Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/DK6_dWb6ffGTlpgyP63vrlGmXms.roa
File: DK6_dWb6ffGTlpgyP63vrlGmXms.roa (raw, json)
Hash identifier: LEoKFFsQD3XnhYahnkDkz9brhPgr1e3rCDO34aDADTI=
Subject key identifier: 0C:AE:BF:75:66:FA:7D:F1:93:96:98:32:3F:AD:EF:AE:51:A6:5E:6B
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 018CC26D19F0025C3E97A69E4F694127CFA3
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/DK6_dWb6ffGTlpgyP63vrlGmXms.roa
Signing time: Mon 01 Jan 2024 00:29:39 +0000
ROA not before: Mon 01 Jan 2024 00:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8985
IP address blocks: 194.190.146.0/24 maxlen: 24
194.226.16.0/24 maxlen: 24
194.85.16.0/24 maxlen: 24
195.208.222.0/24 maxlen: 24
195.208.24.0/21 maxlen: 21
195.208.29.0/24 maxlen: 24
193.232.64.0/24 maxlen: 24
193.232.76.0/24 maxlen: 24
195.209.147.0/24 maxlen: 24
195.209.148.0/24 maxlen: 24
193.232.226.0/23 maxlen: 23
194.226.41.0/24 maxlen: 24
194.226.38.0/23 maxlen: 23
195.19.8.0/24 maxlen: 24
194.226.56.0/23 maxlen: 23
194.226.58.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.mft
rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:19:f0:02:5c:3e:97:a6:9e:4f:69:41:27:cf:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jan 1 00:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0caebf7566fa7df1939698323fadefae51a65e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:03:b9:27:70:b6:ee:01:2e:e3:3c:62:99:ad:
8d:1f:f6:18:7f:16:35:a8:a4:b8:a2:4d:4c:1c:10:
1d:b2:28:38:bc:54:db:d9:6a:7b:e6:4a:c0:9b:c2:
4d:0f:a1:40:45:96:69:50:61:40:20:e2:6c:76:b9:
29:01:88:3d:5f:b6:05:53:50:20:fe:87:a0:e9:e0:
ea:56:25:1f:96:9b:bb:1f:96:ea:4e:a4:95:7e:47:
ea:82:ac:03:81:21:6e:2d:e3:9b:53:88:33:2d:9a:
79:57:62:54:e8:66:fb:93:cd:65:b7:4f:27:5f:3a:
c9:36:c9:a3:41:1b:ce:b4:56:9b:9c:22:6a:8b:09:
d1:c1:ff:b9:69:87:2f:89:72:df:02:43:69:48:c2:
84:85:2c:21:4e:f0:c2:30:9a:41:d5:6f:5e:16:ca:
ba:c6:23:dd:45:70:75:64:eb:b9:d0:96:6d:34:84:
8f:1c:d7:4b:a8:8b:fc:0b:74:10:3d:aa:44:c4:f4:
c1:3e:ba:00:e9:75:d9:d4:23:69:af:d6:dc:d2:bd:
a3:bc:09:34:70:a8:d3:99:ce:65:24:48:a8:56:38:
17:4b:a7:5d:3c:42:68:c5:b0:66:98:82:7f:35:d0:
6d:f4:e2:7d:f1:b1:04:07:7a:64:c7:fc:b6:26:9f:
f2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:AE:BF:75:66:FA:7D:F1:93:96:98:32:3F:AD:EF:AE:51:A6:5E:6B
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/DK6_dWb6ffGTlpgyP63vrlGmXms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.64.0/24
193.232.76.0/24
193.232.226.0/23
194.85.16.0/24
194.190.146.0/24
194.226.16.0/24
194.226.38.0/23
194.226.41.0/24
194.226.56.0/22
195.19.8.0/24
195.208.24.0/21
195.208.222.0/24
195.209.147.0-195.209.148.255
Signature Algorithm: sha256WithRSAEncryption
6b:1f:af:d8:68:05:ee:0d:6d:e6:ca:64:76:a7:32:fa:4c:2b:
8f:bf:2e:45:f7:0c:27:83:50:95:31:59:d9:75:f1:29:35:4f:
1c:26:7d:99:62:9a:2d:fc:be:9d:05:cd:92:ac:f2:b5:15:df:
40:50:6e:ec:00:68:71:ea:9a:90:22:88:51:ea:0f:83:dd:b4:
69:79:0b:aa:8e:40:b0:09:5c:a9:e8:90:1a:b0:a9:e3:3e:d1:
70:da:ba:0b:6c:41:85:04:30:93:99:78:b8:20:63:c8:33:a8:
2c:df:d7:1e:bf:3b:a8:bf:da:6d:a7:30:a4:f4:87:4b:1e:9d:
2a:93:00:f9:2d:84:2e:0e:33:2b:66:be:dc:77:85:ea:83:c2:
ca:c7:a3:d4:46:40:6e:0b:c1:94:1d:ba:9b:5e:b9:4f:4c:6a:
66:ef:62:57:25:c7:44:e5:e7:84:23:a1:07:fd:50:78:0e:c1:
7a:63:a1:48:1b:b7:e4:ae:e3:6d:31:82:6e:6b:67:f5:8b:82:
54:38:a6:33:f4:c7:a3:a8:d2:02:f6:74:59:d7:e3:e2:5b:08:
1c:ad:85:b6:e9:4c:fc:59:be:ab:d4:17:7f:a4:25:f1:a7:38:
71:9f:21:99:7c:c4:e8:9b:4b:c6:42:d4:8b:35:55:a5:31:91:
e1:b3:81:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 00:06:29 2024 by rpki-client on console-fra.rpki-client.org