Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/l6G-2Fb5f-w65YWqMuY7cw5Sj-k.roa
File: l6G-2Fb5f-w65YWqMuY7cw5Sj-k.roa (raw, json)
Hash identifier: f+JLEUJfaRblQ+HSdtlX2l6J7EYvWGtAdssRfIzGpE8=
Subject key identifier: 97:A1:BE:D8:56:F9:7F:EC:3A:E5:85:AA:32:E6:3B:73:0E:52:8F:E9
Certificate issuer: /CN=3cabc3dde8f16cf6d918a40f1682ca41be4d0a41
Certificate serial: 018CC8030D2D7CF96818C62B8821EB00E398
Authority key identifier: 3C:AB:C3:DD:E8:F1:6C:F6:D9:18:A4:0F:16:82:CA:41:BE:4D:0A:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/l6G-2Fb5f-w65YWqMuY7cw5Sj-k.roa
Signing time: Tue 02 Jan 2024 02:31:32 +0000
ROA not before: Tue 02 Jan 2024 02:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12984
IP address blocks: 185.118.80.0/22 maxlen: 22
2a06:9280::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/PKvD3ejxbPbZGKQPFoLKQb5NCkE.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/PKvD3ejxbPbZGKQPFoLKQb5NCkE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 Nov 2024 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:0d:2d:7c:f9:68:18:c6:2b:88:21:eb:00:e3:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cabc3dde8f16cf6d918a40f1682ca41be4d0a41
Validity
Not Before: Jan 2 02:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97a1bed856f97fec3ae585aa32e63b730e528fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:60:27:9c:82:74:78:3f:8e:cb:68:61:7e:48:
60:3e:06:6d:8a:83:13:eb:c6:78:b4:b1:d0:b0:45:
b8:e3:e4:69:1e:40:25:90:af:a3:80:28:12:d5:71:
5d:ac:ab:6a:67:06:26:d5:b4:4d:e0:52:8a:12:24:
39:e4:83:e0:4d:98:38:ab:e9:dd:d9:c8:dd:e0:a4:
74:59:35:8b:7f:cc:e2:e0:13:42:ea:b9:c8:26:03:
a1:db:4b:ac:48:6b:50:9d:92:48:ad:88:d9:46:35:
d7:5f:90:36:c9:b9:d9:e6:c0:db:a7:68:71:4f:b9:
ba:2b:cc:4c:1d:eb:cb:a6:3f:f2:f4:f8:1f:25:ad:
23:6b:0d:bf:90:7a:63:6d:24:7f:b2:47:6a:63:e2:
23:3d:5e:c5:7d:72:0c:ea:d7:6e:33:00:1e:09:2f:
ea:be:27:80:51:67:e3:4c:15:e7:12:b4:e6:23:8d:
09:c2:f2:40:7a:72:25:e4:3b:03:6d:3a:8c:1e:4f:
a2:4c:95:18:bb:a1:fb:ff:16:36:af:d2:59:9b:5b:
aa:59:7e:01:b4:91:cb:20:38:86:51:91:f2:22:db:
5d:d6:b4:4f:92:bc:fe:08:37:05:55:d8:bb:fa:9b:
e7:97:49:9e:9b:7e:1d:26:fd:25:25:72:ae:4a:bd:
f4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A1:BE:D8:56:F9:7F:EC:3A:E5:85:AA:32:E6:3B:73:0E:52:8F:E9
X509v3 Authority Key Identifier:
keyid:3C:AB:C3:DD:E8:F1:6C:F6:D9:18:A4:0F:16:82:CA:41:BE:4D:0A:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/l6G-2Fb5f-w65YWqMuY7cw5Sj-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/PKvD3ejxbPbZGKQPFoLKQb5NCkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.80.0/22
IPv6:
2a06:9280::/29
Signature Algorithm: sha256WithRSAEncryption
3a:5a:a5:50:b1:a1:bf:d6:cb:4f:ee:72:b1:07:d8:c0:7b:52:
63:38:12:5c:d0:22:40:41:ba:bc:aa:0e:ba:f4:53:b8:d8:cf:
ed:d1:ce:51:86:8b:de:b5:d9:a6:27:ac:ae:8c:de:24:38:9a:
fd:f0:b6:3c:43:ef:3c:d6:62:b3:35:35:1d:25:15:fe:7e:b0:
d3:67:81:e5:4e:23:b8:d6:a9:e3:ec:9b:84:32:41:60:d7:aa:
01:07:58:47:ca:7a:11:12:22:af:c4:3d:3f:a8:5e:fc:2e:a8:
bb:d4:14:66:55:a0:70:eb:bf:fe:6d:cb:49:ef:20:47:f6:59:
ad:25:22:79:b6:ce:0b:ad:51:5c:15:94:d0:c4:59:86:a8:5a:
21:bb:a3:a6:5c:59:17:f7:0f:fc:5c:ed:a8:36:bf:18:65:62:
31:35:1f:d7:53:f5:5e:ba:29:d4:82:c3:51:bb:17:0e:b6:8a:
42:f7:31:a8:fe:9d:88:65:1c:85:3e:29:64:bb:b7:ee:6d:08:
22:20:31:99:8b:33:e5:ac:e3:8a:e5:44:14:24:6a:c9:99:f1:
f6:4e:54:c4:a7:36:a4:1d:9d:a6:35:36:ea:5f:ff:1b:a3:7a:
cf:b4:03:a9:a8:f6:1f:75:09:ed:5f:27:15:81:dc:71:13:b9:
8c:17:2d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 23:36:58 2024 by rpki-client on console-ams.rpki-client.org