Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/6txvKn1B3B25-VJzbmAPloN9ojM.roa
File: 6txvKn1B3B25-VJzbmAPloN9ojM.roa (raw, json)
Hash identifier: /PsgMg94U/wVVyKk5BxzZrtG1MX0reiXy8mkZK5ZfA8=
Subject key identifier: EA:DC:6F:2A:7D:41:DC:1D:B9:F9:52:73:6E:60:0F:96:83:7D:A2:33
Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Certificate serial: 018CC80123CF82ABA1D37C80E990F91C8040
Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/6txvKn1B3B25-VJzbmAPloN9ojM.roa
Signing time: Tue 02 Jan 2024 02:29:27 +0000
ROA not before: Tue 02 Jan 2024 02:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61967
IP address blocks: 185.20.232.0/22 maxlen: 22
91.220.244.0/24 maxlen: 24
45.137.92.0/22 maxlen: 22
2a04:1600::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:23:cf:82:ab:a1:d3:7c:80:e9:90:f9:1c:80:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Validity
Not Before: Jan 2 02:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eadc6f2a7d41dc1db9f952736e600f96837da233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:96:88:46:99:7d:60:ab:20:cd:16:f2:24:36:
9d:f3:b7:f0:79:5a:36:f3:b7:31:1e:49:43:ae:8f:
fb:51:be:7f:cb:ef:50:19:5a:6f:bc:4a:a9:ba:9f:
2b:7a:23:39:fa:88:e6:38:72:1f:07:81:2e:80:91:
e5:71:8c:fb:85:f5:20:8e:88:d4:29:03:01:fc:79:
4b:c2:3e:4f:c4:bb:0e:19:b9:f1:ed:ce:da:5a:4a:
96:6e:33:4c:c6:72:13:f6:cc:32:3e:24:4a:91:8d:
d3:fe:72:15:de:e3:cd:3e:66:d0:09:47:c1:f5:d2:
51:21:2f:85:a9:5e:21:a5:87:44:30:b7:52:2d:d1:
9c:70:1a:df:ed:61:30:72:97:25:46:8e:ba:3b:7e:
f0:86:df:6f:7a:9e:4a:d5:e8:98:75:49:b4:10:3e:
09:f0:22:52:36:e6:c1:e8:51:c6:a7:d7:be:6f:f2:
8f:0b:c8:b8:52:32:75:a9:2a:5f:2d:13:73:4f:41:
00:19:63:0f:5c:71:cf:fb:38:4a:a0:9b:60:96:e3:
f6:a1:fb:01:30:13:8f:94:e3:29:10:86:d5:75:b2:
65:60:bb:8e:52:60:ce:5d:17:c0:eb:55:8b:25:e3:
ab:8c:f5:6d:0d:78:a4:41:f0:da:f6:3d:6e:44:13:
0a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DC:6F:2A:7D:41:DC:1D:B9:F9:52:73:6E:60:0F:96:83:7D:A2:33
X509v3 Authority Key Identifier:
keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/6txvKn1B3B25-VJzbmAPloN9ojM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.92.0/22
91.220.244.0/24
185.20.232.0/22
IPv6:
2a04:1600::/29
Signature Algorithm: sha256WithRSAEncryption
b4:02:19:ee:31:12:ec:1a:6f:8e:b9:a5:13:2c:30:4f:c0:0b:
f7:9a:8a:81:6a:a3:c9:62:da:01:65:c1:27:6d:4d:83:0c:ff:
f3:70:76:fd:23:45:71:6d:21:aa:24:ba:bc:ae:11:ff:33:37:
6b:f8:51:0b:2e:6d:5c:88:3f:a0:94:26:1a:ed:e7:b9:d6:b8:
5c:46:3d:24:99:78:4e:16:c3:9b:45:c6:1e:eb:6b:c9:66:88:
54:94:00:bd:7c:52:82:ff:06:28:30:a2:66:f4:cf:92:62:1c:
26:e5:a1:84:35:52:f5:80:4c:f7:f9:8e:4e:92:5e:8f:0f:79:
1e:6a:05:24:97:f2:d4:6d:d1:83:9b:10:4b:b0:46:2a:ed:be:
8b:8d:c3:d4:70:5a:8a:6e:f0:2f:e5:e5:1d:87:ac:56:a1:43:
36:b1:7a:8c:b8:4c:46:3a:8e:20:79:5d:43:0f:cc:c6:35:2f:
26:8d:81:d7:eb:90:66:30:ae:dd:b3:43:35:0e:bf:a9:b0:f5:
b7:cf:be:27:d6:78:e4:cc:e0:62:9b:87:ac:7d:13:41:8a:25:
c5:49:9a:a2:a2:68:c2:aa:ec:03:38:a5:cc:6d:21:f1:ef:96:
3d:6d:2f:78:04:db:72:69:99:3f:6d:4f:1b:31:2f:db:bf:e7:
79:74:70:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 02:52:11 2024 by rpki-client on console-fra.rpki-client.org