Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/6blgCUf86x3rCdfBH3ieROWsyRA.roa
File: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (raw, json)
Hash identifier: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=
Subject key identifier: E9:B9:60:09:47:FC:EB:1D:EB:09:D7:C1:1F:78:9E:44:E5:AC:C9:10
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0194244551F73D5D97A385274A75AAB801A1
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/6blgCUf86x3rCdfBH3ieROWsyRA.roa
Signing time: Wed 01 Jan 2025 23:48:30 +0000
ROA not before: Wed 01 Jan 2025 23:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200017
IP address blocks: 79.98.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 10:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:51:f7:3d:5d:97:a3:85:27:4a:75:aa:b8:01:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 1 23:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9b9600947fceb1deb09d7c11f789e44e5acc910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4b:39:90:ac:a0:05:c8:90:0f:e2:d7:2c:a5:
2e:e8:66:33:05:59:3e:c0:60:79:4a:85:bb:de:78:
03:16:cc:39:03:5e:e2:10:82:86:23:d2:28:16:ab:
7b:65:21:6c:51:2c:9b:1b:5e:0d:43:fa:17:9d:02:
3d:02:fa:de:d1:f5:b9:84:ab:ab:52:71:ee:ae:e3:
8b:b4:3b:84:a6:47:c7:06:8a:06:e3:bb:25:2d:97:
38:07:01:7e:f4:4e:b0:0e:06:33:b6:d2:fa:6f:f6:
ff:d0:83:64:a2:a0:7a:6b:2b:72:7c:d5:b8:11:55:
e7:81:00:65:00:e7:d1:e7:62:f2:6b:95:64:92:09:
5c:7b:74:3c:54:1d:40:76:65:1a:e0:25:16:c9:4e:
30:f6:e6:9d:2d:32:d4:ae:b5:bb:ce:88:a5:68:e5:
c4:c7:c6:aa:76:d5:5d:25:ab:81:26:9c:71:9f:81:
9a:ee:32:6e:a7:da:73:48:d1:8b:97:ca:cb:5f:05:
16:f2:ab:91:07:ef:2e:36:1d:23:0e:3f:9c:ec:84:
58:ba:4c:a1:3b:86:01:f0:49:58:3d:5a:77:28:51:
f0:49:27:da:96:8d:70:97:2b:8b:6d:8a:0e:c2:a0:
84:b1:42:83:3e:cf:0f:48:5e:88:b4:4f:80:b5:a0:
9c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B9:60:09:47:FC:EB:1D:EB:09:D7:C1:1F:78:9E:44:E5:AC:C9:10
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/6blgCUf86x3rCdfBH3ieROWsyRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.247.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:ba:7a:6d:04:33:b6:48:b0:09:35:bc:db:1b:f1:cf:dc:a5:
f3:2d:46:ef:4e:30:34:71:74:d6:de:79:1e:08:22:08:49:99:
31:4e:f5:af:36:9d:b8:73:c7:f3:1e:d4:3c:f8:91:d2:7a:ac:
52:1f:62:a9:b7:2e:ae:26:2e:c8:d1:84:5b:44:ff:d5:91:92:
c9:96:24:c3:c4:c3:9b:8a:03:2b:a4:35:8c:ee:e4:55:7b:92:
cc:09:2f:1d:ca:a0:1c:d5:b3:6d:a1:9c:9f:6e:ee:aa:ce:31:
6b:c6:c8:fc:08:21:b7:0a:c6:41:bf:95:e3:93:73:7e:b4:a9:
80:81:aa:53:df:60:b3:ef:3c:0b:13:49:ce:66:59:e5:17:2d:
a9:b5:62:92:a1:e5:06:f9:0a:1e:04:4b:88:7b:53:3e:5c:b5:
1e:f9:04:ad:61:82:3f:cb:bd:0a:be:16:9d:65:d8:6e:1a:fe:
21:14:a7:be:f5:ff:7a:d4:83:ac:49:b1:ba:a9:87:3b:ad:0e:
fb:04:44:26:f3:96:c8:de:84:ce:4a:e2:91:27:a3:4d:01:f6:
63:f5:6f:84:8f:d6:29:03:1a:6b:46:2e:0e:34:5b:39:69:c6:
fa:15:2d:67:7c:ed:c7:a1:d6:a7:79:d3:30:e9:60:aa:7b:ea:
29:9c:6b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 19:01:19 2025 by rpki-client