Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/jYh7SaiFyTJC6NMJ81Sc3EM6WHo.roa
File: jYh7SaiFyTJC6NMJ81Sc3EM6WHo.roa (raw, json)
Hash identifier: 5P1Z2w+/iEna9ARfUV2M6N5ypYX/CSG4oCHDN3kzk6M=
Subject key identifier: 8D:88:7B:49:A8:85:C9:32:42:E8:D3:09:F3:54:9C:DC:43:3A:58:7A
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018CC2DACB464199D31DE038FA77E0B0870C
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/jYh7SaiFyTJC6NMJ81Sc3EM6WHo.roa
Signing time: Mon 01 Jan 2024 02:29:27 +0000
ROA not before: Mon 01 Jan 2024 02:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6778
IP address blocks: 195.136.71.0/24 maxlen: 24
195.136.192.0/18 maxlen: 18
195.136.0.0/18 maxlen: 18
194.183.56.0/23 maxlen: 23
194.183.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:cb:46:41:99:d3:1d:e0:38:fa:77:e0:b0:87:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 02:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d887b49a885c93242e8d309f3549cdc433a587a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ea:73:24:87:e3:be:42:e8:65:49:5f:16:aa:
ce:41:3d:96:a2:90:b0:eb:fa:03:9e:91:b7:1b:62:
7c:94:c6:42:e1:a7:85:09:42:0e:c7:15:0e:08:15:
4e:01:ec:56:6a:2c:21:d6:7c:d0:ae:30:08:65:85:
e9:3d:08:b0:2c:12:16:0e:28:d3:90:ae:b2:e2:70:
54:7b:3f:02:bd:8c:ff:f3:57:17:cc:e8:6f:4e:cf:
0f:ae:59:d2:2b:3f:10:a9:51:e5:64:dc:22:18:ae:
b1:83:66:45:81:20:cf:d2:ab:43:33:47:f2:bf:f8:
b3:1d:79:ab:d6:7c:16:33:53:e4:73:7d:b9:89:7b:
b8:f4:dd:cc:06:a8:0d:6f:74:df:96:27:9e:fc:f0:
b4:72:5a:80:a4:fb:33:18:87:a9:ca:46:df:e2:85:
ad:49:8c:f7:aa:75:01:b9:0c:85:dd:ef:e5:32:3c:
78:80:a2:63:e8:4a:75:5a:e4:a3:8e:b9:ec:02:99:
1b:3a:f1:76:46:d7:6e:c1:d6:2a:4d:4f:da:33:a8:
70:52:9d:8d:70:a6:1e:52:7f:eb:80:0b:2a:a1:64:
e1:05:bd:25:a0:8b:6a:be:fe:b4:fa:ec:6a:73:b6:
1d:94:d5:7b:a5:64:a3:22:82:e6:3f:87:ba:7e:d8:
86:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:88:7B:49:A8:85:C9:32:42:E8:D3:09:F3:54:9C:DC:43:3A:58:7A
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/jYh7SaiFyTJC6NMJ81Sc3EM6WHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.183.56.0/23
194.183.62.0/24
195.136.0.0/18
195.136.71.0/24
195.136.192.0/18
Signature Algorithm: sha256WithRSAEncryption
c6:e8:91:8d:d8:fe:31:d8:66:c4:bf:31:d8:83:38:3c:b8:e2:
68:bc:fe:5a:b8:3a:bc:4c:90:18:0a:e1:ff:63:8d:ed:fb:3b:
23:34:ed:57:ec:e8:11:8c:27:fb:25:a9:2a:a7:b9:fd:fe:b4:
f1:14:dc:78:35:b5:b0:a8:30:66:64:24:c7:00:4b:22:a4:23:
b2:7e:a6:ac:84:da:7b:40:9f:3f:be:99:42:41:aa:4e:f8:b0:
79:e9:99:64:aa:49:31:01:25:54:0c:40:11:db:45:92:00:62:
5c:fb:c0:db:13:60:dc:66:06:48:ce:13:2c:6e:0e:ac:f7:37:
87:16:02:9d:02:b8:4c:14:ee:97:4d:3f:7b:b5:fa:fc:7c:c8:
e8:54:81:1a:23:08:68:28:df:63:11:20:5a:1d:17:dc:f7:49:
3b:4e:d0:d2:f6:ca:15:b1:f6:20:6c:a2:c3:e7:7e:08:f6:20:
5f:bb:2a:c3:4f:30:a8:35:a5:c7:2b:29:a2:00:2b:62:b9:0a:
55:42:39:e9:4e:33:76:33:e1:52:1d:fd:e0:ff:f5:f0:50:55:
dd:dc:cc:2a:65:97:6b:70:e3:a7:ed:5f:9b:f4:4f:0c:86:50:
87:a0:1c:cd:4c:d2:ca:c1:ab:03:a3:97:d2:97:29:32:ba:73:
94:6e:f8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 07:30:44 2024 by rpki-client on console-fra.rpki-client.org