Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/6k5vy4TqC3_VVJv6fxiVYn83AU0.roa
File: 6k5vy4TqC3_VVJv6fxiVYn83AU0.roa (raw, json)
Hash identifier: +2+MIUNX0h6Qt1EfapKdw12T0KHDmdLB14ZjVUVDrWU=
Subject key identifier: EA:4E:6F:CB:84:EA:0B:7F:D5:54:9B:FA:7F:18:95:62:7F:37:01:4D
Certificate issuer: /CN=58d2d2715f43f747bea762dce166bca4b8e965eb
Certificate serial: 018DAD4031B59D04FD84CFD52FFAECE5172B
Authority key identifier: 58:D2:D2:71:5F:43:F7:47:BE:A7:62:DC:E1:66:BC:A4:B8:E9:65:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/6k5vy4TqC3_VVJv6fxiVYn83AU0.roa
Signing time: Thu 15 Feb 2024 14:51:21 +0000
ROA not before: Thu 15 Feb 2024 14:51:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6786
IP address blocks: 81.169.191.0/24 maxlen: 24
85.214.9.0/24 maxlen: 24
85.214.11.0/24 maxlen: 24
85.215.0.0/19 maxlen: 24
2a01:238:cca::/48 maxlen: 48
2a01:238:3000::/36 maxlen: 48
2a01:238:e000::/35 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/WNLScV9D90e-p2Lc4Wa8pLjpZes.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/WNLScV9D90e-p2Lc4Wa8pLjpZes.mft
rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ad:40:31:b5:9d:04:fd:84:cf:d5:2f:fa:ec:e5:17:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58d2d2715f43f747bea762dce166bca4b8e965eb
Validity
Not Before: Feb 15 14:51:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea4e6fcb84ea0b7fd5549bfa7f1895627f37014d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:66:5d:2d:4c:c9:74:9e:10:f9:44:d8:d3:4e:
73:7a:21:5d:38:e8:c9:70:b7:f4:37:04:52:a7:db:
d0:d0:0e:31:ab:74:40:d0:86:52:71:12:cc:12:b6:
7b:49:cf:86:eb:e4:d3:ef:dc:c8:23:53:67:d5:a2:
43:af:d0:24:92:df:94:c6:f3:77:04:9b:4c:76:59:
c7:b8:3d:ec:75:a1:8f:a2:85:8f:37:73:ec:f0:e8:
c1:c1:32:89:b0:17:3c:11:69:38:a4:ad:c8:83:ea:
58:04:4d:8a:d5:84:c5:c5:b2:21:c8:35:d4:5d:6f:
30:bd:c2:61:21:8d:10:9e:11:1f:e7:f5:1d:52:20:
88:1b:6b:56:8b:00:7f:c7:05:01:63:8d:0a:b4:7f:
71:6f:8f:2b:ec:d7:62:c7:77:3b:51:b3:74:cb:1e:
e4:d3:4e:17:73:3b:5d:57:5d:c3:fc:08:63:ff:a1:
9a:9f:de:21:85:fa:5e:a8:af:4a:e4:74:1a:d8:83:
fb:8e:7c:83:3d:19:c8:d8:04:fe:f1:f9:30:b8:3b:
7f:30:47:26:6d:5d:4c:8d:57:2d:10:0c:f5:2f:38:
d3:6e:1d:f2:51:31:45:09:6c:6c:02:d8:14:9f:ce:
57:aa:ab:bc:fa:13:2a:03:f6:4d:b6:b9:7d:88:00:
5b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:4E:6F:CB:84:EA:0B:7F:D5:54:9B:FA:7F:18:95:62:7F:37:01:4D
X509v3 Authority Key Identifier:
keyid:58:D2:D2:71:5F:43:F7:47:BE:A7:62:DC:E1:66:BC:A4:B8:E9:65:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/6k5vy4TqC3_VVJv6fxiVYn83AU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/WNLScV9D90e-p2Lc4Wa8pLjpZes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.169.191.0/24
85.214.9.0/24
85.214.11.0/24
85.215.0.0/19
IPv6:
2a01:238:cca::/48
2a01:238:3000::/36
2a01:238:e000::/35
Signature Algorithm: sha256WithRSAEncryption
17:e8:46:24:da:75:94:67:23:1e:e4:69:2a:c8:3e:01:79:6a:
a1:53:ac:06:a2:86:3c:28:99:26:7d:e2:39:fb:40:91:66:56:
f0:23:05:fc:40:11:88:0e:ea:db:ea:37:f9:0d:cf:d7:4a:be:
de:69:03:93:dd:6c:c1:ba:0b:39:97:42:cd:ce:46:6d:01:56:
c9:19:3c:12:8f:48:af:bb:aa:95:17:3c:bd:ef:33:f5:cd:9c:
97:9e:bf:47:2e:0c:13:9d:a4:ce:b1:c9:04:1f:c9:da:fe:06:
97:c9:5d:fd:f6:61:82:b5:f9:8a:ea:f1:07:1e:c1:17:0e:64:
ab:68:c9:29:bf:61:62:e0:ee:3d:f8:57:78:d3:14:ac:e9:65:
af:37:59:bf:67:0c:fd:57:f0:71:d1:c0:59:f9:17:64:67:70:
fa:80:2b:92:32:5a:21:03:e0:92:a8:8c:9a:1f:bc:6c:90:20:
1d:1d:44:03:e2:68:6f:42:d0:87:c3:0c:a0:a0:4c:36:e9:4d:
bc:ba:03:d9:15:02:d5:d0:3a:01:ea:90:67:4b:bf:b0:16:a2:
da:09:31:a6:bf:cf:9a:e8:4b:49:99:d3:ad:95:0a:f4:87:29:
93:04:4a:16:a1:ae:4b:26:66:f0:6e:1f:2d:f4:f5:7c:84:49:
99:a3:e2:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:13:50 2024 by rpki-client on console-fra.rpki-client.org