Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/6SvSTnNtVXqxwqH9Q-9WElcQXBM.roa
File: 6SvSTnNtVXqxwqH9Q-9WElcQXBM.roa (raw, json)
Hash identifier: IoH4N328Wt5CtmFC75f7PtO5zzPYyXdV/4yOy7p1BUM=
Subject key identifier: E9:2B:D2:4E:73:6D:55:7A:B1:C2:A1:FD:43:EF:56:12:57:10:5C:13
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 018CC5015536E2E7804090B66C74EA25C354
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/6SvSTnNtVXqxwqH9Q-9WElcQXBM.roa
Signing time: Mon 01 Jan 2024 12:30:48 +0000
ROA not before: Mon 01 Jan 2024 12:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212338
IP address blocks: 194.39.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 22:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:55:36:e2:e7:80:40:90:b6:6c:74:ea:25:c3:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 12:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e92bd24e736d557ab1c2a1fd43ef561257105c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a6:30:60:ae:cc:aa:b7:8d:2c:e5:44:34:7f:
ec:21:1a:d1:c6:e8:e8:96:fe:87:ab:92:1c:76:74:
ed:46:ad:59:76:64:45:26:8e:5c:90:57:fe:3c:b4:
5d:f4:ef:5a:e3:9c:f5:dd:e4:3f:68:92:40:72:de:
a3:d7:3e:56:ce:20:da:a8:82:7c:1e:b3:c6:11:ec:
a9:2f:05:c5:42:4e:28:25:9d:69:8d:02:83:9a:ac:
e3:8e:e6:d3:05:0a:39:b1:02:4f:2a:29:37:ec:3a:
33:71:e5:bd:76:91:00:6d:32:a0:ea:27:05:57:74:
05:e3:8d:04:65:a9:cf:b9:f3:25:a6:90:b9:0e:cd:
d3:d5:7d:7d:0b:0d:b1:37:3c:cb:99:2e:13:cf:d8:
2c:48:e9:bf:12:c0:94:1f:b6:c8:bd:fc:21:4e:b6:
45:c8:73:28:62:90:b6:7b:a5:ef:28:d2:d9:d6:f6:
c0:9b:9e:58:69:ca:18:a0:31:7a:44:6d:41:ef:5b:
09:62:c7:7f:9d:b5:94:0c:c8:51:e1:31:27:3d:e8:
5c:04:51:56:ab:70:d0:cd:f7:a9:b2:04:6a:d3:33:
97:cb:44:83:02:d5:77:81:64:50:2f:99:21:be:98:
0c:ca:87:75:5c:c7:a3:9c:bc:d7:ed:37:03:35:e0:
ac:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:2B:D2:4E:73:6D:55:7A:B1:C2:A1:FD:43:EF:56:12:57:10:5C:13
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/6SvSTnNtVXqxwqH9Q-9WElcQXBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.110.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:cc:2c:03:c9:42:be:e1:50:5c:a1:71:aa:eb:df:0e:2e:55:
3a:4c:cc:d7:77:40:94:e0:d2:21:95:3f:24:21:ec:83:4a:5f:
b1:8b:54:aa:93:1a:2e:0e:d7:64:28:7b:85:85:63:39:c9:b2:
73:7e:4a:19:47:95:d1:b1:24:9a:61:13:b0:9e:7f:17:92:4a:
79:b3:35:99:42:73:1c:28:9a:a7:da:2a:da:b1:49:06:1a:64:
d0:c5:47:70:bf:71:0a:47:77:f7:5e:df:8b:66:22:9e:42:94:
9b:f2:19:b9:a9:3f:57:d0:4e:fd:07:df:98:6c:01:de:a9:b9:
42:23:71:57:52:7c:bc:86:df:41:48:a4:5c:41:75:39:71:71:
cb:c9:2d:d2:15:0d:54:0a:9b:f5:e9:65:4a:db:b9:1a:c5:1d:
3a:b2:5e:38:9d:29:52:df:e4:13:19:64:fd:c2:30:80:bf:9c:
d3:dd:b4:b2:f3:0b:c6:7e:df:73:03:96:a1:f0:a9:e3:c1:13:
3c:77:66:b3:25:a3:2f:f2:c7:06:9d:01:f4:73:aa:83:04:a8:
82:8f:a8:fc:84:0b:22:0c:8c:f0:1e:24:14:12:d5:13:29:60:
66:6b:b0:8c:69:60:6d:2f:db:ee:10:d9:08:67:11:6e:76:bc:
37:40:97:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:55:38 2024 by rpki-client on console-ams.rpki-client.org