Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/m6k00gaiAE0imMIygh7Di6xwSN4.roa
File: m6k00gaiAE0imMIygh7Di6xwSN4.roa (raw, json)
Hash identifier: upr2pqzOf5UOSV1+MgV8+++Oth9wPNwZPj0UAIIGtVQ=
Subject key identifier: 9B:A9:34:D2:06:A2:00:4D:22:98:C2:32:82:1E:C3:8B:AC:70:48:DE
Certificate issuer: /CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Certificate serial: 0190F4F4D5F345C1C11D0BFE0F4AFC614B40
Authority key identifier: E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/m6k00gaiAE0imMIygh7Di6xwSN4.roa
Signing time: Sat 27 Jul 2024 16:10:04 +0000
ROA not before: Sat 27 Jul 2024 16:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50057
IP address blocks: 185.161.112.0/24 maxlen: 24
185.161.113.0/24 maxlen: 24
185.161.114.0/24 maxlen: 24
185.161.115.0/24 maxlen: 24
2a07:c200::/32 maxlen: 32
2a07:c201::/32 maxlen: 32
2a07:c202::/32 maxlen: 32
2a07:c203::/32 maxlen: 32
2a07:c204::/32 maxlen: 32
2a07:c205::/32 maxlen: 32
2a07:c206::/32 maxlen: 32
2a07:c207::/32 maxlen: 32
2a0f:6400::/32 maxlen: 32
2a0f:6401::/32 maxlen: 32
2a0f:6402::/32 maxlen: 32
2a0f:6403::/32 maxlen: 32
2a0f:6404::/32 maxlen: 32
2a0f:6405::/32 maxlen: 32
2a0f:6406::/32 maxlen: 32
2a0f:6407::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f4:f4:d5:f3:45:c1:c1:1d:0b:fe:0f:4a:fc:61:4b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Validity
Not Before: Jul 27 16:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ba934d206a2004d2298c232821ec38bac7048de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f9:aa:e2:40:1b:82:4f:29:ab:97:ef:f2:90:
82:80:db:88:f5:4f:82:5f:7b:ca:00:8a:3a:59:a2:
cc:ae:9a:73:b3:ef:90:fa:71:12:6a:29:5f:72:e2:
e6:09:97:01:0f:48:dd:5e:02:9a:46:19:7c:e4:20:
ea:7c:6c:e5:a9:06:20:e6:7a:66:29:21:fe:af:04:
c1:97:3c:8e:17:45:8e:e4:20:6c:cd:c5:7f:d7:7c:
a3:f1:26:78:e7:56:a7:79:5c:e2:4e:69:38:c1:14:
ba:c2:60:59:ba:0a:c1:37:7b:4f:d5:d5:bf:d5:cb:
9f:b0:2a:b5:de:62:20:4e:7f:3e:59:fd:7c:82:f0:
83:aa:36:f0:f2:74:c8:54:7c:96:c5:d3:ce:4f:86:
e5:91:90:bd:f4:34:83:f7:7d:db:4b:70:e9:b9:08:
fe:e4:46:1d:1b:77:11:be:fd:50:63:96:b7:85:28:
cf:44:6e:22:2a:b4:d6:75:df:ae:0d:dd:fe:02:28:
70:11:50:0d:a0:83:ce:41:81:03:1e:b8:47:4a:73:
07:c7:b1:7b:46:7f:76:fd:18:4b:66:50:e6:03:0e:
c7:09:4d:1a:fa:c2:f7:db:36:b9:b1:90:3a:0c:eb:
69:e9:74:a3:18:22:6b:3b:32:5a:d6:80:1d:8b:96:
af:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A9:34:D2:06:A2:00:4D:22:98:C2:32:82:1E:C3:8B:AC:70:48:DE
X509v3 Authority Key Identifier:
keyid:E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/m6k00gaiAE0imMIygh7Di6xwSN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.112.0/22
IPv6:
2a07:c200::/29
2a0f:6400::/29
Signature Algorithm: sha256WithRSAEncryption
4a:4b:cc:b4:ff:34:1b:b3:74:59:6e:2c:aa:3a:ba:4d:2f:b0:
b9:db:fe:60:44:12:f3:52:a3:9c:6b:10:63:24:cb:4d:11:50:
dc:38:aa:6b:10:71:1b:ea:6c:02:c5:84:25:2d:cc:cd:47:0a:
8a:25:aa:86:fd:69:5c:c3:51:e3:d7:d1:79:b4:6b:75:1e:54:
1d:ed:6b:29:c7:76:ce:98:2d:bf:2c:24:65:a8:ea:7b:a3:26:
17:80:fb:67:7d:f5:6f:3a:61:16:2d:85:2e:b8:38:b7:be:fa:
e1:b6:1e:a1:aa:37:30:eb:38:a6:7a:ba:31:af:77:01:b2:72:
65:0e:03:1b:ab:a2:0a:8f:e4:1c:ec:df:04:74:65:ad:f6:41:
a5:bc:e3:52:91:ef:a9:de:70:aa:2e:16:25:c8:3c:90:a4:d4:
9d:c0:fe:27:c6:bd:46:13:69:b8:fb:7c:86:39:6e:cd:91:3b:
dd:2d:f1:37:53:04:83:7b:57:e2:af:36:28:43:91:57:ad:d6:
48:1f:c9:6a:d6:f5:9d:44:41:67:b7:e6:98:c2:f6:c7:1d:8c:
2d:ec:7a:c0:9c:59:92:36:bd:1f:9a:da:33:86:6c:69:b7:7a:
3d:e0:04:24:7e:0e:04:38:62:f5:ab:24:80:cd:1b:28:91:5b:
40:28:f8:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:29:49 2024 by rpki-client on console-ams.rpki-client.org