Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/fE4KLELLngXt1D_ss5o0BZslujI.roa
File: fE4KLELLngXt1D_ss5o0BZslujI.roa (raw, json)
Hash identifier: GwPxdFTFJlrsQeZr/RpkWatgb49dfMUf6phyVB/Y08o=
Subject key identifier: 7C:4E:0A:2C:42:CB:9E:05:ED:D4:3F:EC:B3:9A:34:05:9B:25:BA:32
Certificate issuer: /CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6
Certificate serial: 0192E741CA8CE9F004531B15DE67A6B6C4CA
Authority key identifier: 6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/fE4KLELLngXt1D_ss5o0BZslujI.roa
Signing time: Fri 01 Nov 2024 10:25:01 +0000
ROA not before: Fri 01 Nov 2024 10:25:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204908
IP address blocks: 185.124.12.0/24 maxlen: 24
185.124.13.0/24 maxlen: 24
185.236.28.0/22 maxlen: 22
2a03:9000:100::/40 maxlen: 40
2a03:9000:300::/40 maxlen: 40
2a03:9000:400::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e7:41:ca:8c:e9:f0:04:53:1b:15:de:67:a6:b6:c4:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6
Validity
Not Before: Nov 1 10:25:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c4e0a2c42cb9e05edd43fecb39a34059b25ba32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:66:66:cf:91:58:2a:39:23:1d:71:d2:59:6b:
9b:97:93:b5:ba:fb:00:4f:56:53:29:c3:6c:75:7f:
d8:7f:21:dd:e8:c1:63:4e:a1:d6:5b:40:0b:f3:b0:
49:01:07:8c:36:e9:e0:fe:45:69:57:d0:7d:ce:e4:
6f:e6:73:fe:d6:ab:00:8b:62:d2:8a:84:8a:28:f2:
81:d0:d3:b6:4f:6a:23:02:a6:5d:52:b5:bd:fb:3a:
ac:ee:ee:5d:fe:f7:17:f2:4b:47:77:15:98:1a:e6:
5a:e3:9e:86:7a:6d:5d:6c:d3:1f:05:f1:db:2a:b0:
86:66:51:8e:97:2d:14:dd:ed:13:bb:66:af:26:06:
8b:dd:f0:1a:e8:90:b1:9c:f9:4d:47:0d:4a:68:d7:
a4:03:07:bf:22:37:be:a6:b3:de:56:2b:35:66:79:
2c:ef:20:d9:fa:d1:ba:16:4b:0d:20:82:e7:19:48:
40:74:ca:76:9b:c7:bd:eb:7b:f1:63:0f:30:55:af:
51:b6:07:ee:67:14:be:10:75:a6:e4:de:6f:0a:3f:
c0:28:c5:51:5e:f8:df:f3:76:c4:5b:ee:ab:e8:a1:
95:cb:98:07:e5:5e:66:07:31:ff:ee:60:7e:1c:93:
4e:88:cf:9a:49:ec:b7:f1:4f:75:4f:1a:42:bb:30:
14:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:4E:0A:2C:42:CB:9E:05:ED:D4:3F:EC:B3:9A:34:05:9B:25:BA:32
X509v3 Authority Key Identifier:
keyid:6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/fE4KLELLngXt1D_ss5o0BZslujI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.12.0/23
185.236.28.0/22
IPv6:
2a03:9000:100::/40
2a03:9000:300::-2a03:9000:4ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:09:75:03:fa:40:43:64:d6:1a:22:fe:dd:c7:ea:cc:c9:36:
a4:72:bf:3e:65:ad:48:30:c2:17:51:45:1f:1c:62:73:bb:20:
c3:5d:91:ed:b1:aa:35:f0:2e:0c:8f:3d:dc:21:48:19:17:0b:
b1:03:86:9a:08:61:c3:94:2c:2f:46:a9:83:10:a2:75:b7:33:
75:e0:d6:02:8b:a9:38:47:09:67:c3:b7:6c:20:20:e7:8e:ad:
1e:e2:e2:2f:f9:40:3c:32:69:e1:cc:b7:c4:df:d6:cb:41:c4:
0a:14:18:ee:25:86:0b:8b:51:3d:02:f9:38:46:91:39:5c:e5:
13:cf:ae:64:92:67:13:f0:38:ee:61:8f:72:20:dd:59:43:e9:
10:f6:5f:da:a1:ef:87:63:a0:9d:19:2b:b1:ef:3f:ff:e3:b2:
9d:16:21:f9:09:95:81:08:ca:a5:32:5f:79:25:32:89:84:ec:
6c:39:f5:2a:ab:de:a7:0e:47:fd:38:ef:1c:fb:26:64:7c:a4:
b6:96:db:75:9d:6d:b7:2c:a7:a8:81:8a:d8:56:a8:65:5b:ab:
1f:ff:7c:f5:c0:1a:68:9d:e3:ca:7f:43:85:27:0e:2c:35:40:
df:e1:7a:c3:02:04:19:7c:1f:78:23:ed:0a:ae:61:30:3c:85:
f9:db:45:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:29:19 2024 by rpki-client on console-ams.rpki-client.org