Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/6IH2PhO_P6ASuEYDTzT-024edhM.roa
File: 6IH2PhO_P6ASuEYDTzT-024edhM.roa (raw, json)
Hash identifier: 7yx6Ac2bWZTKAtcNW3zWjPsFqtbHv6GfpSER81lZ4o4=
Subject key identifier: E8:81:F6:3E:13:BF:3F:A0:12:B8:46:03:4F:34:FE:D3:6E:1E:76:13
Certificate issuer: /CN=d26a4409ea91f506d633871c6c35540d460337d1
Certificate serial: 018FA1850EA3405AA9821DD1FDB5B182B466
Authority key identifier: D2:6A:44:09:EA:91:F5:06:D6:33:87:1C:6C:35:54:0D:46:03:37:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mpECeqR9QbWM4ccbDVUDUYDN9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/6IH2PhO_P6ASuEYDTzT-024edhM.roa
Signing time: Wed 22 May 2024 18:16:42 +0000
ROA not before: Wed 22 May 2024 18:16:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 5.61.202.0/24 maxlen: 24
5.61.204.0/24 maxlen: 24
5.61.205.0/24 maxlen: 24
5.61.206.0/24 maxlen: 24
5.61.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/0mpECeqR9QbWM4ccbDVUDUYDN9E.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/0mpECeqR9QbWM4ccbDVUDUYDN9E.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mpECeqR9QbWM4ccbDVUDUYDN9E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a1:85:0e:a3:40:5a:a9:82:1d:d1:fd:b5:b1:82:b4:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d26a4409ea91f506d633871c6c35540d460337d1
Validity
Not Before: May 22 18:16:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e881f63e13bf3fa012b846034f34fed36e1e7613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:76:fb:e9:02:b2:1e:73:4b:9e:7d:b6:2d:71:
50:24:37:30:6e:d9:12:96:3a:23:51:b9:ea:70:df:
e4:b1:86:ef:f0:53:e2:76:83:c5:ed:ba:4d:20:1c:
c4:44:89:6f:cc:24:bd:37:cd:ea:5c:d8:aa:10:4d:
59:a1:48:aa:2b:59:5e:ab:b2:3b:7a:7a:12:6e:fa:
28:59:f6:42:82:7a:be:4a:fe:2e:7c:29:f5:14:c5:
18:1a:6f:0a:fd:4c:ed:df:aa:35:1f:11:53:b6:ea:
8f:9e:49:d0:d3:c0:4b:fc:af:00:b1:bc:5b:d6:85:
c9:e9:16:6e:70:ee:35:fc:6d:49:58:5d:4e:1e:c9:
87:35:37:a1:9b:70:91:ca:af:35:94:d5:83:ec:eb:
dd:1b:08:73:60:e4:fe:58:53:3f:74:10:21:59:c6:
7b:6a:c2:43:62:af:3c:7c:30:d9:7a:45:ac:eb:92:
80:c1:56:c9:73:84:5d:3a:d8:42:c3:1f:99:81:a6:
c1:28:b7:79:a8:f5:8e:fd:92:93:d9:d8:0d:79:ca:
86:9c:1e:62:cf:67:fc:8c:3c:fb:44:e1:f9:ba:a1:
88:95:09:45:a1:8f:78:ed:70:b3:78:8c:66:72:97:
50:49:0a:9e:2f:c4:2a:49:36:bb:21:0a:a9:bc:28:
27:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:81:F6:3E:13:BF:3F:A0:12:B8:46:03:4F:34:FE:D3:6E:1E:76:13
X509v3 Authority Key Identifier:
keyid:D2:6A:44:09:EA:91:F5:06:D6:33:87:1C:6C:35:54:0D:46:03:37:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mpECeqR9QbWM4ccbDVUDUYDN9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/6IH2PhO_P6ASuEYDTzT-024edhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/0mpECeqR9QbWM4ccbDVUDUYDN9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.202.0/24
5.61.204.0/22
Signature Algorithm: sha256WithRSAEncryption
17:b9:02:13:0c:cb:ee:a7:c2:bc:3f:fc:6d:21:ff:0b:76:5f:
a8:32:4f:e1:18:0b:63:c8:63:fb:84:20:36:d0:16:9d:96:1d:
df:4a:e4:6b:a9:e7:ca:92:1a:b6:7b:53:17:f5:63:22:07:31:
fe:c2:17:a0:c9:38:25:e6:6b:bd:ba:49:f2:48:f9:84:ff:77:
f9:e3:ad:c9:3e:4a:cb:22:c5:0a:db:17:dc:3b:23:f6:e3:d0:
56:77:80:39:55:7d:ef:03:9b:6e:af:23:21:a7:0c:1d:23:48:
e4:29:e7:f5:bc:23:20:02:40:6e:ae:ec:cf:a2:c9:63:21:6a:
e5:a0:0e:e7:e2:10:19:f7:9c:66:a3:b7:5f:4f:a0:f9:ac:9a:
ad:fc:9e:57:d7:e6:02:e3:58:bc:65:55:74:49:85:65:1c:a8:
ca:90:36:6d:17:d9:ba:5f:2f:34:c5:94:51:b1:3d:c7:c7:fc:
45:e8:28:bf:d5:da:1d:54:b5:c7:a5:fa:fb:2d:6c:f4:e0:da:
e1:b4:fb:8f:5b:56:f8:95:32:45:f6:ba:e5:3e:40:6b:f6:a8:
74:bb:65:f3:c8:c5:25:7e:d2:78:b7:96:f5:3c:b8:01:99:bd:
a1:af:bc:2e:4f:dc:94:96:c3:68:96:cb:40:79:3a:e0:e6:db:
9c:dd:09:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:06:56 2024 by rpki-client on console-fra.rpki-client.org