Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/B-6pTcV8ZFq5RHtXJqSAi39ACFM.roa
File: B-6pTcV8ZFq5RHtXJqSAi39ACFM.roa (raw, json)
Hash identifier: QFrMzzSw56SteARogAnbC1K+YwXtAN5DBCzP51LHPHY=
Subject key identifier: 07:EE:A9:4D:C5:7C:64:5A:B9:44:7B:57:26:A4:80:8B:7F:40:08:53
Certificate issuer: /CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Certificate serial: 018CC4939D2AA70ECCDBD5F13DD883EA1F95
Authority key identifier: 7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/B-6pTcV8ZFq5RHtXJqSAi39ACFM.roa
Signing time: Mon 01 Jan 2024 10:30:57 +0000
ROA not before: Mon 01 Jan 2024 10:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212661
IP address blocks: 212.146.188.0/24 maxlen: 24
212.146.190.0/24 maxlen: 24
212.146.164.0/22 maxlen: 22
212.146.160.0/24 maxlen: 24
212.146.160.0/22 maxlen: 22
212.146.161.0/24 maxlen: 24
212.146.172.0/24 maxlen: 24
212.146.175.0/24 maxlen: 24
212.146.176.0/22 maxlen: 22
212.146.180.0/22 maxlen: 22
185.123.148.0/24 maxlen: 24
193.3.37.0/24 maxlen: 24
2a06:dac0::/44 maxlen: 44
2a06:dac0:100::/44 maxlen: 44
2a06:dac0:200::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9d:2a:a7:0e:cc:db:d5:f1:3d:d8:83:ea:1f:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Validity
Not Before: Jan 1 10:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07eea94dc57c645ab9447b5726a4808b7f400853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:40:97:61:99:ff:ac:c6:37:59:ea:a5:af:3e:
1b:5e:10:4a:31:70:66:c1:64:d9:24:bb:e4:99:c1:
38:66:4a:c3:3e:f9:cd:b2:16:d9:21:bf:5c:de:9a:
30:37:be:00:11:ea:ec:f5:ab:be:5c:13:04:6a:0e:
07:c5:14:16:cf:09:6a:82:37:95:fd:03:c3:62:4d:
93:25:6f:27:39:3e:fb:e2:3f:26:48:73:2d:52:65:
ca:a0:07:27:73:bd:d2:2b:f4:81:f5:8b:6b:4c:ae:
af:b3:3d:ae:f6:f8:25:2b:36:39:be:59:03:d6:94:
b4:e9:bf:45:b4:3e:69:85:a2:de:53:93:86:3e:fd:
d9:a3:c6:e1:b3:d9:79:ee:bf:c7:f5:5f:c2:35:f7:
a7:8d:be:a4:13:cc:ee:c8:32:2f:53:8c:f7:be:ec:
79:b7:1a:50:81:78:01:5b:0e:4d:77:29:7d:12:70:
14:7f:dd:67:ee:d8:3a:62:be:b7:e9:a8:51:60:62:
cf:81:9d:f9:a2:e2:95:cc:35:08:99:af:25:fd:5f:
12:fc:1f:0b:bc:ea:11:09:7a:1a:ef:82:8a:ed:d9:
96:c5:51:94:b8:f8:55:47:fe:03:01:59:f0:0f:0f:
43:ed:63:7a:29:c1:de:45:e4:64:4b:da:d6:49:cb:
e3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EE:A9:4D:C5:7C:64:5A:B9:44:7B:57:26:A4:80:8B:7F:40:08:53
X509v3 Authority Key Identifier:
keyid:7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/B-6pTcV8ZFq5RHtXJqSAi39ACFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.148.0/24
193.3.37.0/24
212.146.160.0/21
212.146.172.0/24
212.146.175.0-212.146.183.255
212.146.188.0/24
212.146.190.0/24
IPv6:
2a06:dac0::/44
2a06:dac0:100::/44
2a06:dac0:200::/44
Signature Algorithm: sha256WithRSAEncryption
9d:98:a9:f3:a2:44:08:a4:6e:80:2f:c9:c4:9d:2f:39:a4:89:
f3:d9:5c:1a:c3:19:b0:b8:0b:49:f0:bf:d2:ea:ed:5a:d7:37:
58:f0:00:88:91:6d:ad:66:4a:f3:0e:b6:e0:f2:c4:c8:45:33:
5e:68:40:d4:e5:8b:64:82:a9:9e:77:a4:36:95:6c:20:7d:3e:
91:d8:86:ce:20:83:f5:57:70:b0:2e:f6:e0:0c:95:c4:d7:d5:
1e:c7:7c:a0:e7:26:9f:90:33:1c:a9:05:3e:6e:e6:96:b0:4c:
e7:eb:5c:4a:a4:a8:2c:7f:9a:63:d7:42:b2:e9:fa:e9:0f:ca:
ee:ec:b3:20:92:66:6a:11:c1:ba:36:d0:f2:d2:98:d3:7f:fa:
1c:f0:45:7c:be:03:cb:b2:08:a4:5e:a3:cc:53:0a:53:76:56:
0d:af:92:1d:bc:85:15:18:1f:52:96:50:f7:47:c3:1e:64:2e:
b6:df:9b:1c:cd:d5:d2:82:1d:91:35:3f:5b:ba:e3:2c:c6:46:
4e:64:ca:d6:62:1e:c9:df:f1:c3:b6:39:0c:a6:94:69:fd:10:
aa:5b:52:2e:96:46:a9:7d:50:91:d5:8d:25:0a:0e:25:1d:d4:
85:ef:41:66:46:4e:21:1b:82:3f:86:32:a3:0c:88:7c:99:be:
06:99:3d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:13:12 2024 by rpki-client on console-fra.rpki-client.org