Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/W6DR9rw2euN2KwfRSxzMvIGbs0g.roa
File: W6DR9rw2euN2KwfRSxzMvIGbs0g.roa (raw, json)
Hash identifier: 6Cn10KLRUegafC8DZA/mkCx6IkvQjCLpyi1osNXN2Z8=
Subject key identifier: 5B:A0:D1:F6:BC:36:7A:E3:76:2B:07:D1:4B:1C:CC:BC:81:9B:B3:48
Certificate issuer: /CN=56a022deb0928f5d1a0a5fb00e96cad4c7d911d8
Certificate serial: 018CC5DCD50957DB6D81A55BAB1B147D12E9
Authority key identifier: 56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VqAi3rCSj10aCl-wDpbK1MfZEdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/W6DR9rw2euN2KwfRSxzMvIGbs0g.roa
Signing time: Mon 01 Jan 2024 16:30:33 +0000
ROA not before: Mon 01 Jan 2024 16:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48374
IP address blocks: 185.168.180.0/22 maxlen: 22
185.141.144.0/22 maxlen: 22
2a07:2500::/29 maxlen: 29
2a10:abc0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/VqAi3rCSj10aCl-wDpbK1MfZEdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:d5:09:57:db:6d:81:a5:5b:ab:1b:14:7d:12:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56a022deb0928f5d1a0a5fb00e96cad4c7d911d8
Validity
Not Before: Jan 1 16:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5ba0d1f6bc367ae3762b07d14b1cccbc819bb348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:53:cc:6b:e5:d2:ef:27:e2:a0:27:b5:a8:f5:
c5:b1:2a:21:6a:f2:44:ca:cd:25:ea:d9:af:39:23:
20:8e:80:5a:c8:ae:23:eb:9c:27:a5:1d:b0:e5:e2:
c5:78:c7:54:fd:48:02:f7:9b:f2:20:b2:bc:d6:f4:
b0:2e:a3:6f:b0:ed:b5:fd:4c:a4:dd:94:c6:8d:0d:
00:64:51:a6:5b:54:b2:d6:f2:c9:5c:70:90:88:a3:
72:84:a1:a9:30:e0:13:dd:22:29:7d:b4:f3:ff:2a:
e9:dc:e7:89:46:20:ad:6c:64:2b:cd:d6:77:c5:4c:
73:44:27:dd:d6:05:e2:e9:a5:a7:99:37:ee:eb:55:
1c:b5:6a:77:0a:4c:e3:79:16:aa:c3:32:42:e8:66:
37:35:db:3a:c0:17:86:4f:ba:7e:be:97:78:31:e3:
2c:77:60:e5:a7:da:30:7e:36:3e:06:72:6d:db:8b:
d5:2a:63:65:a1:30:9c:50:d5:48:26:97:29:43:0b:
7e:a1:6b:a2:be:e1:88:fd:57:d0:9f:9b:d3:22:35:
c5:d9:17:fd:4c:c3:42:c3:4d:cb:bb:e6:19:7b:de:
25:da:ed:2b:03:20:96:82:38:26:19:c6:50:f2:8d:
d3:fb:f3:d3:dc:88:02:ab:ad:cc:95:1c:c5:7f:a3:
d1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A0:D1:F6:BC:36:7A:E3:76:2B:07:D1:4B:1C:CC:BC:81:9B:B3:48
X509v3 Authority Key Identifier:
keyid:56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VqAi3rCSj10aCl-wDpbK1MfZEdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/W6DR9rw2euN2KwfRSxzMvIGbs0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.144.0/22
185.168.180.0/22
IPv6:
2a07:2500::/29
2a10:abc0::/29
Signature Algorithm: sha256WithRSAEncryption
94:95:1d:b2:4c:73:b4:a6:09:4c:de:d2:d9:48:47:7d:e6:a6:
3d:6f:5f:66:30:2f:99:51:a5:85:21:33:64:5a:19:0b:11:a9:
fd:0b:88:74:b4:b9:60:42:49:12:b8:77:33:cb:56:7f:83:53:
27:81:60:40:41:df:d7:d0:cc:03:6e:98:e4:87:05:10:2a:77:
46:22:ab:ba:09:69:e7:b7:a1:10:48:c5:ff:c8:74:ac:20:82:
1e:73:06:37:39:d9:80:d7:3c:4c:de:db:fa:a3:53:a4:d6:1f:
89:d3:eb:af:98:49:97:7e:6d:50:43:1e:76:fb:3f:27:de:e3:
a1:96:de:9f:f1:e8:58:e0:6c:9a:dc:ef:9b:ec:3f:b5:5e:03:
0d:57:23:bc:0d:c7:4c:60:7b:99:35:68:63:9a:0d:0d:1f:65:
2a:2c:7e:ae:78:84:86:41:f3:ec:81:4c:8b:eb:1a:3d:54:c0:
95:be:19:fa:5a:de:3f:9b:2a:fc:c1:59:6e:99:a3:6e:01:ae:
7f:e7:ea:c6:45:a7:bf:9c:89:f1:d9:88:a3:6d:30:7e:f4:f8:
4c:76:94:a6:9c:d0:6e:a1:b9:23:93:2b:c6:a7:9a:af:38:82:
35:3d:97:b3:a8:bd:9a:10:aa:78:6e:aa:6a:e3:31:b1:dc:ee:
32:83:f5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 19:53:57 2024 by rpki-client on console-fra.rpki-client.org