Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/6zZc9Btr7dT-cKX2xDUv1TlyMOk.roa
File: 6zZc9Btr7dT-cKX2xDUv1TlyMOk.roa (raw, json)
Hash identifier: k0VU2vyawK+USNIENPm5vQ+bHwlByS+2V0mbDLUlIX4=
Subject key identifier: EB:36:5C:F4:1B:6B:ED:D4:FE:70:A5:F6:C4:35:2F:D5:39:72:30:E9
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 018CC94CA501557449396FDCAB8B0EDCC3F5
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/6zZc9Btr7dT-cKX2xDUv1TlyMOk.roa
Signing time: Tue 02 Jan 2024 08:31:32 +0000
ROA not before: Tue 02 Jan 2024 08:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42689
IP address blocks: 141.226.240.0/24 maxlen: 24
141.226.244.0/24 maxlen: 24
141.226.247.0/24 maxlen: 24
213.137.80.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:a5:01:55:74:49:39:6f:dc:ab:8b:0e:dc:c3:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Jan 2 08:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb365cf41b6bedd4fe70a5f6c4352fd5397230e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:82:ca:75:b9:db:38:c1:86:c7:30:19:69:1c:
23:79:bf:ef:ca:21:bc:d3:c0:85:3b:8b:93:a8:c1:
dc:59:9c:50:ae:de:bf:c9:57:ee:e5:9e:58:36:66:
80:91:61:99:af:83:20:1e:ce:e2:d6:ba:da:fb:9a:
8c:01:38:89:86:73:7e:a8:ac:56:29:5d:d1:ec:44:
fb:b6:71:5d:8e:a2:89:c0:65:8f:04:58:0c:7b:56:
c2:db:24:d9:65:60:fc:e7:75:f8:7c:8b:e6:c9:ab:
9f:eb:fd:2d:38:59:7c:2f:98:40:d2:54:7d:bd:cd:
52:02:04:5c:f8:97:27:58:97:28:b9:fe:c9:9c:0c:
38:38:e4:3c:ba:4f:22:2d:e1:d7:59:83:50:42:2e:
d7:b7:e8:3e:b4:d3:2f:38:5f:e8:07:c9:7f:62:26:
72:fb:f9:32:b0:5c:2f:d7:1f:81:66:f4:6e:f6:5f:
ca:81:85:ec:f4:41:5c:f9:4c:e1:68:d5:a8:43:f9:
92:00:d0:82:ee:db:06:f3:0a:f5:50:58:95:08:98:
57:83:8c:ab:af:1b:a4:d7:b1:51:09:2d:03:fe:7f:
2b:7d:05:99:9f:bb:76:69:18:65:6f:5e:97:db:6b:
00:dc:2f:68:d5:78:f7:40:e2:43:eb:18:0d:cb:b1:
3e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:36:5C:F4:1B:6B:ED:D4:FE:70:A5:F6:C4:35:2F:D5:39:72:30:E9
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/6zZc9Btr7dT-cKX2xDUv1TlyMOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.240.0/24
141.226.244.0/24
141.226.247.0/24
213.137.80.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:3f:83:1d:1a:15:ff:fd:14:06:34:a1:46:0f:7a:17:92:39:
c2:0e:97:00:0d:83:db:34:1c:39:59:79:2b:45:1d:1b:c2:f0:
dc:d1:63:d4:3c:e9:d9:72:2a:a7:33:f4:5e:1e:ab:f2:e4:ce:
48:f7:ff:33:a8:c8:ef:bc:67:d1:bc:29:a2:c4:5a:10:ce:40:
29:59:06:2e:c6:09:9c:62:56:36:7e:34:af:7b:dd:4e:58:80:
01:e1:32:ae:5e:9d:a8:6d:57:ce:2b:ec:02:2c:15:d7:ac:87:
f1:65:a0:ed:bb:51:7b:2c:49:46:7d:0c:95:1b:75:4f:b1:d4:
dd:c0:7f:30:98:a6:dc:8c:d2:08:ee:ee:66:d3:fe:18:68:7f:
af:59:fb:7c:d8:0f:3f:76:2a:89:2d:6e:a1:4a:8e:78:21:f9:
a8:c9:4f:83:22:fa:a7:1a:c9:62:e3:f6:89:8a:d1:06:8f:bb:
e1:b9:f8:c5:ba:43:af:41:26:11:c5:d3:ff:88:24:dd:fe:03:
36:53:c4:7c:83:57:47:0c:3c:4a:19:bb:1e:64:68:7f:c0:e5:
4c:5e:81:4e:4f:3e:72:5a:e1:b4:c8:3d:27:44:8e:92:b2:51:
92:5f:a1:6b:98:49:1e:78:13:5f:f5:78:69:be:44:b2:83:9c:
9b:27:7e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 21:13:56 2024 by rpki-client on console-ams.rpki-client.org