Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/6X5ifuhs87ekvaO6u1TGv9mSnrY.roa
File: 6X5ifuhs87ekvaO6u1TGv9mSnrY.roa (raw, json)
Hash identifier: 8hyRk37gmsiqWuOCOl8l0dab0H/cXlXc/52njKb+bD0=
Subject key identifier: E9:7E:62:7E:E8:6C:F3:B7:A4:BD:A3:BA:BB:54:C6:BF:D9:92:9E:B6
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018CC424A10C1E65CE3BAD896FF650FD3497
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/6X5ifuhs87ekvaO6u1TGv9mSnrY.roa
Signing time: Mon 01 Jan 2024 08:29:44 +0000
ROA not before: Mon 01 Jan 2024 08:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62336
IP address blocks: 93.127.224.0/19 maxlen: 19
77.37.98.0/23 maxlen: 23
185.171.76.0/23 maxlen: 23
93.127.128.0/19 maxlen: 19
77.37.100.0/22 maxlen: 22
185.171.78.0/23 maxlen: 23
77.37.106.0/23 maxlen: 23
77.37.108.0/22 maxlen: 22
77.37.4.0/23 maxlen: 23
93.127.248.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:a1:0c:1e:65:ce:3b:ad:89:6f:f6:50:fd:34:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 1 08:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e97e627ee86cf3b7a4bda3babb54c6bfd9929eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a5:a2:03:4b:08:7a:d2:37:f3:45:b6:b5:05:
3d:5b:76:04:26:eb:79:63:0b:8a:fd:36:cc:15:ea:
86:75:b1:4d:00:9b:89:c0:45:d7:f3:3e:37:b2:2b:
33:1c:30:42:49:f2:f6:f3:23:7c:c6:10:da:0b:e4:
0b:48:a0:5c:5e:98:50:a8:ec:c3:b0:f3:71:39:e9:
bd:0d:14:18:62:00:ea:01:af:92:fb:ed:7e:c7:8b:
56:4d:a6:dc:77:0c:b2:da:24:d0:91:74:60:a6:c8:
c1:59:ee:c4:6d:9a:f3:45:59:c6:23:6e:31:a5:e1:
4c:e3:35:86:5d:14:c2:7a:88:62:3b:4d:47:b9:50:
c3:d6:72:2f:43:b7:ca:9c:61:c1:7a:46:cd:2c:63:
02:68:80:96:c3:fe:bf:16:28:85:57:d3:95:86:4d:
28:1c:66:71:db:6b:2c:16:e3:47:5a:df:b4:ae:7a:
96:ad:84:ae:d9:45:cf:2b:1d:8a:53:12:b2:d6:60:
5d:74:dd:3e:d4:54:f7:c7:b2:42:6f:a7:45:6b:70:
5d:71:a3:39:22:d9:a3:19:cb:4f:62:8f:be:23:6e:
6b:1b:28:d1:45:50:8f:da:13:1e:70:af:35:36:4a:
e5:bf:fc:e6:c7:42:f0:f8:d2:40:d5:ac:6d:de:73:
64:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7E:62:7E:E8:6C:F3:B7:A4:BD:A3:BA:BB:54:C6:BF:D9:92:9E:B6
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/6X5ifuhs87ekvaO6u1TGv9mSnrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.4.0/23
77.37.98.0-77.37.103.255
77.37.106.0-77.37.111.255
93.127.128.0/19
93.127.224.0/19
185.171.76.0/22
Signature Algorithm: sha256WithRSAEncryption
76:9a:09:7f:3e:a8:d5:4e:0f:f4:fd:42:0e:9a:44:62:a7:1f:
68:e9:ae:62:b0:32:67:89:42:f0:ed:35:8f:a0:c4:01:e5:2b:
46:cb:9d:9c:c5:51:37:08:68:f4:3d:a4:36:c8:d1:ff:e3:6e:
a0:ff:30:83:66:a3:66:04:7a:36:d3:2a:22:e1:99:f0:d1:7d:
cc:25:88:19:c5:80:cc:6d:f9:a0:74:c2:75:71:cf:b2:2b:83:
0f:8d:20:2a:94:a0:53:5a:29:cb:42:b3:2c:7b:69:63:c4:36:
ed:a7:73:ab:9f:6d:f0:40:22:92:40:c3:70:72:23:c8:43:55:
5f:9f:31:88:c8:b3:84:02:44:a4:19:3f:b0:b7:37:2c:77:c3:
00:b8:3f:91:24:67:5e:dc:a0:6d:65:cd:85:d0:b9:f4:96:d5:
88:50:cb:2c:64:6a:4a:56:11:14:17:50:f9:39:f2:0e:db:04:
05:c7:78:3d:7c:31:17:0a:d5:77:2e:fc:84:62:3f:93:73:1c:
63:be:df:78:d1:46:b8:e5:bb:d0:2f:9a:95:f7:82:dc:ed:6e:
60:ec:f2:92:8e:ac:2d:34:56:c8:2c:de:c4:5c:36:67:f8:fb:
0f:82:11:54:14:48:88:de:3f:2e:bd:7d:33:0a:58:ef:cd:22:
30:d7:e4:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 14:52:56 2024 by rpki-client on console-ams.rpki-client.org