Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/810d29-0c85-4057-b626-af0e417d4c3a/1/6egCtY-8LA351KlVfm3WZnEff-4.roa
File: 6egCtY-8LA351KlVfm3WZnEff-4.roa (raw, json)
Hash identifier: gbnQHttS3xThBobapc4Si0z0H5tnqlCE+ppNlvur92Q=
Subject key identifier: E9:E8:02:B5:8F:BC:2C:0D:F9:D4:A9:55:7E:6D:D6:66:71:1F:7F:EE
Certificate issuer: /CN=2f75bc7379f115b0671552c9baf2bed85bde8189
Certificate serial: 018CC3491CF52445968CA38B6AB28BDAA6F3
Authority key identifier: 2F:75:BC:73:79:F1:15:B0:67:15:52:C9:BA:F2:BE:D8:5B:DE:81:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L3W8c3nxFbBnFVLJuvK-2FvegYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/810d29-0c85-4057-b626-af0e417d4c3a/1/6egCtY-8LA351KlVfm3WZnEff-4.roa
Signing time: Mon 01 Jan 2024 04:29:57 +0000
ROA not before: Mon 01 Jan 2024 04:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201832
IP address blocks: 185.62.149.0/24 maxlen: 24
185.62.148.0/24 maxlen: 24
2a03:560::/48 maxlen: 48
2a03:560:148::/48 maxlen: 48
2a03:560:1::/48 maxlen: 48
2a03:560:149::/48 maxlen: 48
2a03:561::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/810d29-0c85-4057-b626-af0e417d4c3a/1/L3W8c3nxFbBnFVLJuvK-2FvegYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/810d29-0c85-4057-b626-af0e417d4c3a/1/L3W8c3nxFbBnFVLJuvK-2FvegYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/L3W8c3nxFbBnFVLJuvK-2FvegYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:1c:f5:24:45:96:8c:a3:8b:6a:b2:8b:da:a6:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f75bc7379f115b0671552c9baf2bed85bde8189
Validity
Not Before: Jan 1 04:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9e802b58fbc2c0df9d4a9557e6dd666711f7fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b6:47:f7:c1:25:1f:c3:e2:69:ea:82:a2:f4:
d4:43:ad:15:9b:46:6a:b5:55:6a:2d:e1:2f:88:68:
33:72:43:84:f2:ab:55:cb:20:35:44:07:04:98:f8:
d1:20:87:61:08:76:d1:02:c0:68:c8:24:8f:48:f8:
12:52:b3:eb:3b:87:3c:48:47:c8:0a:71:c0:0c:c3:
08:c7:4d:bd:71:a6:b9:f8:8f:3a:44:18:83:54:83:
12:a2:a1:9f:c8:5c:7a:97:a3:84:4e:d7:b8:81:7e:
a0:b9:4b:9d:f8:de:fc:2d:0c:21:99:c7:95:3d:5d:
22:99:cf:16:59:63:fc:ed:2d:9a:28:8b:70:b7:c1:
da:13:f3:30:fd:4b:25:ef:90:5b:41:71:c2:95:00:
49:bb:2f:0d:46:5a:90:e4:3e:c4:3d:45:62:e0:77:
0c:fc:8b:41:05:66:8c:3b:67:f2:5a:72:cd:cb:d4:
f5:51:29:ff:1c:85:94:45:7a:25:69:2e:29:d6:b9:
f9:e4:4e:14:55:b2:32:50:f0:28:c3:5e:f8:d6:12:
1c:84:75:72:64:52:80:a1:b6:eb:fc:a3:3e:82:46:
54:d8:37:07:13:9e:1b:9b:cf:a7:64:14:86:c8:8a:
71:87:22:3e:99:12:04:53:58:b9:99:a7:b0:93:f9:
e5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E8:02:B5:8F:BC:2C:0D:F9:D4:A9:55:7E:6D:D6:66:71:1F:7F:EE
X509v3 Authority Key Identifier:
keyid:2F:75:BC:73:79:F1:15:B0:67:15:52:C9:BA:F2:BE:D8:5B:DE:81:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L3W8c3nxFbBnFVLJuvK-2FvegYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/810d29-0c85-4057-b626-af0e417d4c3a/1/6egCtY-8LA351KlVfm3WZnEff-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/810d29-0c85-4057-b626-af0e417d4c3a/1/L3W8c3nxFbBnFVLJuvK-2FvegYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.148.0/23
IPv6:
2a03:560::/47
2a03:560:148::/47
2a03:561::/32
Signature Algorithm: sha256WithRSAEncryption
2c:e8:13:90:0e:ad:54:c5:0f:81:ae:d5:a0:41:1d:32:fd:92:
63:40:ce:dc:ad:65:8b:9f:6a:c6:c6:04:ad:ca:a5:cd:06:5f:
93:a4:0e:7b:00:42:ec:9b:b7:64:7a:6e:69:81:91:0b:af:e0:
ef:e4:f0:6f:e0:d3:31:28:02:5c:52:4b:79:a2:dd:70:03:69:
13:41:01:38:97:f0:61:6e:e1:88:18:4a:a8:3a:8f:ab:5f:76:
ee:70:5d:2b:86:42:c9:d6:40:a1:7a:7c:9c:f6:33:e8:9d:4d:
e7:58:37:4d:60:76:46:16:b9:21:3d:a4:29:53:1c:2b:0e:92:
bf:b5:9c:83:35:42:c3:8d:51:1e:91:47:d7:3f:19:09:67:64:
d7:78:04:e0:2f:82:28:9c:b8:c8:f7:01:07:8d:14:8b:74:a4:
08:36:3b:29:f1:31:44:3b:e0:b0:bf:e6:25:5a:4c:77:ce:2f:
4b:fe:6d:7e:fc:96:53:05:96:60:af:78:39:74:2b:83:92:cc:
d5:12:f6:e4:78:f1:01:dd:4d:ba:06:6e:82:dc:7e:75:43:49:
7f:ee:a1:d6:84:a3:3e:06:5e:b7:6a:1b:d5:0f:dd:db:91:4d:
f7:ee:6a:01:cf:91:a6:8d:30:f8:45:3e:c6:c9:96:df:db:cf:
e9:da:53:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:29:08 2024 by rpki-client on console-ams.rpki-client.org