc:78:d2:
95:10:9d:e4
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZIpVK9AteJ9DImKu6PnuODtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NjU5M2I3NDdlNzZhNTY0OTI1MTFiYjM2MTJlNGQ1ZTRj
YmU3ZWMwHhcNMjQwOTI1MTMxNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGYwZmYxNzJlMjgwOWMxODdmMTU1OWQ4MjJhMjlhZTJmYzIxNWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeYcM5AfEhpjRIeMSesg8Lc2ajdo
e5G1mZV/GNVrgojUT4bBisKCpqraeDH0edzzRGE90jyJ9OhW6MjeR4sUUceuMjFT
L/DhVZlZs8F69Z2o2IDHURqp/UB5NzC3RoP8odAqKCrZZsoc8Y2j+W0PsRxj72Y2
wW6Tgb/kuMSTGIaZ1OE2FaQdvFKe9W0fH7bJHfP3VtR5LT3orulzP54mStBdJXWr
+i3ikA5BDVWh5xrqR/xCdbingL5ToNEIGBo5JLcfblacYXpdqVFyjFEaatGoxxE1
B6tDwvnX8uNViFs5caOw+eSqX7ILeVa/wDbmYDloL1g8l+qqMilE9w1AgQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFOjw/xcuKAnBh/FVnYIqKa4vwhXgMB8GA1UdIwQY
MBaAFCllk7dH52pWSSURuzYS5NXky+fsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1dXVHQwZm5hbFpKSlJHN05oTGsxZVRMNS13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9jNThiZGMtMTRlNy00OTljLTlkOWMt
MWI3Y2JiMDhkNzNmLzEvNlBEX0Z5NG9DY0dIOFZXZGdpb3ByaV9DRmVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9jNThiZGMtMTRlNy00OTljLTlkOWMtMWI3Y2JiMDhkNzNm
LzEvS1dXVHQwZm5hbFpKSlJHN05oTGsxZVRMNS13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAJXIlAwQA
JXIuAwQAJXIyAwQAJXI/AwQAuQ5cMA0GCSqGSIb3DQEBCwUAA4IBAQBj+dUJvpN/
sHVLHsw5YeUB0TA9psdjzNSVOqh/1nqoOmQx0CpEJCG/aETqCTPmH3tvXPkQ5PW2
ncyCgQx9QnNHGtp0whrNra7gfEyfCPi+dQtG2s/6ebV5bwhpd48tQzw2PWPsfi5b
a2K6Bj6DEbkEgY7bd2dW0uM1glmMifxtDa1ig+H3WyOhzaf+xCbPlkJmNYGZdFc8
EuI3u1lS0gJSnF8WRpOUFRruhlpS7YimkcEB6JTfm6CbdwrwrevkNCG7af0HgMvu
IgQJ7k95XNfddDICMEP6dEl+OrbJKOFS3p6PVNHnRewKg7775jB6oT/YWJ/hj16P
4Eq8eNKVEJ3k
-----END CERTIFICATE-----
Generated at Sat Sep 28 08:32:32 2024 by rpki-client on console-ams.rpki-client.org