Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/8XN6Ls2u6awEwwjMkGRClZy7rdo.roa
File: 8XN6Ls2u6awEwwjMkGRClZy7rdo.roa (raw, json)
Hash identifier: 3Olu6+Dw4syJ03AmIvi0tL5YSqZlgpTNcG8Me9LNV8E=
Subject key identifier: F1:73:7A:2E:CD:AE:E9:AC:04:C3:08:CC:90:64:42:95:9C:BB:AD:DA
Certificate issuer: /CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Certificate serial: 018E0A01E913BEE25C9A2E9E0D5072F0E67D
Authority key identifier: 5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/8XN6Ls2u6awEwwjMkGRClZy7rdo.roa
Signing time: Mon 04 Mar 2024 15:08:01 +0000
ROA not before: Mon 04 Mar 2024 15:08:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6893
IP address blocks: 62.220.128.0/19 maxlen: 19
62.220.149.0/24 maxlen: 24
62.220.150.0/24 maxlen: 24
62.220.158.0/24 maxlen: 24
185.125.196.0/22 maxlen: 22
185.125.196.0/23 maxlen: 23
185.125.196.0/24 maxlen: 24
185.125.197.0/24 maxlen: 24
185.125.198.0/24 maxlen: 24
2001:788::/29 maxlen: 29
2001:788::/32 maxlen: 32
2001:789::/32 maxlen: 32
2001:78a::/40 maxlen: 40
2001:78c::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0a:01:e9:13:be:e2:5c:9a:2e:9e:0d:50:72:f0:e6:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Validity
Not Before: Mar 4 15:08:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1737a2ecdaee9ac04c308cc906442959cbbadda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:17:24:1b:52:f9:50:73:d3:f9:98:ad:4b:db:
4e:01:09:f3:e7:f6:ca:22:d6:4a:5e:3f:7b:e2:92:
e3:c8:7d:62:d9:9e:de:1d:5f:f3:47:0f:b7:81:f9:
4d:4a:dc:4c:66:1b:b9:c7:6a:33:c8:45:3b:1f:5f:
3e:e6:8b:3d:52:0c:7d:e0:6d:5b:ae:c3:72:e9:ab:
40:67:53:a0:4c:48:75:e8:09:72:56:63:52:92:7b:
17:20:d0:91:bb:57:d6:2d:2a:2b:65:78:58:8b:29:
97:e0:c0:24:fd:c5:72:79:67:88:73:38:5e:9f:c9:
a8:d5:d7:2e:30:08:71:85:1b:df:4c:82:99:f4:1a:
66:05:26:6b:e9:b1:a3:c7:95:66:75:ab:be:cf:1a:
69:c3:f2:92:84:cd:d5:54:39:7a:73:9d:9d:3c:09:
b5:17:7b:b8:06:31:d0:a4:1f:0d:de:4d:1b:6f:d3:
75:6c:08:da:a6:e5:7c:3a:24:5e:f4:55:9a:f4:8f:
27:dd:9e:a9:bc:a6:6b:98:0c:43:cc:57:d7:a0:c5:
f0:82:1b:e6:19:0a:f8:ab:81:b1:79:7d:e2:1b:53:
de:cf:e3:96:89:39:dc:5b:d1:50:f3:36:a9:49:0e:
28:b5:02:16:86:b2:e0:0d:b0:96:99:38:05:ed:80:
53:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:73:7A:2E:CD:AE:E9:AC:04:C3:08:CC:90:64:42:95:9C:BB:AD:DA
X509v3 Authority Key Identifier:
keyid:5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/8XN6Ls2u6awEwwjMkGRClZy7rdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.128.0/19
185.125.196.0/22
IPv6:
2001:788::/29
Signature Algorithm: sha256WithRSAEncryption
72:5a:ed:4c:9b:a6:69:7b:54:81:81:6f:4c:83:09:d7:5e:cd:
83:25:93:d1:af:86:b6:d1:58:35:34:f0:63:9d:95:32:59:18:
1e:82:8d:e4:92:d1:32:04:c5:82:e9:36:f0:bf:c9:29:40:55:
d2:ba:37:c0:a4:2d:eb:a3:79:bc:ae:0a:27:ad:02:13:8b:62:
db:fa:ba:87:cb:cb:fc:a6:36:17:d8:4b:b3:0f:c4:8e:f9:fd:
41:81:34:8a:f7:bc:9b:5b:99:da:49:58:4d:79:96:bc:73:22:
92:b8:76:b3:0d:c3:18:a5:53:a7:b3:08:71:98:9b:a9:8c:62:
83:f4:aa:9f:fd:3f:b1:d9:fd:7c:96:11:c7:80:47:7a:6f:99:
bf:f0:70:74:70:ed:2c:6b:6a:90:b3:5e:8d:a1:23:74:d9:6e:
9f:63:40:49:cf:38:f4:bf:4b:e7:11:c5:2c:31:8b:69:d0:d9:
93:df:33:0f:ec:b6:97:86:67:90:a4:12:e2:b5:8c:a1:f7:e1:
2b:ad:88:8e:55:b1:20:7e:1a:35:79:44:22:68:aa:6a:13:ba:
b2:e9:5f:57:52:b4:41:c8:42:2f:1d:94:95:b1:63:54:03:b0:
7f:d9:7d:d1:fd:47:b0:ca:3b:70:b8:53:1d:49:98:66:a1:d3:
19:d4:75:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:32:50 2024 by rpki-client on console-ams.rpki-client.org