Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/YK6Q9y2PqjyX9SiS_NlCvV-EDJs.roa
File: YK6Q9y2PqjyX9SiS_NlCvV-EDJs.roa (raw, json)
Hash identifier: 7qVKgsUgqoO8XvNGOjJJpKGBA3CXzaxG/zPKEBHi3oI=
Subject key identifier: 60:AE:90:F7:2D:8F:AA:3C:97:F5:28:92:FC:D9:42:BD:5F:84:0C:9B
Certificate issuer: /CN=ffe70693454bc33485dec69d219d0502654ac04a
Certificate serial: 018F9EDD652D051C4E3E04E5028F7DC47C4D
Authority key identifier: FF:E7:06:93:45:4B:C3:34:85:DE:C6:9D:21:9D:05:02:65:4A:C0:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_-cGk0VLwzSF3sadIZ0FAmVKwEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/YK6Q9y2PqjyX9SiS_NlCvV-EDJs.roa
Signing time: Wed 22 May 2024 05:54:20 +0000
ROA not before: Wed 22 May 2024 05:54:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205847
IP address blocks: 5.181.56.0/24 maxlen: 24
5.181.57.0/24 maxlen: 24
5.181.58.0/23 maxlen: 23
5.181.58.0/24 maxlen: 24
5.181.59.0/24 maxlen: 24
2a0c:a741:1000::/38 maxlen: 38
2a0c:a741:2000::/38 maxlen: 38
2a0c:a741:3000::/38 maxlen: 38
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/_-cGk0VLwzSF3sadIZ0FAmVKwEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/_-cGk0VLwzSF3sadIZ0FAmVKwEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_-cGk0VLwzSF3sadIZ0FAmVKwEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 20:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9e:dd:65:2d:05:1c:4e:3e:04:e5:02:8f:7d:c4:7c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffe70693454bc33485dec69d219d0502654ac04a
Validity
Not Before: May 22 05:54:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60ae90f72d8faa3c97f52892fcd942bd5f840c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b6:41:28:9d:49:84:36:15:ac:ef:8a:8b:79:
02:d1:69:bd:9e:8a:46:79:82:fb:00:99:48:0e:17:
18:ae:ce:ca:96:15:f4:28:d1:54:5a:9d:aa:b8:f1:
71:c5:35:68:84:01:33:56:af:6e:74:c9:1e:1d:e1:
e8:ee:f5:05:fb:fb:90:f1:6c:3b:19:b2:85:97:fc:
24:df:73:f4:0c:08:e0:d8:51:1a:00:8c:39:a3:10:
dc:5a:44:f7:5b:16:38:f8:69:e7:b5:dd:2b:f8:6c:
a7:35:49:b7:1c:f2:aa:a0:01:3b:87:b5:7e:b7:3f:
95:b4:6f:30:7c:f1:7b:97:a4:fd:a7:fc:be:be:92:
bb:11:e5:3c:00:8d:c7:db:0c:d9:28:5a:d0:94:0b:
2f:82:55:13:a8:8b:51:10:bb:07:fa:e9:ff:7a:38:
2e:a2:e4:93:40:6e:54:e3:78:8a:e5:d0:6b:44:3f:
49:7b:cb:9a:07:ae:bd:76:89:82:20:35:52:94:c5:
9a:6d:cb:ba:70:31:ae:5e:c4:a9:41:e9:8f:79:00:
c3:5c:1b:03:d9:d6:09:cf:ae:23:e3:eb:7f:40:89:
d0:29:a2:f7:39:88:40:19:f0:62:44:df:d9:81:2a:
db:a7:3c:bd:2d:28:12:91:8f:b8:4a:2b:1b:18:fe:
79:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AE:90:F7:2D:8F:AA:3C:97:F5:28:92:FC:D9:42:BD:5F:84:0C:9B
X509v3 Authority Key Identifier:
keyid:FF:E7:06:93:45:4B:C3:34:85:DE:C6:9D:21:9D:05:02:65:4A:C0:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_-cGk0VLwzSF3sadIZ0FAmVKwEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/YK6Q9y2PqjyX9SiS_NlCvV-EDJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/_-cGk0VLwzSF3sadIZ0FAmVKwEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.56.0/22
IPv6:
2a0c:a741:1000::/38
2a0c:a741:2000::/38
2a0c:a741:3000::/38
Signature Algorithm: sha256WithRSAEncryption
8b:b7:31:78:3f:e9:6e:d7:b9:4d:2a:05:13:de:77:c2:5e:f7:
b7:c9:92:8b:0e:fd:cd:76:b5:82:44:f6:7c:0c:f4:8e:34:cc:
41:08:e6:9d:e0:63:36:ee:8b:f7:91:7a:88:d0:09:f4:66:78:
e2:f0:f7:1d:e2:00:77:39:b3:92:12:e2:8d:b6:d3:59:d1:ac:
86:1a:0c:95:88:16:0a:1b:8f:3e:47:a1:c6:d3:c8:66:70:bc:
57:54:cf:73:8f:ce:80:64:ce:d2:5a:d6:03:af:7b:ae:e2:a7:
9b:45:c7:a8:0f:b0:41:89:92:a3:51:ab:08:be:55:76:38:f1:
b2:91:bb:6d:05:44:fd:fa:d4:36:22:5c:88:4a:4f:dd:67:ca:
34:c7:59:85:d4:a6:ce:c8:57:16:ce:42:09:c0:52:b9:df:6e:
b2:14:c8:60:14:d0:72:bb:56:bf:11:ab:d3:dd:1c:f6:d9:af:
06:f1:a7:fb:1b:f1:fc:07:68:d8:41:f2:39:55:6c:2d:4e:1f:
49:af:ff:5c:e2:fd:c7:60:ba:27:58:59:5a:8d:28:87:62:51:
1b:f9:27:1f:f5:8d:c2:5c:44:45:e2:bf:73:7f:e0:82:2b:49:
98:2e:e1:25:b0:b4:c4:ea:bf:d0:ff:23:0c:1b:2a:ab:bb:25:
c7:d2:43:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 03:55:05 2024 by rpki-client on console-ams.rpki-client.org