Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/6RHh7E7mRpZ2waqVsH11U5mZEPo.roa
File: 6RHh7E7mRpZ2waqVsH11U5mZEPo.roa (raw, json)
Hash identifier: ypPqnd9Xdckm/heGnRcdzStghoFuTFQ+6x3n8LUWEtQ=
Subject key identifier: E9:11:E1:EC:4E:E6:46:96:76:C1:AA:95:B0:7D:75:53:99:99:10:FA
Certificate issuer: /CN=3e332dd2994c6ee89436158a2eac1f482922cd2a
Certificate serial: 018CEB0D84CFACC48AA5A67AAFC9C6BD918B
Authority key identifier: 3E:33:2D:D2:99:4C:6E:E8:94:36:15:8A:2E:AC:1F:48:29:22:CD:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/6RHh7E7mRpZ2waqVsH11U5mZEPo.roa
Signing time: Mon 08 Jan 2024 21:49:40 +0000
ROA not before: Mon 08 Jan 2024 21:49:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205049
IP address blocks: 185.230.43.0/24 maxlen: 24
185.230.41.0/24 maxlen: 24
185.230.42.0/24 maxlen: 24
185.230.40.0/24 maxlen: 24
185.230.40.0/22 maxlen: 22
2a13:3682::/32 maxlen: 32
2a13:3686::/32 maxlen: 32
2a13:3687::/32 maxlen: 32
2a13:3681::/32 maxlen: 32
2a13:3684::/32 maxlen: 32
2a13:3680::/32 maxlen: 32
2a13:3683::/32 maxlen: 32
2a13:3685::/32 maxlen: 32
2a13:3680::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/PjMt0plMbuiUNhWKLqwfSCkizSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/PjMt0plMbuiUNhWKLqwfSCkizSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:eb:0d:84:cf:ac:c4:8a:a5:a6:7a:af:c9:c6:bd:91:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e332dd2994c6ee89436158a2eac1f482922cd2a
Validity
Not Before: Jan 8 21:49:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e911e1ec4ee6469676c1aa95b07d7553999910fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:41:51:79:58:fe:49:47:a4:59:0a:ec:74:62:
3a:c7:b0:17:57:8a:b3:b4:42:3a:48:9f:da:07:c4:
ab:82:e2:aa:44:ac:67:27:50:11:5d:0c:80:48:13:
1a:c1:4b:ed:f8:fd:ad:3b:fe:d0:19:84:ca:11:08:
d2:89:00:6c:c5:9a:ee:7f:aa:4c:13:ed:ef:bb:d1:
e1:e2:41:7f:f5:66:eb:10:97:5b:ba:bb:89:a4:76:
f7:b1:73:f4:08:82:1f:82:09:ef:16:15:fd:99:a0:
23:f2:bf:12:18:92:ad:a6:2e:57:26:ed:bc:7b:8e:
9f:ee:31:23:ac:07:67:6a:49:ca:f1:94:3a:e2:7d:
11:63:c4:e3:2f:02:f4:64:bf:c7:09:6e:87:39:0e:
b4:ac:da:9b:89:cd:a9:ed:45:04:6e:d8:a9:af:e2:
78:72:a3:f8:80:9b:2d:9f:d4:cc:64:f0:5f:98:f9:
d7:b8:e8:74:cf:7b:6e:42:ca:8a:33:3e:de:c0:5d:
cd:b1:a2:08:12:59:cf:cf:07:99:bc:c0:4a:4a:55:
5a:a0:8e:16:71:73:bd:41:10:c3:ab:97:9c:77:ec:
4b:26:e1:9f:96:fd:41:37:49:72:82:fa:08:f4:18:
56:a4:cb:17:83:dd:77:d2:cf:78:87:ab:a0:fe:be:
77:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:11:E1:EC:4E:E6:46:96:76:C1:AA:95:B0:7D:75:53:99:99:10:FA
X509v3 Authority Key Identifier:
keyid:3E:33:2D:D2:99:4C:6E:E8:94:36:15:8A:2E:AC:1F:48:29:22:CD:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/6RHh7E7mRpZ2waqVsH11U5mZEPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/PjMt0plMbuiUNhWKLqwfSCkizSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.40.0/22
IPv6:
2a13:3680::/29
Signature Algorithm: sha256WithRSAEncryption
78:f5:d7:4e:46:39:0b:00:dc:0b:40:0a:42:a9:64:8c:87:a9:
99:1f:57:a4:95:3c:a7:43:a3:98:9f:70:85:d3:ac:d0:86:74:
c7:73:eb:a2:91:be:6b:d5:c2:c1:e5:69:73:a0:b7:98:a9:4e:
ce:3f:9e:e6:fe:2d:64:db:35:8b:7c:63:6d:38:38:ba:59:85:
08:2a:8d:87:14:91:ae:ce:c8:33:39:e3:47:26:75:1d:4c:a0:
94:1e:ae:95:62:b4:3c:d3:25:72:64:3c:9d:b4:d3:cb:23:92:
02:a0:8f:a9:fd:94:72:5c:6b:76:1d:d9:74:0f:6a:4e:7b:c8:
37:54:07:1e:ee:c0:08:ef:38:79:b1:36:3b:06:da:c2:74:70:
78:99:a0:2f:44:58:aa:3c:66:dd:11:3b:87:e0:83:f2:85:7a:
73:9f:2e:f6:d9:c4:9b:19:2d:c1:23:19:93:26:3a:73:38:bd:
03:9f:5f:24:f5:08:56:f4:c9:d4:70:bc:d9:34:49:84:06:de:
cf:fb:52:82:f4:16:8e:66:dc:54:05:9e:2a:7a:86:31:90:84:
0d:df:35:ec:bc:40:b6:41:6c:1b:7a:70:09:64:28:dd:5b:fd:
3e:95:b7:8b:31:30:e5:d9:63:5d:eb:bf:9a:41:b7:f8:12:66:
c2:15:14:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 10:18:05 2024 by rpki-client on console-fra.rpki-client.org