Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/6BBLSoe_XLEKUE9JDikntGOq4es.roa
File: 6BBLSoe_XLEKUE9JDikntGOq4es.roa (raw, json)
Hash identifier: h+OYHHA5mnakaHyWsF/IxhvxYF4ww+5DbeTAUNVOi94=
Subject key identifier: E8:10:4B:4A:87:BF:5C:B1:0A:50:4F:49:0E:29:27:B4:63:AA:E1:EB
Certificate issuer: /CN=269b8a3748440c9d5c2c508bd03b46d7273eee56
Certificate serial: 018CC26D79438137A474665D03D00494D176
Authority key identifier: 26:9B:8A:37:48:44:0C:9D:5C:2C:50:8B:D0:3B:46:D7:27:3E:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/6BBLSoe_XLEKUE9JDikntGOq4es.roa
Signing time: Mon 01 Jan 2024 00:30:03 +0000
ROA not before: Mon 01 Jan 2024 00:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62119
IP address blocks: 185.244.160.0/24 maxlen: 24
2a12:42c0::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:79:43:81:37:a4:74:66:5d:03:d0:04:94:d1:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=269b8a3748440c9d5c2c508bd03b46d7273eee56
Validity
Not Before: Jan 1 00:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8104b4a87bf5cb10a504f490e2927b463aae1eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:8d:81:c8:52:2e:7d:c7:5c:16:08:a6:15:
33:d4:78:8d:0c:7f:45:57:b6:e1:9b:ab:56:6d:30:
f7:53:79:e2:d0:26:ac:e8:0c:c2:e3:c8:1e:79:72:
f0:4a:c4:45:b9:83:96:ea:01:cc:03:b5:1a:af:3b:
21:8f:d8:f4:7c:79:36:65:77:bd:7e:db:01:11:7b:
fd:0f:2d:37:db:a7:90:23:28:12:6e:35:a4:63:0f:
b2:21:03:b5:f9:7a:dc:b9:63:ad:2d:a5:62:57:bb:
a9:b6:71:de:01:5c:3c:29:75:3e:f3:88:e7:5e:2a:
6f:65:c9:86:c2:ab:af:0c:c2:4a:28:cb:a4:94:a8:
c7:dc:ce:d1:22:db:fd:eb:73:5d:4c:87:fe:b7:83:
3f:93:2b:0e:3d:05:b1:7e:3d:9a:01:a3:25:d1:fe:
35:61:5b:76:6d:fd:f9:f5:63:47:d6:ec:bd:10:e1:
97:a8:7d:3e:94:54:c3:9a:b7:48:0b:0e:d0:51:18:
7e:9b:1d:e9:1c:11:8f:15:fc:e2:97:67:fa:98:c3:
6f:01:3f:80:49:c0:82:b0:7e:ee:35:99:fc:91:0e:
30:db:86:94:0f:12:2c:bb:23:21:ee:2a:a6:67:c3:
58:b1:58:b8:80:e6:89:c2:91:f0:fd:77:9d:62:c3:
d2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:10:4B:4A:87:BF:5C:B1:0A:50:4F:49:0E:29:27:B4:63:AA:E1:EB
X509v3 Authority Key Identifier:
keyid:26:9B:8A:37:48:44:0C:9D:5C:2C:50:8B:D0:3B:46:D7:27:3E:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/6BBLSoe_XLEKUE9JDikntGOq4es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.160.0/24
IPv6:
2a12:42c0::/29
Signature Algorithm: sha256WithRSAEncryption
13:c5:c2:d2:ec:5c:5e:e8:ee:22:e4:2f:af:30:09:4b:39:09:
02:01:70:d9:93:18:62:2c:dd:cd:70:72:43:8d:15:05:fc:92:
11:02:dd:e8:e5:82:99:c3:07:4f:ba:a4:bb:10:98:14:35:74:
42:2f:c6:ed:d2:db:9e:76:10:2d:98:6b:da:ec:ce:85:80:5f:
33:77:49:f0:2c:2e:c6:bd:d2:d8:ac:57:8e:06:a0:60:40:47:
3e:e4:d8:90:bc:7b:eb:2e:14:48:ad:46:97:51:00:e4:97:69:
38:74:ad:91:3b:32:66:4a:00:7d:00:20:58:b4:6b:9b:f6:03:
76:80:32:eb:66:35:d3:10:86:38:51:05:99:5a:21:fe:22:e0:
97:22:2f:e2:64:a2:b7:ac:37:bd:84:f7:dd:aa:e8:1d:19:b5:
9c:2b:42:43:1e:0d:87:73:6e:38:0b:96:5f:35:8d:f2:2d:49:
56:8c:1e:46:1f:70:ff:24:0b:04:7f:c4:70:b1:c6:56:c6:ef:
c6:84:ab:46:ed:33:d9:a5:c4:10:e8:a9:6a:f9:f7:13:f0:63:
75:cc:a9:d6:59:6c:fc:1a:68:17:31:99:70:01:f1:2c:c8:f0:
e7:20:50:d5:e2:0e:e9:26:bb:d9:3b:d3:54:13:71:b3:ff:12:
8e:29:74:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:20:45 2024 by rpki-client on console-fra.rpki-client.org