Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/EYvIfdp2ZF19VAwMnUdHxti7azU.roa
File: EYvIfdp2ZF19VAwMnUdHxti7azU.roa (raw, json)
Hash identifier: BRe3tZV2LSkVD89BIXfgm2f7lHC8D4W9YGaUllie6pw=
Subject key identifier: 11:8B:C8:7D:DA:76:64:5D:7D:54:0C:0C:9D:47:47:C6:D8:BB:6B:35
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 018CC64B8D37CCE12CC61FB3D65D556660B6
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/EYvIfdp2ZF19VAwMnUdHxti7azU.roa
Signing time: Mon 01 Jan 2024 18:31:29 +0000
ROA not before: Mon 01 Jan 2024 18:31:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62816
IP address blocks: 185.255.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.mft
rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:8d:37:cc:e1:2c:c6:1f:b3:d6:5d:55:66:60:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jan 1 18:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=118bc87dda76645d7d540c0c9d4747c6d8bb6b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:54:ee:a3:14:f2:a6:ba:59:7a:c6:74:9c:73:
0c:5d:1b:18:f8:bb:59:83:4c:fa:d0:15:c5:55:cc:
93:e7:7b:98:2f:91:7c:e4:6e:c2:01:9d:5e:30:7d:
3a:02:de:24:6e:25:ed:b2:09:ca:c1:e9:62:a4:14:
5e:fd:a1:84:bd:0c:11:5c:ef:4a:35:40:d3:81:66:
f4:ad:e0:60:1f:72:f4:81:db:51:35:4b:4d:5e:00:
5b:13:55:f9:a9:bb:48:d5:75:a9:63:25:8b:d2:30:
63:23:06:e9:85:dc:b7:ab:68:16:27:4b:ee:44:fb:
4c:63:db:d5:8d:5c:21:f0:54:cc:94:26:18:f5:33:
06:df:91:f3:c6:72:1c:17:cd:44:11:11:7f:79:98:
eb:6c:ab:fd:97:c4:a3:88:26:08:e4:01:61:a3:b3:
f4:36:d0:6f:ea:71:1c:17:3b:38:62:4e:3b:f1:8b:
c1:98:2f:16:56:fc:16:7f:15:5e:7f:dd:e1:53:64:
1f:37:cb:3d:7b:fe:d3:42:c0:b3:89:e8:61:9b:12:
d7:7f:c6:38:bb:e0:46:1f:37:56:60:8b:eb:26:f4:
08:cb:50:2a:50:cd:5a:ec:dd:ba:34:e6:5f:d1:22:
14:b2:5c:f8:39:be:a6:ba:22:2b:25:88:46:d8:59:
99:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8B:C8:7D:DA:76:64:5D:7D:54:0C:0C:9D:47:47:C6:D8:BB:6B:35
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/EYvIfdp2ZF19VAwMnUdHxti7azU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.198.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e6:95:9c:93:a2:ce:7c:a4:75:ff:f9:36:0f:99:b5:5b:b5:
55:8c:39:76:40:01:0e:d7:a7:ab:20:ed:c3:cc:c1:e0:d1:ed:
77:7a:99:b4:95:7c:42:c5:d2:d3:5f:0a:18:51:25:4e:0e:5b:
87:7a:37:80:8a:bf:f2:49:50:02:a2:c9:57:20:b8:82:03:6c:
6a:c1:0d:57:33:6e:65:d1:77:1c:a2:c5:bb:f7:b7:8e:46:14:
e9:61:87:3f:4e:21:b6:49:20:a5:79:73:2f:c9:cf:1e:92:02:
d6:4f:01:79:ef:61:5e:eb:ca:79:40:e6:dc:c5:76:82:b2:7f:
c9:22:41:ca:6c:67:11:12:10:8c:ea:b7:dc:9b:db:7f:69:67:
c0:d7:08:3a:5f:96:73:12:5f:26:e3:cd:91:e4:fb:c6:8c:29:
4a:06:c4:d6:26:5d:cc:f7:65:eb:64:bd:7a:5f:9f:5d:f9:2a:
b9:7d:f4:19:cc:e4:9b:80:83:98:ab:52:c5:18:d0:f9:81:95:
3e:10:4a:1d:a3:72:63:c2:91:81:6d:97:dc:2a:a7:2b:d4:50:
83:a2:ef:df:2a:e8:fe:19:97:ec:73:a9:9e:4c:e2:87:ec:43:
63:7f:99:2f:a9:8e:f0:75:4f:8e:90:67:d5:95:03:dd:b9:9c:
78:73:73:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 23:20:04 2024 by rpki-client on console-ams.rpki-client.org