Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/tsxd5I17r7YoxLYdqe6sUanHTbc.roa
File: tsxd5I17r7YoxLYdqe6sUanHTbc.roa (raw, json)
Hash identifier: plus18pPfscv26gYc9i7oXVnSD3wGUQQEAjGyCuKogI=
Subject key identifier: B6:CC:5D:E4:8D:7B:AF:B6:28:C4:B6:1D:A9:EE:AC:51:A9:C7:4D:B7
Certificate issuer: /CN=5035205c3d01713f9d8b5b00e3539619b2335232
Certificate serial: 018CC348F69A9DD6868E997F2EEFEDF98210
Authority key identifier: 50:35:20:5C:3D:01:71:3F:9D:8B:5B:00:E3:53:96:19:B2:33:52:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDUgXD0BcT-di1sA41OWGbIzUjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/tsxd5I17r7YoxLYdqe6sUanHTbc.roa
Signing time: Mon 01 Jan 2024 04:29:47 +0000
ROA not before: Mon 01 Jan 2024 04:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203622
IP address blocks: 185.26.187.0/24 maxlen: 24
37.18.58.0/24 maxlen: 24
185.129.1.0/24 maxlen: 24
185.129.3.0/24 maxlen: 24
185.129.0.0/24 maxlen: 24
185.129.2.0/24 maxlen: 24
185.26.186.0/24 maxlen: 24
185.26.185.0/24 maxlen: 24
185.26.184.0/24 maxlen: 24
2a0f:7040::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/UDUgXD0BcT-di1sA41OWGbIzUjI.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/UDUgXD0BcT-di1sA41OWGbIzUjI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UDUgXD0BcT-di1sA41OWGbIzUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 19:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f6:9a:9d:d6:86:8e:99:7f:2e:ef:ed:f9:82:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5035205c3d01713f9d8b5b00e3539619b2335232
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b6cc5de48d7bafb628c4b61da9eeac51a9c74db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:41:06:02:af:ce:be:07:12:a9:5d:89:2d:4a:
16:29:84:a7:71:61:69:5d:54:d3:83:65:57:2e:5d:
80:3e:25:ac:06:6f:19:2b:23:e0:68:f6:10:bd:b8:
0f:f8:64:9c:8a:ee:59:32:eb:fa:39:7b:8c:8d:49:
8e:60:ba:4f:4f:db:0f:36:a7:da:a8:26:be:1d:11:
b1:2a:8a:fd:2d:36:01:b6:6f:a0:24:cd:ad:df:e2:
98:ed:89:c8:90:52:6d:38:20:69:b9:07:15:d9:83:
1b:7f:b0:70:d8:0f:84:44:b1:12:15:be:c4:33:2a:
47:46:0a:30:c6:a9:45:46:07:5a:21:75:8b:fe:d7:
26:26:aa:62:5b:46:ea:e6:a2:07:20:3e:db:db:48:
f7:10:91:dd:36:09:85:6d:15:fa:94:23:c2:0f:93:
37:83:4f:01:18:5f:a6:27:51:b7:45:35:75:98:6f:
0c:63:4d:34:7b:39:62:72:16:22:95:43:7e:50:98:
4a:07:89:ae:3c:34:c4:67:24:73:d6:9f:d4:68:2e:
1a:f9:44:86:63:59:72:34:bf:63:1b:49:4e:98:ab:
32:09:ba:c2:c2:e2:fe:b8:25:c2:c8:a3:4b:58:ed:
b1:05:7c:ac:e7:f3:fd:06:0d:db:a7:5a:08:6c:aa:
78:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CC:5D:E4:8D:7B:AF:B6:28:C4:B6:1D:A9:EE:AC:51:A9:C7:4D:B7
X509v3 Authority Key Identifier:
keyid:50:35:20:5C:3D:01:71:3F:9D:8B:5B:00:E3:53:96:19:B2:33:52:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDUgXD0BcT-di1sA41OWGbIzUjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/tsxd5I17r7YoxLYdqe6sUanHTbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/UDUgXD0BcT-di1sA41OWGbIzUjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.58.0/24
185.26.184.0/22
185.129.0.0/22
IPv6:
2a0f:7040::/32
Signature Algorithm: sha256WithRSAEncryption
04:8d:ae:ae:df:28:93:94:fb:29:52:09:d2:41:5a:f5:3a:9a:
65:e4:0f:4f:86:8d:5a:28:d1:9b:eb:75:0b:3b:59:d0:e2:41:
12:e4:45:27:07:76:cf:f4:ed:ed:7e:02:e6:79:87:b5:14:68:
42:d8:38:4c:1a:d0:81:e7:a1:d5:81:4e:c3:57:0c:46:46:fa:
8e:a9:9d:22:e2:b0:f9:64:e2:18:68:ad:49:4d:9c:c2:48:16:
fe:81:27:2f:a0:d5:e8:22:d8:c2:2f:f9:bd:e3:dd:63:82:4a:
b4:6d:d5:84:9a:37:ff:f8:85:f6:47:a0:af:ba:e1:04:ee:67:
37:f0:5b:bd:26:41:79:0b:73:c7:e9:20:b0:9f:71:01:0a:97:
3a:17:5a:c5:76:ec:10:cf:5a:43:f8:e3:dd:3c:bc:59:e5:9a:
47:18:8f:5b:d5:28:1f:45:ad:2a:2f:d7:2f:d7:1f:31:06:c7:
2a:7c:6e:d6:e4:ad:29:0b:f9:0f:c1:aa:f6:9b:64:58:e1:27:
2e:de:19:df:bc:18:cf:c9:89:d5:53:2b:88:38:34:de:7c:ef:
c1:b7:96:dd:e0:d7:16:ef:67:96:74:a4:37:d2:55:11:ef:0e:
65:ac:88:b8:4b:69:cc:ae:f9:db:e6:b8:aa:03:38:c7:ab:13:
ab:5b:f4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:38:22 2024 by rpki-client on console-ams.rpki-client.org