Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/RDNe-xjIVu_6dtjrMAc1AsagX98.roa
File: RDNe-xjIVu_6dtjrMAc1AsagX98.roa (raw, json)
Hash identifier: F2F+g+Vooh1NYN5G/eMIW6U2x8MlCaGMznBqPfjJvUE=
Subject key identifier: 44:33:5E:FB:18:C8:56:EF:FA:76:D8:EB:30:07:35:02:C6:A0:5F:DF
Certificate issuer: /CN=78b04fbafaa36b71fcd36eca50b5fe0e88dd3551
Certificate serial: 018CC4936858A0286144D04CFDB5DAF0701D
Authority key identifier: 78:B0:4F:BA:FA:A3:6B:71:FC:D3:6E:CA:50:B5:FE:0E:88:DD:35:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/RDNe-xjIVu_6dtjrMAc1AsagX98.roa
Signing time: Mon 01 Jan 2024 10:30:43 +0000
ROA not before: Mon 01 Jan 2024 10:30:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201997
IP address blocks: 185.59.186.0/23 maxlen: 23
185.59.186.0/24 maxlen: 24
185.59.184.0/22 maxlen: 22
185.59.185.0/24 maxlen: 24
185.59.184.0/24 maxlen: 24
185.59.187.0/24 maxlen: 24
2a02:6ca1::/32 maxlen: 32
2a02:6ca4::/32 maxlen: 32
2a02:6ca2::/32 maxlen: 32
2a02:6ca0::/32 maxlen: 32
2a02:6ca0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/eLBPuvqja3H8027KULX-DojdNVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/eLBPuvqja3H8027KULX-DojdNVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:68:58:a0:28:61:44:d0:4c:fd:b5:da:f0:70:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78b04fbafaa36b71fcd36eca50b5fe0e88dd3551
Validity
Not Before: Jan 1 10:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44335efb18c856effa76d8eb30073502c6a05fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e2:40:0c:ce:63:e8:cd:38:08:b6:74:92:f2:
7b:b0:47:23:b3:b0:5f:d6:76:4f:3e:78:d5:44:f8:
76:02:d4:15:fb:5c:37:44:03:23:e4:4f:ba:26:0c:
56:d3:70:a5:77:c2:7d:0b:35:d8:0b:9c:da:44:16:
ba:02:a9:81:2f:6e:0d:5e:14:1f:ad:57:8d:c1:91:
04:e1:7f:48:a9:ea:66:f7:e3:a5:20:7a:58:be:c3:
64:53:61:ab:8b:97:b7:61:77:10:ef:66:e7:9d:be:
af:dc:aa:67:5b:ea:2a:00:32:e9:c3:02:45:57:bc:
d3:23:ed:1e:c6:bc:f7:6e:1d:78:fe:fa:be:2e:65:
fe:7e:4a:cd:00:40:11:ae:72:9c:c7:31:c6:9c:d3:
0c:cf:61:22:b3:09:43:da:63:ce:68:df:36:dc:22:
e5:6d:ce:2a:86:0b:13:c8:3e:e0:68:b4:28:f7:fc:
a2:05:26:0f:f3:3a:c3:fc:58:0f:48:b4:9e:68:f8:
27:b6:4d:f2:74:6a:75:0f:54:2f:9d:46:ba:5b:6e:
d3:84:0d:6f:12:82:77:36:93:68:2b:e8:76:5b:a7:
92:4a:f2:73:43:f9:7f:8f:81:71:82:d8:8c:ab:d9:
f5:18:d5:ef:71:fa:d0:1b:76:02:f4:89:f6:bb:5d:
b1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:33:5E:FB:18:C8:56:EF:FA:76:D8:EB:30:07:35:02:C6:A0:5F:DF
X509v3 Authority Key Identifier:
keyid:78:B0:4F:BA:FA:A3:6B:71:FC:D3:6E:CA:50:B5:FE:0E:88:DD:35:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/RDNe-xjIVu_6dtjrMAc1AsagX98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/eLBPuvqja3H8027KULX-DojdNVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.184.0/22
IPv6:
2a02:6ca0::-2a02:6ca2:ffff:ffff:ffff:ffff:ffff:ffff
2a02:6ca4::/32
Signature Algorithm: sha256WithRSAEncryption
4f:f9:ce:61:5f:8b:c7:4a:45:a1:13:5a:b2:71:ba:d5:7a:d6:
2b:84:f1:af:b6:66:40:7f:96:f2:7f:c3:df:7c:3d:c6:75:66:
18:ae:3c:96:54:b3:45:8d:d3:44:4c:c8:6f:52:eb:5d:7a:66:
8c:4d:67:5f:21:a7:9c:45:df:a1:84:82:51:77:ad:e9:9e:5f:
36:a1:06:d3:87:f2:dc:c4:97:d3:19:78:a9:3e:7f:f6:3e:39:
2e:3f:1a:b4:29:e6:25:af:49:04:5e:06:cf:b0:41:7b:3c:ea:
03:f9:e6:e7:88:96:62:e1:b7:38:e8:7a:ee:0b:95:9d:03:f8:
9f:4d:fc:89:a9:b3:f6:95:a2:00:25:08:b6:a6:7c:32:c1:b2:
a1:af:47:dc:4c:6d:31:1e:60:a4:26:78:23:a8:a9:dd:cd:11:
4f:b8:4a:81:43:9d:65:a6:c6:8f:aa:75:39:ca:8d:c0:0a:75:
eb:e6:19:05:66:cb:be:a7:4c:84:6c:a6:ee:4e:f8:fe:56:cb:
d5:6e:21:55:e6:0b:2b:9e:66:80:cb:9a:0d:fe:18:60:dc:45:
5d:ec:d6:c6:2d:b9:a0:23:a3:4b:8b:54:de:36:84:1d:be:49:
b0:f6:96:23:4f:66:c7:07:b6:0a:9c:06:e8:07:86:c5:1b:ab:
20:c1:cb:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:13:33 2024 by rpki-client on console-fra.rpki-client.org