Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/eff18d-5cc4-423f-9518-eb843e17c05e/1/mV6L0NGqWdg9l1NbJ6aBxVGoWk8.roa
File: mV6L0NGqWdg9l1NbJ6aBxVGoWk8.roa (raw, json)
Hash identifier: fbu3XO9B2sx1dmz+48F6g+VlZ2+SP+ybukrqywVpDfo=
Subject key identifier: 99:5E:8B:D0:D1:AA:59:D8:3D:97:53:5B:27:A6:81:C5:51:A8:5A:4F
Certificate issuer: /CN=5b693cf1eef5fb0bf72ed5c2e22867d1124af3d8
Certificate serial: 018CC802653C01EDC098D204D18CA5E0F652
Authority key identifier: 5B:69:3C:F1:EE:F5:FB:0B:F7:2E:D5:C2:E2:28:67:D1:12:4A:F3:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2k88e71-wv3LtXC4ihn0RJK89g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/eff18d-5cc4-423f-9518-eb843e17c05e/1/mV6L0NGqWdg9l1NbJ6aBxVGoWk8.roa
Signing time: Tue 02 Jan 2024 02:30:49 +0000
ROA not before: Tue 02 Jan 2024 02:30:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6740
IP address blocks: 185.193.128.0/22 maxlen: 22
82.202.0.0/18 maxlen: 18
213.235.64.0/18 maxlen: 18
212.90.224.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/eff18d-5cc4-423f-9518-eb843e17c05e/1/W2k88e71-wv3LtXC4ihn0RJK89g.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/eff18d-5cc4-423f-9518-eb843e17c05e/1/W2k88e71-wv3LtXC4ihn0RJK89g.mft
rsync://rpki.ripe.net/repository/DEFAULT/W2k88e71-wv3LtXC4ihn0RJK89g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:65:3c:01:ed:c0:98:d2:04:d1:8c:a5:e0:f6:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b693cf1eef5fb0bf72ed5c2e22867d1124af3d8
Validity
Not Before: Jan 2 02:30:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=995e8bd0d1aa59d83d97535b27a681c551a85a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:09:a9:0d:ed:f9:77:f2:47:93:aa:92:bf:be:
8f:c6:af:2e:2a:27:a7:48:83:8d:66:17:49:2e:6a:
e0:8d:d3:fe:8c:a3:89:25:e7:ed:83:c4:2a:7b:26:
4d:40:2f:77:41:dc:53:85:f0:0e:96:98:ab:2e:24:
28:c1:91:61:07:d7:ca:61:5c:9d:9a:a5:ef:d7:d7:
a9:b9:01:31:74:24:d1:a6:23:0a:7c:09:b4:f3:ea:
1d:7d:3c:47:cf:1f:9b:e5:e6:ba:e6:0a:b9:86:c3:
3b:c3:e9:76:17:61:02:1c:7b:1c:a0:ae:a4:a0:86:
6d:c9:8f:d9:7d:9a:9d:07:e6:a1:ce:4b:4d:f3:e5:
41:8a:ec:12:55:3a:70:eb:f6:36:e4:48:08:aa:3a:
b7:15:e4:ab:37:41:df:6e:a6:03:45:aa:2a:66:b8:
8b:89:61:9b:5b:0e:f5:a8:61:7e:0d:c0:99:c3:6d:
0c:0b:7f:f9:cf:eb:68:72:37:23:6e:3e:75:c1:fa:
f4:a6:04:97:13:cd:ea:84:e0:50:34:32:b5:2a:73:
8d:b0:57:d2:6a:38:85:63:8f:85:36:cd:7b:28:7c:
70:c8:9f:98:00:6a:70:5f:4f:a2:f0:af:73:ca:ba:
25:01:c3:03:d8:98:13:8e:d0:64:d7:1a:32:0e:53:
69:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5E:8B:D0:D1:AA:59:D8:3D:97:53:5B:27:A6:81:C5:51:A8:5A:4F
X509v3 Authority Key Identifier:
keyid:5B:69:3C:F1:EE:F5:FB:0B:F7:2E:D5:C2:E2:28:67:D1:12:4A:F3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2k88e71-wv3LtXC4ihn0RJK89g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/eff18d-5cc4-423f-9518-eb843e17c05e/1/mV6L0NGqWdg9l1NbJ6aBxVGoWk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/eff18d-5cc4-423f-9518-eb843e17c05e/1/W2k88e71-wv3LtXC4ihn0RJK89g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.202.0.0/18
185.193.128.0/22
212.90.224.0/19
213.235.64.0/18
Signature Algorithm: sha256WithRSAEncryption
30:bc:8d:d7:93:a2:45:7f:c7:14:03:48:3d:4f:76:f7:5f:05:
03:f4:2e:5a:19:14:a2:45:28:16:62:be:ae:e1:69:4d:c2:f3:
62:ba:6a:14:9c:69:b6:5a:a6:8b:d8:93:19:bc:b2:35:8c:e3:
e3:08:7a:ad:aa:45:6a:58:fd:d6:52:42:73:43:26:65:b7:76:
76:aa:33:34:23:bd:f3:24:7e:cf:2b:56:c7:3d:59:9f:e1:0c:
48:f7:d2:80:a4:c8:e2:07:87:2c:ae:27:51:45:48:e8:a2:59:
eb:cc:a8:2c:d8:6a:17:3d:5b:71:2c:62:e5:2d:31:0c:dd:05:
12:84:90:da:07:ce:81:78:6b:e5:72:02:39:dc:fe:43:7f:fc:
ec:58:39:b0:62:79:75:f0:bf:b2:18:7d:b3:b0:cf:de:5e:75:
b1:5f:95:27:12:1f:18:fe:7d:9d:d1:75:58:c0:e1:fa:e6:39:
69:8d:30:f3:3d:e4:02:f6:e3:e1:75:ef:0a:f8:35:1c:50:75:
5b:4b:86:ad:18:e5:6d:a8:13:28:74:2e:b6:13:f1:52:b4:87:
81:bc:e4:5c:f4:e1:e1:39:b2:46:6f:c3:96:17:24:2f:dc:3e:
c9:e7:96:e9:a5:ab:3b:ba:ac:6b:27:ab:58:2e:6c:e5:04:87:
59:54:53:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:04:39 2024 by rpki-client on console-ams.rpki-client.org