Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/o6E-p1BO6umJn-aQqTZyDpzwQHs.roa
File: o6E-p1BO6umJn-aQqTZyDpzwQHs.roa (raw, json)
Hash identifier: 0LXIr0SloPxX/uBCp0Ra9zynZErE6SFUYtvffCoxYw8=
Subject key identifier: A3:A1:3E:A7:50:4E:EA:E9:89:9F:E6:90:A9:36:72:0E:9C:F0:40:7B
Certificate issuer: /CN=5f1aa6a92931bfc7e14007c47c949cd5ee3e980f
Certificate serial: 018CC8021C65AB3CAC036995B5379FF418C2
Authority key identifier: 5F:1A:A6:A9:29:31:BF:C7:E1:40:07:C4:7C:94:9C:D5:EE:3E:98:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxqmqSkxv8fhQAfEfJSc1e4-mA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/o6E-p1BO6umJn-aQqTZyDpzwQHs.roa
Signing time: Tue 02 Jan 2024 02:30:30 +0000
ROA not before: Tue 02 Jan 2024 02:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48964
IP address blocks: 91.222.36.0/22 maxlen: 22
195.140.160.0/22 maxlen: 22
185.181.16.0/22 maxlen: 22
91.226.44.0/23 maxlen: 23
185.137.216.0/23 maxlen: 23
185.137.218.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/XxqmqSkxv8fhQAfEfJSc1e4-mA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/XxqmqSkxv8fhQAfEfJSc1e4-mA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XxqmqSkxv8fhQAfEfJSc1e4-mA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:1c:65:ab:3c:ac:03:69:95:b5:37:9f:f4:18:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1aa6a92931bfc7e14007c47c949cd5ee3e980f
Validity
Not Before: Jan 2 02:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3a13ea7504eeae9899fe690a936720e9cf0407b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fc:39:29:dc:eb:1f:2d:2a:6a:bc:ae:a6:52:
9b:98:a1:f1:f1:2d:a1:4c:7d:fb:71:a8:93:07:60:
e7:0c:02:f0:93:5e:02:e0:be:6e:55:7d:92:a5:d8:
44:22:de:50:9b:ce:64:bf:e0:87:e6:d1:4a:f8:e8:
40:51:a9:00:33:6f:32:8e:2c:20:d2:cb:cc:b7:5b:
37:ab:cb:e2:62:5a:6f:13:14:7b:25:ba:80:be:5b:
ef:a1:87:37:a9:26:53:ef:8c:fe:fd:e9:09:71:f5:
2a:5f:4a:89:f6:87:b0:e5:75:47:1b:a8:f4:ba:3e:
a6:fd:f3:26:a8:98:aa:b5:ff:6b:62:0d:6a:20:95:
e0:bc:14:b8:45:ca:f8:e6:d6:5a:ec:f5:72:1a:79:
61:af:bc:53:2f:37:b9:e7:a7:12:e9:7d:d9:b4:74:
f4:08:f7:08:c8:68:54:5d:57:86:35:2a:50:1c:1d:
82:2c:94:c5:7e:c9:68:54:77:14:84:62:3b:13:02:
31:01:ef:53:9d:a4:cd:cc:79:8c:fe:fe:07:96:7b:
66:a6:76:e5:ac:57:f2:8c:32:19:94:70:9f:46:88:
51:9c:20:f5:31:7b:c4:de:1c:66:af:da:90:d9:31:
6d:2a:18:0d:6c:35:1f:5e:b7:36:a8:cb:e2:ca:e7:
af:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A1:3E:A7:50:4E:EA:E9:89:9F:E6:90:A9:36:72:0E:9C:F0:40:7B
X509v3 Authority Key Identifier:
keyid:5F:1A:A6:A9:29:31:BF:C7:E1:40:07:C4:7C:94:9C:D5:EE:3E:98:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxqmqSkxv8fhQAfEfJSc1e4-mA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/o6E-p1BO6umJn-aQqTZyDpzwQHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/a0c3db-6545-45a8-a845-bb7ec3c8cde8/1/XxqmqSkxv8fhQAfEfJSc1e4-mA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.36.0/22
91.226.44.0/23
185.137.216.0/22
185.181.16.0/22
195.140.160.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:46:91:b9:dd:02:81:56:cf:92:0e:8e:af:7d:a8:c4:da:0e:
2a:81:53:2e:12:cc:e5:40:7d:df:fc:2e:16:fc:d0:23:d8:b3:
ab:80:ca:c5:ed:4c:9e:0e:47:ea:d8:a3:a7:72:9d:74:50:8a:
38:8f:e4:37:75:67:fc:88:c8:0b:bc:48:5a:47:3d:a3:2b:ac:
c3:6c:2e:aa:53:f9:12:a9:be:c3:93:4c:84:81:19:2e:a0:bb:
8e:ea:1d:7a:46:35:9e:77:a6:af:ba:81:5b:48:56:c6:14:e7:
2a:3a:bb:25:26:16:50:91:67:3b:bf:a7:47:d3:48:49:d7:99:
a6:d2:85:14:19:4a:4f:a3:fb:32:6c:3f:0e:9b:2f:9e:d2:fe:
35:dd:e3:ce:c0:48:d7:3b:4c:5b:b8:b3:b0:91:c1:51:9a:8e:
d2:97:75:d5:09:58:e3:c3:0c:a3:79:bb:6f:19:07:5f:78:39:
13:16:b7:0a:76:af:11:47:69:b6:cd:59:b6:c2:b4:8c:06:37:
6d:e4:7e:98:c3:bb:63:c7:9c:04:60:d6:59:c7:fb:a1:59:7d:
16:58:61:bc:0b:85:30:b3:ed:cd:71:f5:ba:21:83:26:bc:3d:
ca:59:3c:62:c3:fe:80:e5:58:37:82:29:2b:4a:35:33:6f:31:
c1:1c:e9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 03:13:35 2024 by rpki-client on console-fra.rpki-client.org