Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/_6VDu4A9JJbcPibeW5L4AcI3AEg.roa
File: _6VDu4A9JJbcPibeW5L4AcI3AEg.roa (raw, json)
Hash identifier: ln6WadBaiAbJL7ssrd4RX2jDQTrPFJVOzl22LxN3vnM=
Subject key identifier: FF:A5:43:BB:80:3D:24:96:DC:3E:26:DE:5B:92:F8:01:C2:37:00:48
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 018CC64A75C053E33EA825ADC11A6D2BCB4B
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/_6VDu4A9JJbcPibeW5L4AcI3AEg.roa
Signing time: Mon 01 Jan 2024 18:30:17 +0000
ROA not before: Mon 01 Jan 2024 18:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34597
IP address blocks: 37.230.246.0/24 maxlen: 24
141.101.243.0/24 maxlen: 24
37.230.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:75:c0:53:e3:3e:a8:25:ad:c1:1a:6d:2b:cb:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 18:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffa543bb803d2496dc3e26de5b92f801c2370048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c6:6f:23:84:d4:b0:57:d3:af:c3:06:32:18:
2e:59:b9:dc:b9:38:1c:a9:df:08:1d:9b:56:da:c7:
77:32:81:92:d7:13:e1:26:4e:f9:24:35:57:2c:41:
e7:b8:d1:8a:61:ab:5e:9b:80:0f:ad:63:14:91:95:
4c:f0:69:24:69:b0:14:dd:85:0a:f0:3e:d5:4e:59:
c3:4a:cf:4c:45:b5:80:8d:c4:72:c0:80:be:b5:e8:
e4:9f:7e:32:5e:48:6f:1e:20:8f:54:b8:37:a6:d7:
1c:28:dc:87:4b:76:04:bc:5b:b7:bc:2a:ea:35:bf:
15:bb:88:f7:f5:30:2a:2f:58:29:60:17:c5:11:b1:
19:57:5d:ef:02:eb:af:85:dc:dd:e8:ab:0b:ef:82:
a0:47:5c:a1:da:a4:04:83:d3:12:84:f4:fc:b7:e3:
e4:f0:e0:45:a6:45:f2:2c:76:27:41:00:9e:b3:68:
1c:e2:db:71:9f:a8:02:1e:9d:bd:6c:ef:0f:07:e8:
6f:b5:a9:96:a3:48:f1:68:80:f1:c5:1e:4b:d1:fe:
b9:6e:95:17:2d:cc:20:54:5a:42:49:50:2b:de:d8:
32:b1:66:3f:83:cf:d8:01:3d:8f:45:5a:5c:8d:ff:
36:c9:12:f8:97:a4:2b:0f:e1:3a:37:46:3d:34:e6:
72:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A5:43:BB:80:3D:24:96:DC:3E:26:DE:5B:92:F8:01:C2:37:00:48
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/_6VDu4A9JJbcPibeW5L4AcI3AEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.232.0/24
37.230.246.0/24
141.101.243.0/24
Signature Algorithm: sha256WithRSAEncryption
34:7b:0f:9d:ec:0f:ef:b3:d4:be:1f:a6:fc:0e:f2:a8:af:bc:
fa:06:44:41:7c:c2:14:18:8c:6e:df:4c:c4:35:99:f0:b0:eb:
71:17:32:b0:44:a1:e7:fb:23:03:e5:48:5f:c8:0c:7f:c8:ba:
a1:df:92:82:d3:8e:35:6c:2b:92:6d:c9:47:47:30:79:5c:c3:
5b:23:66:f5:3b:37:d9:d8:6e:56:e2:59:8b:70:f5:cd:46:d3:
e4:ec:01:e1:fa:d9:e2:9f:81:9b:46:5c:d9:40:43:ac:fc:26:
4e:b4:3e:9c:4a:af:be:03:b2:a1:6b:16:9e:fc:59:cb:6d:c1:
6b:51:fa:bf:d7:84:2c:ac:90:c5:1e:70:63:a6:9b:81:1b:b9:
31:30:29:1a:e6:ba:6c:a9:ed:17:5e:dd:d2:76:40:0c:c4:4e:
33:2f:30:3c:d2:40:89:0c:86:fe:a9:15:c5:d4:52:e0:6f:73:
4f:ba:f4:de:f9:fb:f2:cd:a8:2c:fc:7b:e8:ab:e9:72:cc:64:
7b:a0:fa:49:12:67:7a:0c:27:27:a7:63:45:7e:89:6c:1a:ad:
4c:7c:a5:c8:de:1a:e9:47:8f:f2:b5:e1:e7:49:b4:a9:8d:d1:
cf:80:57:53:45:92:66:0d:7d:37:01:50:7e:45:76:28:96:d2:
41:87:3a:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:34:05 2024 by rpki-client on console-fra.rpki-client.org