Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/yeeuhXUV56ipS-Jq9ln0Q8NEnMg.roa
File: yeeuhXUV56ipS-Jq9ln0Q8NEnMg.roa (raw, json)
Hash identifier: EA+ojy9RXNITvFGzmDiTS3c/JR79aePr64hapgB6Ds0=
Subject key identifier: C9:E7:AE:85:75:15:E7:A8:A9:4B:E2:6A:F6:59:F4:43:C3:44:9C:C8
Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial: 018CC3B7439CA609DF697E6EC5C6868E96DB
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/yeeuhXUV56ipS-Jq9ln0Q8NEnMg.roa
Signing time: Mon 01 Jan 2024 06:30:16 +0000
ROA not before: Mon 01 Jan 2024 06:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212813
IP address blocks: 185.76.158.0/24 maxlen: 24
2a10:2680::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:43:9c:a6:09:df:69:7e:6e:c5:c6:86:8e:96:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Validity
Not Before: Jan 1 06:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9e7ae857515e7a8a94be26af659f443c3449cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8c:98:fc:aa:5d:a6:9e:e1:5b:97:24:c7:06:
85:5a:60:4f:2f:94:54:23:d0:ee:9d:c8:35:0f:18:
1e:6d:77:e0:51:64:c0:43:b8:b0:2e:df:8d:d2:97:
24:de:2a:a5:09:7c:a7:57:5c:89:d7:0c:64:c5:6e:
ab:63:4e:98:6d:5b:75:56:16:57:ac:59:67:96:79:
b9:e3:b7:ca:7a:7b:26:22:7e:39:b5:88:01:51:88:
38:d9:68:1d:6f:9e:51:49:3e:ca:f8:85:ad:a8:be:
45:b9:44:ea:de:8e:73:e3:fa:bf:9f:41:f6:56:b5:
74:fd:b4:60:1b:6f:43:72:92:23:f0:5c:4e:1d:da:
2c:c0:20:72:6c:55:6d:8a:a3:e2:3a:0c:19:c3:4f:
d7:b0:11:98:18:f5:34:96:88:9a:59:9d:6b:f9:ca:
22:b9:a3:08:e6:bb:2f:29:50:c7:1e:0a:b4:93:8a:
8f:aa:31:26:d3:52:48:ca:9a:e2:03:b9:d8:ef:cd:
0f:84:34:59:86:9b:b3:fd:de:cc:0a:57:9d:e7:b0:
0c:f6:06:81:c2:93:15:1f:6d:77:25:84:7a:ee:24:
03:67:5e:76:42:c9:78:ad:a1:47:6f:b1:b0:e2:a6:
14:83:21:e9:5c:f7:7e:87:71:f8:f3:62:57:ec:e6:
ac:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E7:AE:85:75:15:E7:A8:A9:4B:E2:6A:F6:59:F4:43:C3:44:9C:C8
X509v3 Authority Key Identifier:
keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/yeeuhXUV56ipS-Jq9ln0Q8NEnMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.158.0/24
IPv6:
2a10:2680::/29
Signature Algorithm: sha256WithRSAEncryption
76:37:ba:b6:c0:1a:ad:19:04:b6:d3:f4:03:99:75:d3:d4:1f:
7a:72:f7:e6:2f:6d:5d:7e:b8:1b:c1:4a:a5:81:10:29:ee:25:
11:df:9c:0f:10:5c:32:20:c1:48:3c:d6:a5:cd:5b:ab:ed:da:
e9:be:51:5a:77:0d:e6:30:84:40:52:64:ed:7e:0d:91:97:ef:
d7:10:f2:e5:b4:25:74:19:1f:e5:ed:1b:a3:8b:20:24:6f:58:
22:e3:1d:ed:5d:b3:df:e6:3d:a9:63:15:40:3f:9e:c1:9b:03:
01:24:93:c1:45:35:4d:86:8a:66:b7:bc:92:0a:c7:97:ac:6c:
4f:56:c3:07:91:a9:42:5c:2b:e6:97:79:92:b4:10:a0:74:4e:
ac:7e:e0:03:0c:3c:ca:ef:7e:10:fb:93:57:e6:81:01:a7:5b:
bc:de:8a:1e:df:7a:a0:fd:a3:87:0f:ba:6e:f6:ef:51:d1:74:
7b:a6:86:83:6e:eb:e6:a2:4e:60:16:b2:41:30:f4:1f:ba:46:
1e:92:b6:c2:49:c8:e5:5c:46:7a:ca:da:36:b2:34:8f:50:9a:
f9:77:ea:66:f2:9a:eb:62:df:9d:20:5e:66:cb:1f:24:58:ec:
b3:b1:03:61:7c:af:00:e9:32:a9:9b:f3:2d:f9:cd:3a:b8:0d:
6f:27:ff:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:47:04 2024 by rpki-client on console-fra.rpki-client.org