Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/i6--8U1VPM-3ZfgsfH6JImVQhWw.roa
File: i6--8U1VPM-3ZfgsfH6JImVQhWw.roa (raw, json)
Hash identifier: vjyWGk0qqMOiyFdNIr1qTYGUkLYZr8MUtBLfs+xKPPE=
Subject key identifier: 8B:AF:BE:F1:4D:55:3C:CF:B7:65:F8:2C:7C:7E:89:22:65:50:85:6C
Certificate issuer: /CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Certificate serial: 018CC9BCB0BD23D2941799576AF610511F78
Authority key identifier: 0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/i6--8U1VPM-3ZfgsfH6JImVQhWw.roa
Signing time: Tue 02 Jan 2024 10:33:55 +0000
ROA not before: Tue 02 Jan 2024 10:33:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12859
IP address blocks: 193.247.196.0/23 maxlen: 23
2a05:b2c0::/31 maxlen: 31
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/C1yvJi_b_MX_MOKKUQRkbieokmI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/C1yvJi_b_MX_MOKKUQRkbieokmI.mft
rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:b0:bd:23:d2:94:17:99:57:6a:f6:10:51:1f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Validity
Not Before: Jan 2 10:33:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bafbef14d553ccfb765f82c7c7e89226550856c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:68:4a:55:3c:15:f0:bd:7c:e3:68:60:7c:12:
5f:97:ea:36:fd:33:5d:82:5d:c7:7e:1b:f6:e5:c4:
3e:1f:4c:e8:7b:59:d5:f7:af:7d:97:54:b3:b5:b9:
87:e0:32:aa:2c:01:50:fc:28:a7:8a:89:9b:c9:51:
db:6c:f2:90:4a:5e:da:0c:25:18:55:d3:63:36:a6:
31:c7:41:c4:9f:06:c8:d7:e6:eb:9d:a2:f3:d6:ce:
c0:14:e9:4b:1a:f5:d6:8f:09:ac:7c:4f:1d:45:81:
4c:4c:67:be:16:a9:5f:31:b8:ab:50:d2:0d:53:fd:
54:49:ef:d1:61:d0:f1:e3:03:4f:0d:0d:ca:9e:68:
c2:52:27:1f:6c:89:88:56:2e:93:b3:d9:18:01:01:
d0:d9:39:fd:c3:25:f4:4e:3f:d7:d7:30:e6:df:c4:
29:89:c7:a9:4f:ce:4f:66:9b:88:4e:b0:ce:8d:f2:
20:a6:f0:0c:ea:34:a2:91:77:ab:d6:06:01:55:38:
15:76:a3:6b:72:43:3a:7d:5b:8a:47:1d:2c:7d:df:
7c:d0:55:b7:68:14:c3:57:04:9e:a4:42:a4:05:0a:
ed:ce:2d:4e:f7:a2:64:e7:05:05:94:1d:5a:89:f2:
c0:0c:a7:eb:7a:53:8c:be:8f:f0:0d:b9:8f:32:59:
4e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AF:BE:F1:4D:55:3C:CF:B7:65:F8:2C:7C:7E:89:22:65:50:85:6C
X509v3 Authority Key Identifier:
keyid:0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/i6--8U1VPM-3ZfgsfH6JImVQhWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/C1yvJi_b_MX_MOKKUQRkbieokmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.196.0/23
IPv6:
2a05:b2c0::/31
Signature Algorithm: sha256WithRSAEncryption
93:e5:d1:6f:9c:48:8b:8a:46:5e:cc:40:3c:5d:18:c3:3d:62:
b7:85:ff:e1:1d:d4:ec:44:54:14:e5:f6:a3:04:44:d8:73:25:
95:96:4f:51:f4:36:56:6e:ed:21:b6:b9:48:24:86:be:1d:53:
84:73:4e:98:ed:60:d2:85:97:a8:08:7a:97:e5:bf:91:1f:2c:
57:4e:4f:92:09:e6:32:c8:f0:ac:f9:80:77:c3:f6:e0:31:dd:
6d:fe:c8:d7:fb:9b:0d:41:be:27:bc:4e:f3:fe:9f:12:d1:3f:
f1:08:6f:02:ad:51:3c:4b:ec:37:17:8e:47:62:ea:b0:88:e5:
ed:7d:90:4d:a4:3b:21:a2:52:86:3c:d0:b8:0c:5b:2e:cd:83:
0a:6f:93:b5:4a:c2:4e:9c:9b:6d:c5:83:92:13:73:6c:a6:84:
45:74:ac:c4:d6:50:88:82:e3:25:48:c4:10:5c:b7:48:22:44:
d6:2e:05:66:8a:e5:9f:e0:6b:cb:0f:41:48:54:5c:fe:e6:d2:
37:24:6e:d0:2a:af:31:9c:93:04:06:0f:12:59:d3:9e:59:8f:
d7:01:91:e1:bc:8a:63:8a:82:85:8f:5e:a2:4a:52:27:5d:bc:
5c:80:92:a2:e9:9d:4f:78:ac:e3:8c:4f:1f:e5:6a:6d:5c:00:
84:db:f3:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:54:06 2024 by rpki-client on console-ams.rpki-client.org