Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/Y6bNWNJlV2Z485XbBD4W0Fx19mQ.roa
File: Y6bNWNJlV2Z485XbBD4W0Fx19mQ.roa (raw, json)
Hash identifier: utOlIsJsk2Tr3dJKW+rainyNJV7ikyXF0dOzhEI0UNs=
Subject key identifier: 63:A6:CD:58:D2:65:57:66:78:F3:95:DB:04:3E:16:D0:5C:75:F6:64
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 018CC7275772CF87CEE47D17A7ADE7EFB803
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/Y6bNWNJlV2Z485XbBD4W0Fx19mQ.roa
Signing time: Mon 01 Jan 2024 22:31:33 +0000
ROA not before: Mon 01 Jan 2024 22:31:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211871
IP address blocks: 213.238.179.0/24 maxlen: 24
213.238.181.0/24 maxlen: 24
213.238.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:57:72:cf:87:ce:e4:7d:17:a7:ad:e7:ef:b8:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 22:31:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63a6cd58d265576678f395db043e16d05c75f664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0e:5e:a9:0b:3a:e7:ee:1b:91:78:fc:60:a3:
3f:46:d6:e6:1f:2f:2c:ee:60:75:bc:66:6f:e4:27:
33:53:ac:1b:dc:de:0c:34:ce:d2:43:f0:78:d9:74:
99:e2:4e:23:39:06:75:8f:75:b4:ad:7c:ad:e5:05:
6f:f9:be:0b:22:01:a4:4c:2d:26:1d:73:4a:28:ea:
29:49:52:cd:44:be:e1:5b:33:02:81:bd:97:ad:a4:
a2:3e:f9:61:e4:32:d0:34:4f:3b:e6:ad:f0:96:d3:
dc:cd:5b:61:a9:c2:1f:54:0b:bd:d8:df:c9:1c:ea:
fa:b5:ea:0f:66:27:19:3f:7a:6a:82:2a:86:5c:1b:
62:69:b1:5b:b5:39:ec:1c:15:20:ea:05:8e:16:01:
77:37:3f:00:15:20:3f:c8:c5:b8:c4:6f:4b:48:6c:
eb:ca:76:37:46:ba:2b:55:d2:fe:04:6f:b2:7d:be:
6d:d2:00:2f:0c:1d:26:ee:0b:dd:07:97:7b:ef:eb:
66:6b:ad:59:1a:3f:cc:40:0d:68:e2:37:a1:17:e1:
16:d9:a8:5c:1d:ac:8e:01:42:34:e5:29:2d:eb:dc:
13:44:9e:26:52:fc:c6:d6:73:81:94:55:33:cb:3b:
38:c4:0e:25:8f:16:44:c0:05:49:af:83:d7:e4:ce:
77:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A6:CD:58:D2:65:57:66:78:F3:95:DB:04:3E:16:D0:5C:75:F6:64
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/Y6bNWNJlV2Z485XbBD4W0Fx19mQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.179.0/24
213.238.181.0/24
213.238.190.0/24
Signature Algorithm: sha256WithRSAEncryption
46:12:a7:ad:ff:18:b5:a9:47:ee:ac:2e:1a:11:e0:4a:27:2f:
7e:1e:06:00:8c:42:2a:9d:9f:e6:70:90:f4:3b:22:d3:06:3c:
22:fd:c3:db:ef:7a:fd:10:16:9c:c8:52:92:69:af:22:56:6f:
1e:45:df:af:1a:dd:13:06:39:f9:cb:5c:64:a5:a4:4c:f7:e3:
a8:69:59:31:28:83:27:36:d7:f6:93:e1:a5:98:7e:95:9d:5e:
28:cd:2d:8f:77:a3:06:ee:53:ee:7f:b7:cc:c8:09:6e:21:05:
be:ed:51:ff:6b:f7:ab:10:d0:06:55:c9:c9:f4:d5:ec:05:d5:
05:18:48:c4:41:ed:8d:b9:d4:c5:a9:07:01:5e:ea:f2:08:b9:
d5:8b:7b:cb:e0:ca:df:67:f6:15:34:8a:29:4f:fa:36:16:5f:
81:6a:03:fc:3e:51:51:ae:4a:60:65:6f:98:ee:d2:28:24:c2:
c3:3d:33:a4:d7:95:35:1f:87:1f:a5:ba:36:6e:3b:c0:e2:b9:
22:ee:a3:f1:f8:9d:7a:18:dc:8d:1b:9e:ab:9b:86:41:7f:71:
9d:55:87:f2:53:31:3b:86:cf:53:27:ae:41:4c:e9:62:08:2a:
0e:f1:2b:12:ab:27:b0:90:e3:66:82:bc:4c:0a:8f:bd:88:00:
d1:d5:36:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 05:48:34 2024 by rpki-client on console-ams.rpki-client.org