Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/tb6CRegE1LFsy2cgtqO4aDGaFXc.roa
File: tb6CRegE1LFsy2cgtqO4aDGaFXc.roa (raw, json)
Hash identifier: sy6oe1om9SomFMWxco3Pp0KxUUiV5pADIE3RLe2TkdI=
Subject key identifier: B5:BE:82:45:E8:04:D4:B1:6C:CB:67:20:B6:A3:B8:68:31:9A:15:77
Certificate issuer: /CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Certificate serial: 018CC6499A0780ACB024DE421369FF97315E
Authority key identifier: E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/tb6CRegE1LFsy2cgtqO4aDGaFXc.roa
Signing time: Mon 01 Jan 2024 18:29:21 +0000
ROA not before: Mon 01 Jan 2024 18:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199671
IP address blocks: 78.31.209.0/24 maxlen: 24
31.135.168.0/21 maxlen: 21
195.225.92.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:9a:07:80:ac:b0:24:de:42:13:69:ff:97:31:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Validity
Not Before: Jan 1 18:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5be8245e804d4b16ccb6720b6a3b868319a1577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c8:be:09:3a:bb:f4:28:1b:78:37:2b:ca:1d:
27:ac:22:2d:50:f1:23:ca:58:07:17:8f:83:ac:21:
7c:40:dc:10:96:bf:26:dd:7a:54:be:8f:b0:06:7e:
1d:b1:cf:a0:cf:25:40:f9:de:88:43:ba:ba:17:8e:
a3:dd:79:1c:1a:83:bd:fc:b1:7e:c2:12:38:ed:f7:
2b:8e:53:65:97:dc:26:be:a9:54:55:3e:b8:44:42:
e5:e0:6d:01:5f:db:09:d6:ee:57:2c:11:32:b2:bb:
e4:ec:a4:c9:79:d4:9d:23:42:e9:bc:3a:b7:cc:a4:
24:a4:6e:47:ed:3e:13:b1:eb:60:e0:d2:fa:6b:4c:
c6:8b:c4:8d:53:f9:be:75:7e:1e:5f:6f:8b:f3:75:
8a:fc:33:1d:86:57:d3:a3:ec:6c:17:71:01:44:e1:
ae:c6:32:c8:3a:9e:91:30:ac:2f:fc:41:04:97:ba:
75:36:4e:5a:93:88:dd:2d:66:65:5b:50:1c:63:3b:
dc:f8:12:f0:8f:e8:e0:5d:ee:79:d9:d3:f0:e8:0c:
18:1f:ea:2f:d6:bb:50:e0:2c:e1:7d:47:66:dd:3f:
56:04:4e:95:ad:f6:cf:f0:95:a6:c7:4c:d3:75:c5:
e3:0a:f4:ca:d5:d5:fc:0b:7a:9d:aa:d4:fd:d4:66:
e0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:BE:82:45:E8:04:D4:B1:6C:CB:67:20:B6:A3:B8:68:31:9A:15:77
X509v3 Authority Key Identifier:
keyid:E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/tb6CRegE1LFsy2cgtqO4aDGaFXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.135.168.0/21
78.31.209.0/24
195.225.92.0/22
Signature Algorithm: sha256WithRSAEncryption
33:cc:b3:0a:50:69:ce:98:b0:1f:c2:35:23:88:c3:62:a5:ea:
7f:66:e3:6b:ac:fd:a5:db:68:e2:df:43:85:87:fb:e0:ca:a5:
83:17:ee:68:da:05:a3:c2:85:11:2e:6e:6d:0b:10:73:05:90:
6f:44:c8:12:a1:37:97:54:a0:95:0e:2f:e4:60:6a:1f:e7:13:
02:b8:e5:a8:24:d6:32:ee:9c:c9:c2:81:cd:da:40:06:d4:36:
d5:1d:e5:35:b3:fd:a2:a2:5d:39:50:67:82:0f:62:4c:9f:d7:
23:b7:7a:d4:65:96:ba:e4:f6:9a:17:3c:12:1f:81:77:59:2e:
b9:d7:87:4c:bb:4d:92:76:39:ea:73:3b:6f:a8:31:ed:a1:10:
a7:7a:03:16:06:75:09:af:42:29:1e:fd:69:45:cc:08:be:d5:
3f:3d:78:2f:e0:26:c7:aa:ae:01:39:69:ca:d7:e3:77:0d:a3:
79:15:e4:a8:6d:bc:2d:4b:30:9e:01:fc:9a:bd:7c:47:88:4e:
02:33:2d:f4:96:28:00:e4:d2:25:5a:46:9d:22:a8:78:72:12:
1c:f2:43:cc:85:4c:a2:02:91:18:17:24:78:87:b6:dd:f1:dd:
06:e2:9a:26:3d:c8:90:9d:15:a2:03:23:ca:35:80:1e:ca:62:
de:95:17:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:16:08 2024 by rpki-client on console-ams.rpki-client.org