Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/6207e8-eeb5-4334-8dfe-63799c026a57/1/6HOJe6LgLC-invOdWrFqQqgRdB8.roa
File: 6HOJe6LgLC-invOdWrFqQqgRdB8.roa (raw, json)
Hash identifier: TpPSMTNab7soV3Ir3AEX4+WHA7Tj8/XmVc6xaLIxSdU=
Subject key identifier: E8:73:89:7B:A2:E0:2C:2F:A2:9E:F3:9D:5A:B1:6A:42:A8:11:74:1F
Certificate issuer: /CN=51476318d71bf658f9a845f54ab27bd899892437
Certificate serial: 018CC64B725B8016A3F33BCDE237FA6D7429
Authority key identifier: 51:47:63:18:D7:1B:F6:58:F9:A8:45:F5:4A:B2:7B:D8:99:89:24:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUdjGNcb9lj5qEX1SrJ72JmJJDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/6207e8-eeb5-4334-8dfe-63799c026a57/1/6HOJe6LgLC-invOdWrFqQqgRdB8.roa
Signing time: Mon 01 Jan 2024 18:31:22 +0000
ROA not before: Mon 01 Jan 2024 18:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197380
IP address blocks: 185.127.112.0/24 maxlen: 24
185.127.115.0/24 maxlen: 24
185.127.113.0/24 maxlen: 24
185.127.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/6207e8-eeb5-4334-8dfe-63799c026a57/1/UUdjGNcb9lj5qEX1SrJ72JmJJDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/6207e8-eeb5-4334-8dfe-63799c026a57/1/UUdjGNcb9lj5qEX1SrJ72JmJJDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUdjGNcb9lj5qEX1SrJ72JmJJDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:72:5b:80:16:a3:f3:3b:cd:e2:37:fa:6d:74:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51476318d71bf658f9a845f54ab27bd899892437
Validity
Not Before: Jan 1 18:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e873897ba2e02c2fa29ef39d5ab16a42a811741f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0e:3c:14:0d:e5:66:d2:f2:a0:df:fb:1b:17:
46:7c:a6:30:cc:ab:2e:bb:f7:92:06:52:45:a5:91:
9a:6c:f4:0c:50:d9:24:87:bf:e1:5d:db:84:63:6d:
dd:d9:61:4b:0a:34:5c:3c:ff:27:64:5c:2f:66:d1:
bb:7b:35:7e:f8:57:e3:87:48:85:b4:4b:f0:3a:c0:
5f:ec:2c:d0:e2:52:05:24:6b:07:66:95:0e:5b:c2:
ed:82:5a:e7:37:b8:65:0f:75:3b:46:2b:48:0d:f7:
8e:50:6b:b7:a5:85:c3:60:9c:7f:31:43:8d:66:d3:
51:65:3f:09:54:fe:fe:63:4a:a6:1a:f9:a6:39:08:
ac:2d:d1:81:8b:47:6b:d1:5b:12:fb:1d:cd:82:3e:
08:a3:5f:aa:68:c4:e9:08:e4:37:16:19:a1:c5:ee:
0f:27:aa:ef:cd:ab:7c:fd:ce:06:38:2b:6a:d4:81:
6f:61:45:bf:13:f0:89:a6:0c:43:a8:40:4d:95:0f:
71:63:a9:5c:32:3b:74:49:de:73:8c:e3:54:c9:fe:
db:0b:7c:06:46:7d:80:3b:06:8a:f4:55:41:e6:09:
09:73:03:de:0d:3f:47:6d:3b:d9:98:c0:04:40:f9:
1e:36:c3:78:78:a2:64:bd:f4:c5:6a:bc:49:9f:69:
ef:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:73:89:7B:A2:E0:2C:2F:A2:9E:F3:9D:5A:B1:6A:42:A8:11:74:1F
X509v3 Authority Key Identifier:
keyid:51:47:63:18:D7:1B:F6:58:F9:A8:45:F5:4A:B2:7B:D8:99:89:24:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUdjGNcb9lj5qEX1SrJ72JmJJDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6207e8-eeb5-4334-8dfe-63799c026a57/1/6HOJe6LgLC-invOdWrFqQqgRdB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6207e8-eeb5-4334-8dfe-63799c026a57/1/UUdjGNcb9lj5qEX1SrJ72JmJJDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.112.0/22
Signature Algorithm: sha256WithRSAEncryption
47:14:f3:fd:e3:ac:88:6e:31:80:9e:76:1a:8b:16:4e:f5:4d:
38:62:0f:55:ad:34:28:91:e7:2d:7a:c5:6a:b3:08:f8:10:bd:
ea:db:a0:6c:22:57:82:23:e9:76:53:69:72:60:d7:b5:25:8d:
37:bc:17:18:53:1c:16:7f:b5:3f:78:1d:c9:72:ae:03:50:98:
22:ed:46:fc:f3:54:c4:3e:a5:11:e4:cb:a4:ca:c9:54:7b:6f:
ea:4f:af:b3:56:d2:43:01:df:f1:2d:a8:82:0a:9f:77:3b:e2:
2d:fa:88:6d:94:05:2f:a6:f1:e7:19:b2:89:ea:9a:b4:80:43:
f5:31:24:97:2e:06:1b:a9:9d:7f:2b:e5:2a:39:f1:15:0a:da:
49:83:d1:70:4a:b9:c8:b5:18:02:da:9f:b9:8b:48:9e:bb:70:
93:bc:68:77:38:3f:4d:21:3f:80:7a:b2:d9:0f:e0:67:d4:a3:
c1:af:4e:80:c3:71:72:8f:a4:a3:fe:00:f8:9f:97:05:39:4c:
6f:a5:96:44:3a:0a:9e:ec:76:50:96:3d:5b:4e:00:c7:88:87:
85:e3:6e:cb:b0:23:c3:0e:bc:d5:18:5c:6c:b3:c2:f6:dd:22:
3d:4d:98:af:e5:02:fc:55:00:b3:27:69:91:8c:05:d9:4a:6f:
d4:dd:9e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 03:05:33 2024 by rpki-client on console-fra.rpki-client.org