Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/ZoBeeykcYxeuEegep5khwL1bLRw.roa
File: ZoBeeykcYxeuEegep5khwL1bLRw.roa (raw, json)
Hash identifier: XgvSLLNyl1zbXSh11UADEaDdAtVhFV0isfP6sMpXICw=
Subject key identifier: 66:80:5E:7B:29:1C:63:17:AE:11:E8:1E:A7:99:21:C0:BD:5B:2D:1C
Certificate issuer: /CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Certificate serial: 018CC6B9429EB448D51741FC361767392B1A
Authority key identifier: 06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/ZoBeeykcYxeuEegep5khwL1bLRw.roa
Signing time: Mon 01 Jan 2024 20:31:19 +0000
ROA not before: Mon 01 Jan 2024 20:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60545
IP address blocks: 176.10.105.0/24 maxlen: 24
185.195.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:42:9e:b4:48:d5:17:41:fc:36:17:67:39:2b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Validity
Not Before: Jan 1 20:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66805e7b291c6317ae11e81ea79921c0bd5b2d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:12:47:d8:63:78:7e:3a:c0:be:58:6f:2a:af:
be:7f:3c:be:a0:15:57:18:d0:6d:dc:cd:40:e4:31:
8c:e1:4c:81:15:f0:3a:d9:b5:40:cc:20:eb:85:0e:
ec:74:6f:22:53:eb:24:4d:e2:d3:7b:5b:f3:2e:1a:
5a:26:32:2b:de:c9:4b:68:e2:03:00:0d:8d:f3:c7:
17:11:d8:49:6d:65:85:3c:17:94:a1:ea:e0:f9:25:
e3:74:a9:58:7d:1a:23:52:e8:ae:f3:ac:71:6b:ba:
5e:24:3e:48:e0:5c:39:c1:a3:3f:52:0c:45:af:ce:
d8:39:0f:4a:21:c5:c4:f1:ed:e7:12:e0:59:ad:ff:
cb:7d:7d:be:e3:83:68:e5:de:be:8d:46:4b:31:fe:
2f:a7:d3:5c:22:09:95:0b:cc:9e:2b:80:be:88:34:
f0:d1:2f:b4:69:2b:7e:22:14:dc:39:14:a5:6d:c4:
76:54:59:ea:12:f3:e6:d3:17:c1:8d:fb:7c:6d:f1:
b2:b0:ea:e8:8c:8a:20:35:d3:0f:c1:60:7c:5c:50:
9f:e2:8c:5b:d1:e1:e4:d1:ef:18:4f:8f:be:36:b0:
ae:72:90:b3:81:1d:38:4e:26:17:6c:be:89:39:98:
e6:59:81:04:3d:a7:b7:b1:3b:84:5f:bc:27:ef:97:
b7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:80:5E:7B:29:1C:63:17:AE:11:E8:1E:A7:99:21:C0:BD:5B:2D:1C
X509v3 Authority Key Identifier:
keyid:06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/ZoBeeykcYxeuEegep5khwL1bLRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.10.105.0/24
185.195.70.0/24
Signature Algorithm: sha256WithRSAEncryption
96:65:94:59:0a:c4:f1:78:35:61:86:89:8d:b9:77:ad:b2:a6:
a7:22:b9:30:d2:7d:7d:c2:e4:72:57:23:b2:17:db:47:6d:35:
b5:38:a3:dc:89:e0:00:04:77:35:98:c6:ea:0b:dc:6a:9a:8f:
87:46:c5:8b:b7:61:a9:ac:4e:fe:46:5a:47:43:6b:85:ca:6d:
7e:d1:b9:dc:75:c4:d8:dd:2f:3d:0e:2a:9f:b2:45:ad:83:bf:
b1:17:f9:91:f7:bb:ba:21:6c:af:fc:ca:92:af:0a:0b:74:8b:
0d:49:13:06:4f:e6:5f:cb:8b:5d:cf:dd:09:21:af:d4:66:8a:
3c:8a:84:d1:c4:59:42:62:ae:98:93:03:2b:3b:40:ac:68:11:
21:45:82:6c:de:4d:b7:51:97:ab:c8:46:e2:0e:06:28:16:46:
b2:50:49:93:35:91:35:5a:59:05:c0:3e:e4:d2:a3:54:3b:e9:
fd:61:57:42:aa:e0:d3:3d:34:6a:4c:d3:be:4c:d2:ee:b6:bd:
42:36:22:7e:e5:5c:e3:b9:c4:2d:28:69:1b:0e:bc:a4:c2:ba:
38:79:87:69:07:30:6b:c2:89:a5:27:31:32:1e:23:02:df:ac:
3a:ed:5e:29:9e:39:c8:08:5e:ad:ea:df:26:99:76:fe:b1:88:
ff:69:e2:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:18:40 2024 by rpki-client on console-fra.rpki-client.org