Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/6wXvkTLFLkQqEjl8tuh3Oyb_Gbk.roa
File: 6wXvkTLFLkQqEjl8tuh3Oyb_Gbk.roa (raw, json)
Hash identifier: dEkKpYVMtDOUTrazVTNqEmbQbsHtNRLkwZEITk2gJVM=
Subject key identifier: EB:05:EF:91:32:C5:2E:44:2A:12:39:7C:B6:E8:77:3B:26:FF:19:B9
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F81D4E9B1BB81E688CC2E563799C64D17
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/6wXvkTLFLkQqEjl8tuh3Oyb_Gbk.roa
Signing time: Thu 16 May 2024 14:36:05 +0000
ROA not before: Thu 16 May 2024 14:36:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43201
IP address blocks: 31.222.251.0/24 maxlen: 24
37.72.139.0/24 maxlen: 24
91.247.77.0/24 maxlen: 24
91.247.79.0/24 maxlen: 24
193.3.170.0/24 maxlen: 24
194.56.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:d4:e9:b1:bb:81:e6:88:cc:2e:56:37:99:c6:4d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 16 14:36:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb05ef9132c52e442a12397cb6e8773b26ff19b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d3:31:ef:58:3c:2b:70:c8:dc:2e:51:ed:41:
c4:83:1e:61:9c:e8:b1:8d:7e:94:7b:77:be:9e:83:
55:af:bf:4e:84:6e:11:62:87:fb:1b:e9:b1:a7:b6:
97:a7:c4:85:4f:e6:4e:e5:94:bd:f7:30:29:0e:cb:
67:f1:cc:46:3a:17:95:41:e3:2b:ce:e3:97:85:4c:
44:e1:c4:76:bb:a2:ca:8a:84:14:a6:e4:f4:28:1e:
d7:c2:bc:8f:79:a9:13:9d:fb:66:6e:0f:ef:2c:e3:
89:6c:8f:0d:58:39:13:80:48:4f:2a:dd:04:41:a8:
2e:5d:21:f7:40:d5:49:d7:27:0f:5a:a5:c1:c7:b2:
c8:b2:6c:42:3a:92:13:9f:32:bf:6b:44:03:67:28:
30:03:6c:aa:83:96:5e:7a:da:1f:a4:28:bf:dc:b2:
8d:44:59:37:27:a7:f5:c9:b9:f0:1b:b0:92:c7:88:
74:f1:72:bc:55:ea:93:db:6f:9e:91:f5:01:b4:a5:
e7:f7:38:93:b0:9c:d7:e4:8d:49:32:76:12:a6:61:
31:cc:8f:47:bc:ed:57:41:91:aa:a0:7e:42:cc:ab:
e8:da:e4:45:78:43:d7:63:90:f4:28:f2:0b:ee:6a:
27:3f:31:ff:2b:14:c0:b1:56:4e:64:16:a9:97:ba:
31:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:05:EF:91:32:C5:2E:44:2A:12:39:7C:B6:E8:77:3B:26:FF:19:B9
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/6wXvkTLFLkQqEjl8tuh3Oyb_Gbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.251.0/24
37.72.139.0/24
91.247.77.0/24
91.247.79.0/24
193.3.170.0/24
194.56.180.0/24
Signature Algorithm: sha256WithRSAEncryption
88:4d:2a:75:e6:b6:73:56:ef:d7:9f:30:27:b0:2b:9c:b8:f2:
84:76:6e:5d:e9:85:f1:4b:f3:9b:9a:b5:0c:0b:0e:30:7f:2d:
ee:00:03:8f:a0:c8:69:93:46:be:ee:8e:af:bd:b0:10:09:71:
bb:f5:b8:07:5a:a5:e6:e1:80:df:93:90:ff:fe:3c:03:d8:1c:
0a:6a:ff:05:8a:58:ae:7c:4b:c4:c6:3a:66:a4:d1:da:d4:1a:
de:c4:6a:d0:4c:1b:17:d2:e8:6c:2c:98:f2:c4:7f:43:08:1e:
0e:70:e8:b7:86:ee:3e:5d:92:7b:c8:41:d2:6f:27:0b:f6:b8:
7e:33:9e:02:67:1f:86:9c:87:b6:e8:9e:44:06:9f:06:27:08:
7e:80:40:7c:ae:98:fa:01:25:62:ae:e4:7d:12:30:b3:0b:a6:
ef:75:fe:4a:86:f4:ea:e4:84:7c:8f:1a:6a:ed:b1:44:40:52:
01:0a:52:da:1f:11:74:5f:58:d2:65:78:42:2b:cc:f5:6b:0b:
45:99:03:bd:4e:28:55:af:b3:6c:2b:61:e2:0b:79:6b:d6:0b:
8b:33:32:f4:f7:f0:00:10:2e:e5:c6:a1:a9:9e:f1:3f:d7:ee:
f8:7b:b9:b1:a4:73:8c:4f:36:7b:68:69:5d:9b:6c:56:b0:43:
e3:50:3f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:22:20 2024 by rpki-client on console-ams.rpki-client.org