Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0ffd95-98e6-4279-987f-73a634155ee9/1/6QDiwUY36jVw4AFChNHoAlqoxSI.roa
File: 6QDiwUY36jVw4AFChNHoAlqoxSI.roa (raw, json)
Hash identifier: fwJU8BM9QKs6/VCuBR3aGfHfNBLnSuTfPlGJgOxpnCQ=
Subject key identifier: E9:00:E2:C1:46:37:EA:35:70:E0:01:42:84:D1:E8:02:5A:A8:C5:22
Certificate issuer: /CN=3fac4901cc23be47bfa9f12a6044fa6345122107
Certificate serial: 018E2D687A5BE330BA59770043E6822B5184
Authority key identifier: 3F:AC:49:01:CC:23:BE:47:BF:A9:F1:2A:60:44:FA:63:45:12:21:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P6xJAcwjvke_qfEqYET6Y0USIQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0ffd95-98e6-4279-987f-73a634155ee9/1/6QDiwUY36jVw4AFChNHoAlqoxSI.roa
Signing time: Mon 11 Mar 2024 12:06:45 +0000
ROA not before: Mon 11 Mar 2024 12:06:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44452
IP address blocks: 185.177.8.0/22 maxlen: 22
2a0a:2b80::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/0ffd95-98e6-4279-987f-73a634155ee9/1/P6xJAcwjvke_qfEqYET6Y0USIQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/0ffd95-98e6-4279-987f-73a634155ee9/1/P6xJAcwjvke_qfEqYET6Y0USIQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/P6xJAcwjvke_qfEqYET6Y0USIQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:68:7a:5b:e3:30:ba:59:77:00:43:e6:82:2b:51:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fac4901cc23be47bfa9f12a6044fa6345122107
Validity
Not Before: Mar 11 12:06:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e900e2c14637ea3570e0014284d1e8025aa8c522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:fe:cf:01:15:f4:da:eb:29:93:41:e7:e3:43:
89:29:b1:eb:d5:4f:bf:94:47:31:13:21:79:0b:e5:
53:61:41:0b:c1:c2:6b:bc:8b:6d:2b:d8:f8:8a:99:
38:b9:30:d3:66:8c:b1:b4:e8:8d:d2:71:95:ff:9b:
67:71:40:3a:9f:80:b5:ee:0b:cc:81:f1:ee:a3:dd:
26:1c:d1:59:df:ac:52:95:70:c9:3d:6e:fd:34:65:
42:73:66:0e:62:4a:68:f4:46:f3:47:c2:9e:c2:fc:
6f:12:9e:05:b4:0c:66:b7:d4:72:40:fb:6a:31:b0:
70:ff:97:36:a5:f6:5b:de:1d:be:d9:60:19:98:84:
c7:9b:d3:35:9b:29:af:6a:fd:ee:06:06:fd:64:23:
0d:fc:cd:8d:4e:2b:67:83:bc:f2:7a:47:65:27:37:
c3:9e:cb:3d:ab:7d:61:3c:63:84:63:c3:d4:f2:91:
01:21:e2:8c:6f:f0:db:95:a5:c4:66:e3:96:63:45:
e3:a6:ef:c3:42:66:12:3e:1c:cb:af:59:21:87:9f:
ac:9c:b0:50:01:a6:84:3b:40:b2:0a:71:17:6d:c8:
04:a8:33:d5:ed:09:6e:17:ee:49:62:86:ee:f8:17:
cf:25:8c:1f:aa:6e:50:55:71:b8:d5:ad:c9:15:99:
8b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:00:E2:C1:46:37:EA:35:70:E0:01:42:84:D1:E8:02:5A:A8:C5:22
X509v3 Authority Key Identifier:
keyid:3F:AC:49:01:CC:23:BE:47:BF:A9:F1:2A:60:44:FA:63:45:12:21:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P6xJAcwjvke_qfEqYET6Y0USIQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0ffd95-98e6-4279-987f-73a634155ee9/1/6QDiwUY36jVw4AFChNHoAlqoxSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0ffd95-98e6-4279-987f-73a634155ee9/1/P6xJAcwjvke_qfEqYET6Y0USIQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.8.0/22
IPv6:
2a0a:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
4c:e6:86:b6:fa:ae:18:6f:7d:61:a3:24:af:1f:be:cf:ba:c1:
a6:d8:24:4c:72:f0:07:47:65:43:76:dd:a8:e6:d8:97:47:c3:
94:2b:9d:fb:55:29:c3:31:fb:d9:91:ee:9e:4a:7d:70:20:16:
da:e6:e2:01:08:f5:30:9c:38:d5:9c:dc:e6:f8:e6:84:8e:35:
6d:e3:a6:40:8d:1c:37:4d:c7:77:4b:e0:ee:99:d7:9f:14:f0:
4d:ab:96:5f:bf:bb:9a:85:2c:53:f6:bb:d8:42:d4:10:2c:5e:
6e:09:8c:b7:3b:c7:76:e5:fa:87:c7:80:20:1f:96:76:16:cc:
1e:fc:48:cf:e7:55:31:e7:df:bd:6d:33:0d:c1:7d:31:37:a1:
b8:8f:f4:64:17:a1:98:17:01:fb:a0:fd:ca:b1:67:88:e9:67:
44:9d:4d:82:22:ed:16:39:42:c1:df:8e:67:80:dc:dc:64:1c:
41:a6:17:11:f9:61:f6:d1:0b:46:e9:0d:81:f6:ed:ca:de:99:
ef:6f:86:cd:a8:fb:65:32:eb:47:e8:ad:fd:a9:03:89:4a:23:
19:a7:f9:99:8f:2c:da:a8:73:3b:51:d0:37:e3:6a:05:75:82:
e4:a9:fb:22:14:81:80:9f:74:ad:2c:af:a8:cd:42:36:78:9e:
24:b7:03:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:20 2024 by rpki-client on console-fra.rpki-client.org