Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/Xce6fa6kObjbfmLd_ZgwwOvlJvw.roa
File: Xce6fa6kObjbfmLd_ZgwwOvlJvw.roa (raw, json)
Hash identifier: hbq0s9pHFZ9S1TpN6gFmkoFpeTmZ2FosX5M//Q2GuNM=
Subject key identifier: 5D:C7:BA:7D:AE:A4:39:B8:DB:7E:62:DD:FD:98:30:C0:EB:E5:26:FC
Certificate issuer: /CN=5f1aa6a92931bfc7e14007c47c949cd5ee3e980f
Certificate serial: 018CC8021BD9AF2697BFF85810DD214EFE3B
Authority key identifier: 5F:1A:A6:A9:29:31:BF:C7:E1:40:07:C4:7C:94:9C:D5:EE:3E:98:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxqmqSkxv8fhQAfEfJSc1e4-mA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/Xce6fa6kObjbfmLd_ZgwwOvlJvw.roa
Signing time: Tue 02 Jan 2024 02:30:30 +0000
ROA not before: Tue 02 Jan 2024 02:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35319
IP address blocks: 91.222.36.0/22 maxlen: 22
185.181.16.0/22 maxlen: 22
195.140.160.0/22 maxlen: 22
91.226.44.0/23 maxlen: 23
185.137.218.0/23 maxlen: 23
185.137.216.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/XxqmqSkxv8fhQAfEfJSc1e4-mA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/XxqmqSkxv8fhQAfEfJSc1e4-mA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XxqmqSkxv8fhQAfEfJSc1e4-mA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 16:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:1b:d9:af:26:97:bf:f8:58:10:dd:21:4e:fe:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1aa6a92931bfc7e14007c47c949cd5ee3e980f
Validity
Not Before: Jan 2 02:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5dc7ba7daea439b8db7e62ddfd9830c0ebe526fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5d:5e:c4:17:db:1d:8d:34:4d:37:f4:2c:3f:
79:f3:48:3c:34:78:d2:0f:70:3a:11:6f:7a:31:74:
17:7f:66:75:70:3c:9b:2e:95:cf:41:84:37:98:b2:
85:f2:36:c6:08:33:be:be:43:ec:24:b8:db:9a:ea:
b9:36:e6:97:fa:c9:23:25:dd:26:fa:5f:5b:48:9d:
ab:95:68:70:eb:3e:7a:db:35:1b:74:70:0f:c1:57:
2a:b9:26:a2:74:b6:14:f8:26:48:66:ae:3f:eb:6c:
60:3d:0d:80:f3:71:da:70:b0:44:59:35:3a:ca:86:
a1:29:dc:d8:ae:6a:ec:9f:f1:82:c3:26:39:b8:12:
65:51:8c:2e:00:1f:33:79:cc:24:6d:50:ed:8a:7b:
fc:99:cd:43:5d:29:71:e7:f2:4f:58:d0:de:6e:87:
d5:44:79:e2:5e:87:e5:1d:07:42:87:a5:1a:2b:2d:
c8:0d:d6:67:e8:90:6a:98:2a:8d:d5:92:28:1f:89:
7b:e7:99:05:05:4c:81:e4:c9:f6:53:2a:b7:36:9d:
b4:eb:8c:4a:b7:38:aa:6f:c2:69:cd:30:8e:f4:9d:
8d:6f:43:4d:cb:da:b3:4a:a5:2f:df:27:cc:80:ed:
d5:0a:fc:3f:c4:04:3e:ba:95:cb:e8:c0:12:17:10:
1f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C7:BA:7D:AE:A4:39:B8:DB:7E:62:DD:FD:98:30:C0:EB:E5:26:FC
X509v3 Authority Key Identifier:
keyid:5F:1A:A6:A9:29:31:BF:C7:E1:40:07:C4:7C:94:9C:D5:EE:3E:98:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxqmqSkxv8fhQAfEfJSc1e4-mA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/Xce6fa6kObjbfmLd_ZgwwOvlJvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/XxqmqSkxv8fhQAfEfJSc1e4-mA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.36.0/22
91.226.44.0/23
185.137.216.0/22
185.181.16.0/22
195.140.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:fa:1c:b2:d7:28:17:ac:8d:4f:53:12:80:01:40:b0:1d:80:
8b:4c:b8:be:ef:6a:b3:f9:a5:fb:7b:d2:a9:28:82:a5:73:8c:
e8:26:2e:85:70:a5:38:30:1f:09:5d:5f:3b:8b:9f:3c:6d:33:
53:73:42:23:32:3b:ba:e4:69:7a:9d:69:1d:0d:be:20:db:e1:
80:e2:a1:0c:8d:16:1f:01:e9:75:16:57:2d:16:4e:39:17:1e:
6e:4d:52:7d:fb:54:5f:95:b9:f4:ab:d2:17:0d:4a:f7:c4:39:
42:f8:b7:3a:8a:87:9c:01:f5:fe:80:a7:35:27:33:98:13:43:
4b:b9:ba:3b:99:ec:80:b6:e1:e6:d1:0d:b1:df:9f:04:91:2a:
b4:2d:09:35:58:a2:3f:34:8d:10:d6:da:9c:86:a6:17:c1:34:
48:85:bb:04:ed:a5:ac:e8:51:3c:f9:9d:6b:db:25:da:25:9f:
76:1a:e7:00:60:dc:36:06:fc:19:f0:af:bf:e9:e6:55:e0:2e:
7a:77:74:ff:4e:6f:bd:7c:4f:f4:9d:26:6e:46:7c:1f:c4:bf:
a9:08:1b:68:f1:79:1b:fe:32:1e:f9:5f:7b:23:20:b2:48:94:
95:98:d4:01:91:37:70:d1:2d:53:fb:17:17:58:d3:0a:22:3d:
a6:06:66:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:37:42 2024 by rpki-client on console-ams.rpki-client.org