Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6CHtyIlP11QcY3rzia09WoFfouE.roa
File: 6CHtyIlP11QcY3rzia09WoFfouE.roa (raw, json)
Hash identifier: sfFr+XsYTG2NHlOseKm3516WUgpjYk8alpTRKZFm2LU=
Subject key identifier: E8:21:ED:C8:89:4F:D7:54:1C:63:7A:F3:89:AD:3D:5A:81:5F:A2:E1
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01938133B673E6E42404B84BB1EF741A0F5E
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6CHtyIlP11QcY3rzia09WoFfouE.roa
Signing time: Sun 01 Dec 2024 07:51:10 +0000
ROA not before: Sun 01 Dec 2024 07:51:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 81.21.0.0/24 maxlen: 24
176.57.48.0/24 maxlen: 24
176.57.54.0/24 maxlen: 24
176.57.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 04:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:81:33:b6:73:e6:e4:24:04:b8:4b:b1:ef:74:1a:0f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 1 07:51:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e821edc8894fd7541c637af389ad3d5a815fa2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0f:c8:f7:29:8c:87:30:2b:23:c1:42:a4:14:
9f:64:ad:5b:9e:76:a9:96:12:27:42:f9:59:5f:1d:
77:ae:9d:58:08:bf:85:e4:05:bc:b1:a8:0e:d4:a5:
08:5a:e2:5c:7c:78:db:cb:bd:24:98:a9:ca:99:c2:
05:fe:f5:50:3a:4f:31:ce:9d:1c:3f:4e:13:89:f8:
ae:c7:3f:d8:7a:e5:e2:b2:06:a6:fb:39:14:61:e6:
e3:b0:e2:ee:09:29:e8:d9:f3:d1:db:d8:14:0d:b9:
50:70:cc:49:f7:d1:ec:ee:5f:5c:42:03:41:31:41:
3b:a9:73:35:29:6a:de:37:cf:e2:63:a9:66:08:a7:
60:bd:a3:30:c1:88:0c:0c:3f:c7:34:a4:d9:92:42:
0b:0a:70:61:47:83:51:da:90:f3:bd:cf:0b:db:3d:
13:c8:1c:ef:3e:6e:fd:57:2f:e6:13:a8:29:9a:5d:
91:7f:2f:56:75:46:e2:dd:1a:68:3e:f9:03:b4:a5:
6b:06:14:b3:33:5a:57:35:8d:c0:c9:4c:47:45:ba:
88:cd:74:a6:4e:c7:3a:19:cc:9f:9c:cc:04:15:53:
51:41:af:a2:fc:ea:c6:95:44:1f:a1:00:76:03:64:
fd:66:a2:d1:20:04:3c:77:1e:b1:5a:e9:cd:7d:0f:
69:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:21:ED:C8:89:4F:D7:54:1C:63:7A:F3:89:AD:3D:5A:81:5F:A2:E1
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6CHtyIlP11QcY3rzia09WoFfouE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.0.0/24
176.57.48.0/24
176.57.54.0/24
176.57.60.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:ca:94:eb:a3:15:fb:47:27:21:1e:6c:fe:59:e5:d6:25:2e:
a1:07:a5:91:ed:a1:ee:c2:25:53:a6:ce:80:f3:19:e5:0c:7e:
26:5d:2f:f1:e0:d8:08:48:97:04:cd:23:39:87:71:5f:87:ba:
26:eb:ff:86:95:ad:e4:56:a3:da:1b:e8:cb:02:3e:d1:37:24:
65:7c:33:31:a3:2b:db:af:6c:6c:05:f1:77:84:57:49:64:db:
65:d3:b7:62:fb:26:11:3c:ba:fc:a8:18:34:6c:f0:bc:30:9a:
2a:ce:77:9a:97:9b:8a:fa:ae:33:e4:e4:a9:db:c7:64:05:54:
c3:06:03:31:11:14:87:e7:60:6c:81:fa:98:fe:c3:f9:d7:1a:
18:3c:00:b0:19:97:e8:ab:6f:6d:46:cf:cf:75:68:ea:83:56:
7f:c0:e5:f8:34:ec:54:a2:bd:17:9a:49:5a:a6:7b:67:70:6c:
73:68:08:29:36:56:f8:94:08:5c:87:23:5c:d8:4d:e4:34:7a:
6d:af:5c:49:30:e7:14:84:60:d7:9f:77:7e:54:bf:ea:28:38:
2c:27:6b:a5:09:f2:0d:f5:0b:74:b4:f7:b7:0c:ac:9e:35:dd:
f8:6d:92:02:3f:5d:a4:24:7e:f2:df:7d:69:53:e4:82:44:df:
b8:84:c9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 13:31:00 2024 by rpki-client on console-ams.rpki-client.org