Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/6fe_dmR6VcmPUpH5cGSiK3fjl94.roa
File: 6fe_dmR6VcmPUpH5cGSiK3fjl94.roa (raw, json)
Hash identifier: 5KJd/GixF1WPAg4E0eHjOe+fQdj/Fobh9PyGMEyD/i8=
Subject key identifier: E9:F7:BF:76:64:7A:55:C9:8F:52:91:F9:70:64:A2:2B:77:E3:97:DE
Certificate issuer: /CN=079d9053717a16a76c10ae838f5625055be0481f
Certificate serial: 018F649A2CF6573455C199EC9D51DB6BF7DA
Authority key identifier: 07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/6fe_dmR6VcmPUpH5cGSiK3fjl94.roa
Signing time: Fri 10 May 2024 22:22:56 +0000
ROA not before: Fri 10 May 2024 22:22:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50941
IP address blocks: 178.18.192.0/24 maxlen: 24
178.18.193.0/24 maxlen: 24
178.18.195.0/24 maxlen: 24
178.18.196.0/24 maxlen: 24
178.18.197.0/24 maxlen: 24
178.18.198.0/24 maxlen: 24
178.18.199.0/24 maxlen: 24
178.18.200.0/24 maxlen: 24
178.18.201.0/24 maxlen: 24
178.18.203.0/24 maxlen: 24
178.18.204.0/24 maxlen: 24
178.18.205.0/24 maxlen: 24
178.18.206.0/24 maxlen: 24
178.18.207.0/24 maxlen: 24
185.21.6.0/24 maxlen: 24
185.21.7.0/24 maxlen: 24
185.88.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:64:9a:2c:f6:57:34:55:c1:99:ec:9d:51:db:6b:f7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=079d9053717a16a76c10ae838f5625055be0481f
Validity
Not Before: May 10 22:22:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9f7bf76647a55c98f5291f97064a22b77e397de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:aa:1b:7e:ff:33:91:ef:e6:e2:60:27:5a:56:
a3:f3:26:28:7c:df:f0:f6:47:a8:2e:ce:f0:e8:44:
70:5c:53:25:8a:65:bf:29:93:17:c7:cd:5e:7f:16:
1e:a0:d7:9a:d7:a2:10:d3:e1:b1:2c:3c:a0:77:95:
74:57:3c:be:36:93:a9:eb:68:86:85:06:5a:fe:7f:
3f:d5:d2:2f:4b:3b:c5:8b:ea:4f:ce:6b:9d:ba:b2:
4c:ef:1a:92:27:0e:f0:ba:1d:91:ae:e1:3d:ae:87:
84:9b:4b:05:4b:a4:3c:1d:2f:77:4e:fc:b2:26:65:
3e:cd:ff:dd:59:d6:6d:07:3e:04:08:8a:58:2a:35:
9d:12:1e:4a:1a:d5:f5:68:c1:52:a1:7f:40:43:eb:
da:9c:b0:d0:15:53:55:61:30:86:20:26:cf:5c:71:
0b:d4:e4:f9:24:2f:f8:05:1e:93:c4:a1:4a:cd:64:
be:b9:40:9a:a4:e8:3f:fe:a8:ec:4d:ff:82:e4:0e:
e4:03:fe:05:39:f9:47:54:4c:de:8b:ed:12:de:33:
ea:ba:2c:8e:6d:f0:b3:cf:8c:b2:c8:18:96:53:1b:
3d:83:ae:fc:85:a4:31:b1:10:dd:23:b1:e5:a2:4d:
31:75:2f:08:64:f8:68:e1:9d:1c:54:51:fe:10:60:
fd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F7:BF:76:64:7A:55:C9:8F:52:91:F9:70:64:A2:2B:77:E3:97:DE
X509v3 Authority Key Identifier:
keyid:07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/6fe_dmR6VcmPUpH5cGSiK3fjl94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.192.0/23
178.18.195.0-178.18.201.255
178.18.203.0-178.18.207.255
185.21.6.0/23
185.88.132.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:3d:4f:74:04:1a:21:12:38:55:13:ed:60:7b:a8:71:94:00:
10:70:5c:59:71:6d:f3:9f:f6:db:c1:be:0b:1d:ce:36:8d:15:
28:f1:dd:35:11:92:a6:82:c2:10:55:f8:9b:91:80:a6:08:a6:
a0:7c:df:0a:dd:c5:e7:97:2f:04:57:fd:8b:f5:c5:57:36:26:
74:e3:01:35:8e:2f:77:01:a6:08:e1:79:94:8c:f4:94:19:dc:
7d:cb:d5:6d:d5:6d:06:f7:59:f8:95:42:36:c0:be:2c:4f:8d:
84:86:9f:1d:6f:2d:87:48:c3:b5:ca:45:02:59:f8:29:9b:c7:
1d:e0:8e:2e:88:ab:1c:93:ec:ff:79:6c:be:82:e4:64:b3:9d:
41:a0:9e:7f:26:af:3b:89:a6:4c:f5:29:a4:49:9c:e5:30:6b:
f9:bf:00:6f:57:08:54:d2:49:27:f9:eb:f2:d1:31:f2:d1:1b:
96:a9:55:d9:05:1d:64:d6:b8:da:27:28:8f:9d:c2:13:e1:de:
77:fb:e4:e9:02:16:05:1b:ca:53:e7:3a:d9:a8:fc:f6:75:84:
90:aa:b5:8e:8b:82:1e:96:c3:ad:2a:de:f9:15:ec:fc:25:d9:
6b:d1:01:41:15:6a:8e:97:df:71:fc:9a:ea:0a:18:59:f4:3e:
eb:08:53:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 04:53:50 2024 by rpki-client on console-fra.rpki-client.org