Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1-6pAoK30q_BK5QxLLYcZy-2mzF4.roa
File: 1-6pAoK30q_BK5QxLLYcZy-2mzF4.roa (raw, json)
Hash identifier: w+ElshojtUKaJ/W6zm0By8yThd8F7ilZlbYxyWsuzt0=
Subject key identifier: FB:AA:40:A0:AD:F4:AB:F0:4A:E5:0C:4B:2D:87:19:CB:ED:A6:CC:5E
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 018CC64B6B2D733676134A83DFF6394C0929
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1-6pAoK30q_BK5QxLLYcZy-2mzF4.roa
Signing time: Mon 01 Jan 2024 18:31:20 +0000
ROA not before: Mon 01 Jan 2024 18:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13127
IP address blocks: 82.172.0.0/16 maxlen: 24
82.173.192.0/19 maxlen: 24
62.166.51.0/24 maxlen: 24
62.166.50.0/24 maxlen: 24
87.215.0.0/16 maxlen: 24
62.166.56.0/24 maxlen: 24
82.173.0.0/16 maxlen: 24
82.173.128.0/18 maxlen: 24
143.176.0.0/16 maxlen: 24
62.166.0.0/17 maxlen: 24
87.214.0.0/15 maxlen: 24
82.173.81.0/24 maxlen: 24
82.175.0.0/16 maxlen: 24
82.172.128.0/17 maxlen: 24
81.58.0.0/16 maxlen: 24
217.149.216.0/24 maxlen: 24
81.58.0.0/15 maxlen: 24
62.58.0.0/15 maxlen: 24
87.213.0.0/16 maxlen: 24
143.179.0.0/16 maxlen: 24
87.211.0.0/16 maxlen: 24
81.59.128.0/17 maxlen: 24
2a01:380:6000::/43 maxlen: 43
2a01:380::/32 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 19:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:6b:2d:73:36:76:13:4a:83:df:f6:39:4c:09:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jan 1 18:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbaa40a0adf4abf04ae50c4b2d8719cbeda6cc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b2:5c:28:0c:dc:c9:c6:83:b1:99:02:37:5a:
1a:49:4f:d7:d2:f0:3e:13:5a:f3:68:d6:06:5c:e4:
57:9f:d3:57:df:20:cc:48:97:8d:e3:c6:fb:51:62:
e4:e4:f8:91:05:0c:2c:fa:03:a4:2d:51:f1:a7:78:
f1:c8:55:0a:99:cb:24:43:c9:13:34:8b:7e:f1:1c:
3c:ff:29:91:36:49:2a:26:34:1d:35:4a:4c:da:16:
47:39:36:07:a5:1f:65:c7:a2:a8:77:cf:19:8a:cc:
d1:46:3c:14:c8:91:83:db:71:5a:91:6a:80:6e:f1:
a5:c9:eb:f2:eb:13:80:26:ae:7f:bf:cd:3e:5f:67:
6b:de:46:c6:7c:62:8f:84:7d:84:6b:d2:55:d9:a4:
ac:bd:ba:9a:be:0b:cb:88:f6:20:ad:b7:1b:be:5d:
8e:15:95:75:c2:09:2f:33:e2:1f:70:c4:5f:de:05:
d7:42:f4:06:c6:98:68:40:2d:ec:2b:4a:0f:3f:53:
4c:b9:fb:33:6d:ad:a9:74:f6:46:cb:47:75:db:44:
6a:d9:45:5e:33:fd:79:4b:a2:ee:7c:97:73:d7:48:
3a:f2:73:3f:97:cf:e9:07:77:cc:f3:70:6a:7e:e5:
08:69:98:d5:c6:a5:56:c5:3a:88:70:9a:5c:51:b5:
1d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:AA:40:A0:AD:F4:AB:F0:4A:E5:0C:4B:2D:87:19:CB:ED:A6:CC:5E
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1-6pAoK30q_BK5QxLLYcZy-2mzF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.58.0.0/15
62.166.0.0/17
81.58.0.0/15
82.172.0.0/15
82.175.0.0/16
87.211.0.0/16
87.213.0.0-87.215.255.255
143.176.0.0/16
143.179.0.0/16
217.149.216.0/24
IPv6:
2a01:380::/32
Signature Algorithm: sha256WithRSAEncryption
0a:f0:cc:85:ff:f2:a8:26:f3:70:50:3e:a9:ec:f5:4a:d9:73:
50:ac:f0:ad:1d:79:72:22:85:ec:a1:86:97:8b:b8:3e:ca:65:
6d:e7:bc:fc:ad:96:03:1b:aa:f5:10:97:1e:5a:04:0c:17:85:
c9:9a:e9:02:c0:24:0d:74:93:fc:71:34:f4:b6:01:53:ba:06:
ab:bd:4b:53:45:b4:e2:5b:17:93:22:06:7e:e9:29:a9:ff:89:
d5:4e:4f:30:3c:37:b4:59:41:ff:3a:27:5f:d0:72:07:2d:15:
27:01:3a:4d:4d:a0:44:93:75:08:b3:e8:aa:60:d9:ed:27:8b:
a9:9e:d3:6a:ca:cb:00:f0:6d:05:1d:39:18:46:ae:ee:cc:83:
b6:42:28:54:36:55:af:e5:cf:6d:a7:dd:80:7c:44:3e:b0:0f:
54:e7:a5:93:45:56:e7:10:82:54:97:02:e6:24:4b:d3:5b:08:
7d:ba:75:96:87:f1:e9:47:af:3e:b1:49:34:48:9c:47:a5:60:
ba:0f:6a:f4:78:7e:85:88:94:aa:6e:c6:7e:bb:25:7c:60:a5:
ba:96:08:17:1c:8e:16:8f:25:d3:d6:32:31:8b:50:c6:49:61:
33:52:fe:f9:ad:49:d8:bd:fd:d9:44:3d:bf:6b:71:d4:12:63:
ad:fa:e6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 04:20:09 2024 by rpki-client on console-fra.rpki-client.org