Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/DBCAldEGbiWAuH2s1gvCeJf-oow.roa
File: DBCAldEGbiWAuH2s1gvCeJf-oow.roa (raw, json)
Hash identifier: jrXADyNc2jbSorllNx840ECPquRSMOPyKK0Top7j1Ok=
Subject key identifier: 0C:10:80:95:D1:06:6E:25:80:B8:7D:AC:D6:0B:C2:78:97:FE:A2:8C
Certificate issuer: /CN=70c12309ee98d442ec8a7650127eb0e621894df1
Certificate serial: 018CC5DC411E3A50BDEFE44EA3CB68CD5924
Authority key identifier: 70:C1:23:09:EE:98:D4:42:EC:8A:76:50:12:7E:B0:E6:21:89:4D:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMEjCe6Y1ELsinZQEn6w5iGJTfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/DBCAldEGbiWAuH2s1gvCeJf-oow.roa
Signing time: Mon 01 Jan 2024 16:29:55 +0000
ROA not before: Mon 01 Jan 2024 16:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42692
IP address blocks: 185.164.178.0/24 maxlen: 24
185.164.179.0/24 maxlen: 24
2a0a:ec02:a01::/48 maxlen: 48
2a0a:ec02:c01::/48 maxlen: 48
2a0a:ec02:401::/48 maxlen: 48
2a0a:ec02:701::/48 maxlen: 48
2a0a:ec02:101::/48 maxlen: 48
2a0a:ec02:201::/48 maxlen: 48
2a0a:ec02:ff01::/48 maxlen: 48
2a0a:ec02:301::/48 maxlen: 48
2a0a:ec02:501::/48 maxlen: 48
2a0a:ec02:801::/48 maxlen: 48
2a0a:ec02:b01::/48 maxlen: 48
2a0a:ec02:901::/48 maxlen: 48
2a0a:ec04::/32 maxlen: 32
2a0a:ec02:202::/48 maxlen: 48
2a0a:ec02:902::/48 maxlen: 48
2a0a:ec02:ff00::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/cMEjCe6Y1ELsinZQEn6w5iGJTfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/cMEjCe6Y1ELsinZQEn6w5iGJTfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMEjCe6Y1ELsinZQEn6w5iGJTfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:41:1e:3a:50:bd:ef:e4:4e:a3:cb:68:cd:59:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70c12309ee98d442ec8a7650127eb0e621894df1
Validity
Not Before: Jan 1 16:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c108095d1066e2580b87dacd60bc27897fea28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:cf:ae:66:6f:a8:a4:a8:6f:fd:f8:08:a3:e1:
ef:2a:41:48:a9:67:b2:4f:cd:70:40:af:ae:46:1a:
47:f9:c2:1c:6e:7a:ff:cf:47:77:c2:e2:2c:b2:a7:
35:52:72:26:30:88:3c:8b:6d:9f:92:5e:ba:a1:f6:
cd:1d:52:ad:ab:0f:da:29:c0:d5:d0:54:28:ca:19:
de:0e:26:da:26:fa:a0:fe:5e:9e:2c:0f:ab:a1:7e:
20:3f:b9:d9:e6:1e:1f:0b:fc:7e:a7:25:1d:8f:53:
9a:09:34:3b:fd:eb:c6:c6:84:7c:ad:c9:e5:94:87:
a5:b5:b0:0e:11:b9:24:42:90:8a:ee:e3:67:7d:16:
0c:21:d6:7f:08:2c:0a:da:a5:6e:47:ee:e4:21:dd:
98:aa:ff:04:57:a3:82:ac:fd:c9:45:b8:63:ed:12:
fb:38:9a:b3:c3:37:a6:9a:f3:6c:33:8d:0d:4c:06:
6d:15:cd:f9:f6:af:c9:72:5a:7d:9a:69:5f:5d:d7:
50:bf:04:52:f6:ce:15:22:79:1f:47:05:7e:16:b2:
e4:03:08:c5:09:87:b8:d4:b6:c4:90:97:25:52:10:
2a:83:81:af:0f:39:09:55:a8:39:80:70:72:49:96:
8d:64:f1:5a:bd:0c:ab:d1:2b:77:18:bc:ea:a6:56:
f6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:10:80:95:D1:06:6E:25:80:B8:7D:AC:D6:0B:C2:78:97:FE:A2:8C
X509v3 Authority Key Identifier:
keyid:70:C1:23:09:EE:98:D4:42:EC:8A:76:50:12:7E:B0:E6:21:89:4D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMEjCe6Y1ELsinZQEn6w5iGJTfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/DBCAldEGbiWAuH2s1gvCeJf-oow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/69b290-d375-4e89-8fb5-fb235dba7b18/1/cMEjCe6Y1ELsinZQEn6w5iGJTfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.178.0/23
IPv6:
2a0a:ec02:101::/48
2a0a:ec02:201::-2a0a:ec02:202:ffff:ffff:ffff:ffff:ffff
2a0a:ec02:301::/48
2a0a:ec02:401::/48
2a0a:ec02:501::/48
2a0a:ec02:701::/48
2a0a:ec02:801::/48
2a0a:ec02:901::-2a0a:ec02:902:ffff:ffff:ffff:ffff:ffff
2a0a:ec02:a01::/48
2a0a:ec02:b01::/48
2a0a:ec02:c01::/48
2a0a:ec02:ff00::/47
2a0a:ec04::/32
Signature Algorithm: sha256WithRSAEncryption
88:a7:32:20:f8:16:b1:75:39:5c:94:ec:80:d3:42:b6:c3:51:
67:83:95:85:19:46:56:51:3b:f7:29:89:ea:cf:cb:6f:71:43:
19:22:ff:2b:aa:9f:14:d3:f2:b1:4b:8d:8d:ba:e2:96:4e:b9:
19:59:92:f9:ca:10:63:b4:fc:54:67:ef:36:d1:54:d5:16:b4:
cd:ee:44:f1:04:86:e4:ad:e8:87:67:60:27:39:72:eb:f3:c0:
bc:2f:20:cd:71:51:82:23:18:b6:99:33:1e:eb:21:69:57:b7:
ba:55:f7:04:14:80:f1:64:39:2f:47:1e:4e:2b:6e:a7:e8:08:
fe:38:65:f4:03:11:da:81:3a:c3:4f:92:1f:33:96:19:e3:68:
4d:a1:20:d5:4a:56:37:8b:1c:b7:9b:42:cb:d0:2d:08:11:a5:
e6:74:e3:84:6f:38:b0:97:a6:5b:d7:35:63:9d:e8:1c:c7:0d:
b6:8c:22:1b:66:aa:81:5e:06:c0:61:59:3d:ae:4a:8f:22:4c:
04:8e:47:39:0a:9f:e9:cd:2a:05:a5:74:54:4f:c0:f0:85:93:
53:7e:23:22:d4:be:c1:c8:ee:e7:03:d9:ca:d1:77:2a:48:c8:
66:a1:31:90:ed:f9:07:4b:d0:03:89:46:42:a8:83:fa:95:20:
d2:93:a5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 12:42:40 2024 by rpki-client on console-ams.rpki-client.org