Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/V6pVJZJ6yDMZjAXJ9EFLhsWENi4.roa
File: V6pVJZJ6yDMZjAXJ9EFLhsWENi4.roa (raw, json)
Hash identifier: 6lclZlZe/Ag5EUvKVPf9kwVOiUc2V4olXLHaCJBLzB0=
Subject key identifier: 57:AA:55:25:92:7A:C8:33:19:8C:05:C9:F4:41:4B:86:C5:84:36:2E
Certificate issuer: /CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Certificate serial: 018FF2F44C7FFB2F63FF3065F159B897AE27
Authority key identifier: DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/V6pVJZJ6yDMZjAXJ9EFLhsWENi4.roa
Signing time: Fri 07 Jun 2024 13:47:27 +0000
ROA not before: Fri 07 Jun 2024 13:47:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213354
IP address blocks: 86.111.224.0/24 maxlen: 24
86.111.225.0/24 maxlen: 24
86.111.226.0/24 maxlen: 24
86.111.227.0/24 maxlen: 24
86.111.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.mft
rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f2:f4:4c:7f:fb:2f:63:ff:30:65:f1:59:b8:97:ae:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Validity
Not Before: Jun 7 13:47:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57aa5525927ac833198c05c9f4414b86c584362e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a7:69:17:74:f4:61:99:ae:17:ec:ef:6c:01:
90:60:69:67:fd:23:c5:b2:c7:7b:78:bb:f1:67:93:
6d:22:a4:89:96:86:a7:8f:df:63:20:51:f4:f8:3b:
0f:fd:3f:7f:2a:52:53:e3:c4:fc:46:d0:43:18:d1:
11:d9:ef:c8:ae:cf:a2:7b:c7:35:d1:8a:24:62:b2:
d4:a0:92:cc:77:a1:82:e5:db:f4:5f:b9:53:f1:ce:
b4:4c:5d:49:c5:e7:97:b4:56:df:7f:72:d1:66:cd:
38:04:4f:99:c0:9d:26:26:90:d0:f5:a0:6d:a8:6b:
2d:01:f1:fc:d7:93:df:a2:0a:ab:bd:55:0d:52:ad:
94:6e:0e:75:7c:7c:07:58:0d:c9:21:a1:7a:0a:39:
f3:d7:a7:c8:05:c9:8c:f1:3f:a1:26:ff:77:03:ee:
e9:73:c3:2e:dd:4c:cc:54:2d:13:c9:89:12:ad:47:
90:d7:71:aa:b1:df:6b:c6:2d:70:7e:b9:a9:95:29:
03:db:72:d4:89:4b:7b:e9:9e:b9:75:fc:af:9a:72:
26:6e:ef:98:58:2a:bb:20:9f:60:9e:66:49:42:d1:
d4:bf:7e:84:dd:7b:18:01:99:f9:1e:84:dd:5c:6a:
ef:74:0a:c0:14:b0:16:6a:d7:fc:e5:72:aa:62:73:
88:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:AA:55:25:92:7A:C8:33:19:8C:05:C9:F4:41:4B:86:C5:84:36:2E
X509v3 Authority Key Identifier:
keyid:DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/V6pVJZJ6yDMZjAXJ9EFLhsWENi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.224.0/22
86.111.229.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d0:14:9e:dc:54:60:81:59:c2:08:68:0a:0d:82:76:c3:3c:
ea:a7:77:9e:e8:45:ed:a6:7b:6c:6c:1f:0e:25:08:94:f9:d6:
d6:d3:fe:25:9a:c1:de:35:81:49:86:29:71:06:55:6c:60:16:
16:f2:4f:ec:9b:44:e7:29:ce:08:3f:c7:69:c1:0e:73:cb:3a:
b4:98:94:75:0d:88:2f:2e:8a:9d:d6:4d:a7:19:0b:12:ee:10:
e2:e4:7f:97:9f:99:9b:95:51:9b:57:c8:c9:b8:27:7b:4c:e0:
bd:16:d6:46:78:9a:14:44:bd:74:50:29:60:d9:12:1e:49:46:
b5:8a:e4:31:a5:15:41:a1:d2:bf:a9:8b:0b:b3:9a:51:06:3e:
77:61:ec:ac:5a:63:f1:6a:df:bb:7b:4f:e1:e2:89:a3:4d:95:
43:72:9d:4f:4d:d8:b5:66:fb:d6:ad:ea:94:b7:13:4f:de:91:
c4:89:21:d1:fc:b4:35:60:d4:1f:65:47:df:ed:b9:dd:d4:1f:
ed:7a:48:95:4a:c3:31:61:28:58:02:35:2d:29:f0:83:48:df:
5c:66:43:f5:8c:e6:5a:56:43:c7:fa:ae:ec:9a:aa:ca:dc:d4:
f9:5d:fc:b1:9c:e7:97:00:ff:89:f5:48:3c:c2:ec:b4:f8:86:
76:b7:aa:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:19:00 2024 by rpki-client on console-ams.rpki-client.org