Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6anTFCzQAhW9MnvJpk3PWoOMchI.roa
File: 6anTFCzQAhW9MnvJpk3PWoOMchI.roa (raw, json)
Hash identifier: VlkVH4spmKJsyfkT+xBPq2qbjJleMtc7dtTYt8CuAHA=
Subject key identifier: E9:A9:D3:14:2C:D0:02:15:BD:32:7B:C9:A6:4D:CF:5A:83:8C:72:12
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DCF46458291D914436DF0C316822D2
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6anTFCzQAhW9MnvJpk3PWoOMchI.roa
Signing time: Tue 02 Jan 2024 06:29:32 +0000
ROA not before: Tue 02 Jan 2024 06:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60784
IP address blocks: 37.60.136.0/24 maxlen: 24
31.13.227.0/24 maxlen: 24
87.121.76.0/23 maxlen: 23
87.121.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:f4:64:58:29:1d:91:44:36:df:0c:31:68:22:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9a9d3142cd00215bd327bc9a64dcf5a838c7212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:15:a1:58:cd:93:2d:9d:af:f7:09:89:22:fd:
8b:a5:37:7b:f8:8b:02:86:64:63:6c:09:e4:51:d9:
6c:f2:68:8b:aa:92:30:e5:f5:02:cf:c5:24:25:f6:
0b:2a:b3:3a:28:8c:f2:f5:ef:c8:67:3f:69:01:d3:
e7:7d:70:54:c3:67:49:3b:5b:15:21:f8:47:55:2d:
ff:35:92:91:39:51:6c:0c:ca:99:52:41:52:0d:68:
c2:37:2c:43:7b:0d:77:09:7f:c0:43:6b:97:95:52:
a5:86:81:e4:05:1d:16:eb:44:c8:4b:6d:16:79:8c:
2d:aa:6c:09:a4:52:eb:f4:ff:6f:48:3c:cc:e0:e2:
06:f7:60:02:91:c0:33:9c:51:2f:32:0d:a9:44:98:
20:90:87:77:95:de:6b:3a:c8:a1:5f:24:dd:3a:91:
4b:b3:28:e9:09:03:57:f5:05:d7:20:c7:b1:f4:1c:
3a:c3:20:94:fa:55:25:da:bf:89:46:0d:8d:cd:66:
79:7c:4c:de:de:b9:5f:81:1c:1e:6f:9c:0f:70:4d:
27:28:3b:d0:a2:28:46:53:ea:d0:37:72:5b:f6:c9:
37:13:cd:25:3d:c0:bf:d4:5d:39:66:10:68:f8:f5:
7e:63:dc:ec:a4:ea:db:ca:18:96:0c:6f:f2:bd:f4:
21:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A9:D3:14:2C:D0:02:15:BD:32:7B:C9:A6:4D:CF:5A:83:8C:72:12
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6anTFCzQAhW9MnvJpk3PWoOMchI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.227.0/24
37.60.136.0/24
87.121.76.0-87.121.78.255
Signature Algorithm: sha256WithRSAEncryption
4a:b9:b7:6d:72:0e:1e:88:ee:fa:3e:e0:49:fb:99:fc:28:84:
27:e7:d0:92:90:cd:0b:1a:b0:fb:3a:26:7f:20:67:da:ea:b2:
7f:41:4b:a6:dd:ee:9e:ee:c6:a9:bb:8f:49:8a:71:c4:73:e1:
6b:b9:9f:a5:32:a0:ab:ae:db:f0:29:e4:6d:dd:62:f0:84:7a:
75:c6:72:e1:af:ff:da:59:7c:22:2c:37:3b:4e:28:90:02:f1:
6b:f6:87:cf:7b:cd:4c:91:c5:95:43:e5:10:28:c0:7c:73:d3:
a6:4b:ab:8f:27:b3:94:46:50:0a:c7:81:bf:d3:f2:62:ad:e9:
99:3c:24:c1:37:c7:80:ac:4c:99:30:33:fa:83:f5:4b:f6:1c:
d7:ca:d9:30:5b:5d:7d:25:38:00:e2:ae:6d:d6:57:de:7f:c8:
57:a5:b1:b1:5d:96:7b:f5:05:8f:ba:30:d6:7a:e5:78:b3:87:
3a:4b:bd:50:58:fe:d5:a5:b4:9e:8c:56:da:3a:7a:41:17:74:
50:79:e5:b7:d3:f0:f5:bd:cc:10:36:3f:b6:e9:c1:e3:cb:c3:
9b:b2:28:b4:1b:5f:fe:58:0d:8b:8a:5d:47:14:0a:7a:55:af:
71:7e:e1:24:50:7b:21:43:fe:83:b9:89:8f:81:94:ba:ed:0c:
57:7d:4d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:28:44 2024 by rpki-client on console-ams.rpki-client.org