Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/dw6cLcq-3px5ns328TBfhm9IHns.roa
File: dw6cLcq-3px5ns328TBfhm9IHns.roa (raw, json)
Hash identifier: LGvESQs95/8wBiubWecJESVOPycFLqCE9WSalmVmSjM=
Subject key identifier: 77:0E:9C:2D:CA:BE:DE:9C:79:9E:CD:F6:F1:30:5F:86:6F:48:1E:7B
Certificate issuer: /CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Certificate serial: 018CC2DAF526D7E5180458F2E63DEB9891FD
Authority key identifier: 3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/dw6cLcq-3px5ns328TBfhm9IHns.roa
Signing time: Mon 01 Jan 2024 02:29:38 +0000
ROA not before: Mon 01 Jan 2024 02:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12859
IP address blocks: 178.22.57.0/24 maxlen: 24
178.22.56.0/21 maxlen: 21
178.22.58.0/24 maxlen: 24
178.22.56.0/24 maxlen: 24
178.22.60.0/24 maxlen: 24
178.22.61.0/24 maxlen: 24
178.22.59.0/24 maxlen: 24
178.22.62.0/24 maxlen: 24
178.22.63.0/24 maxlen: 24
45.153.16.0/24 maxlen: 24
45.153.16.0/23 maxlen: 23
45.153.17.0/24 maxlen: 24
185.31.246.0/24 maxlen: 24
185.31.244.0/22 maxlen: 22
185.31.244.0/24 maxlen: 24
185.31.245.0/24 maxlen: 24
185.31.247.0/24 maxlen: 24
2a00:1e28::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/PeSbGET-RCKvvhDN0oGcdEgnfmU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/PeSbGET-RCKvvhDN0oGcdEgnfmU.mft
rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:f5:26:d7:e5:18:04:58:f2:e6:3d:eb:98:91:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Validity
Not Before: Jan 1 02:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=770e9c2dcabede9c799ecdf6f1305f866f481e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:05:75:06:89:b8:d5:c3:2e:13:12:9b:a5:07:
51:08:73:a1:50:b8:6b:b1:fd:ca:a3:be:e3:a4:4f:
ff:b9:eb:ab:f2:c0:d7:66:15:36:02:d7:a3:ed:4d:
8c:23:03:d6:e1:73:95:be:3a:af:4b:2a:2f:08:3e:
b5:44:a1:4e:0c:a1:23:a9:41:ba:4a:8f:b8:10:16:
1b:1f:a8:e1:8f:d6:5c:12:4d:4b:76:57:1d:9e:d8:
22:7d:0e:e5:f5:02:3e:dc:88:e3:de:4d:df:d6:71:
53:3b:96:c2:a2:b3:09:70:95:cc:a6:24:f8:8b:53:
c9:ba:7d:e4:91:b9:b7:47:77:60:d4:3d:6a:99:5e:
b8:90:53:ba:75:58:f9:4c:50:28:0b:6c:99:a3:49:
d6:b8:dc:fe:f2:8b:e3:7f:4a:b2:fd:17:63:bc:e2:
bd:50:a0:f7:cb:c7:89:d7:b7:af:17:ad:ae:28:6d:
90:d9:a4:1e:70:df:30:90:d4:21:ae:54:35:c8:41:
6c:c2:92:74:0f:75:0a:8f:20:a6:2d:d3:4e:f6:2c:
81:6d:10:f9:d8:04:08:cf:81:db:3e:49:07:bc:ee:
17:5a:05:84:59:4a:17:b5:1a:79:e9:c5:3e:98:97:
b6:eb:a9:b1:92:cd:d5:07:9d:47:88:3d:f1:ab:c7:
72:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0E:9C:2D:CA:BE:DE:9C:79:9E:CD:F6:F1:30:5F:86:6F:48:1E:7B
X509v3 Authority Key Identifier:
keyid:3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/dw6cLcq-3px5ns328TBfhm9IHns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/PeSbGET-RCKvvhDN0oGcdEgnfmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.16.0/23
178.22.56.0/21
185.31.244.0/22
IPv6:
2a00:1e28::/32
Signature Algorithm: sha256WithRSAEncryption
97:11:99:93:67:7c:d7:ca:92:fb:1a:08:79:62:25:8e:11:a9:
a4:eb:e3:12:4f:e2:3a:61:69:33:ac:1d:98:50:61:9a:44:4c:
a0:6c:21:51:13:d8:a8:0f:b7:cb:56:e1:02:62:fa:42:d2:46:
8c:ee:26:e1:b4:e4:49:19:d1:78:29:6f:a6:8c:20:58:99:5f:
a4:a1:95:5b:b7:e5:c5:68:84:fd:99:a8:7e:e5:b5:9a:aa:2a:
b4:4d:2e:95:d9:9e:50:3c:5d:66:d7:df:84:7d:e8:e4:e8:f8:
0f:6a:2e:75:fc:35:b6:a2:77:ea:89:22:59:7e:59:31:8b:3d:
f5:04:5a:21:51:d5:85:81:1b:e1:65:ff:a3:6a:50:ca:73:5e:
e1:6b:89:c7:3e:13:fd:33:a0:b5:a6:32:3e:02:f3:15:99:84:
ba:89:0b:8f:9a:f3:e5:6c:8d:b5:ed:c3:d4:1c:12:06:22:50:
02:c9:81:b7:bb:68:ab:00:ac:4d:0e:ad:61:00:34:06:41:d6:
5a:bc:38:c7:14:0e:c0:e7:7a:d3:d2:57:25:49:19:a3:fe:b0:
e5:42:93:6b:10:84:a8:e1:78:06:55:63:62:e0:4b:39:97:6c:
c6:18:33:02:b7:c4:b8:cd:1c:93:e1:b2:a9:6e:14:8a:7a:2d:
f2:f0:6e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:00:05 2024 by rpki-client on console-ams.rpki-client.org