Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a88Sv_BaOcFKCWzUQ5xJLy2ACTM.roa
File: a88Sv_BaOcFKCWzUQ5xJLy2ACTM.roa (raw, json)
Hash identifier: r9d5tYDTYhA4wX6I6rAdhy1Ig3S2K1jHxfmgkcXDkrw=
Subject key identifier: 6B:CF:12:BF:F0:5A:39:C1:4A:09:6C:D4:43:9C:49:2F:2D:80:09:33
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 018CC725774975D612BFD3DB579F14172E5A
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a88Sv_BaOcFKCWzUQ5xJLy2ACTM.roa
Signing time: Mon 01 Jan 2024 22:29:30 +0000
ROA not before: Mon 01 Jan 2024 22:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212988
IP address blocks: 185.221.190.0/24 maxlen: 24
185.221.191.0/24 maxlen: 24
185.221.188.0/24 maxlen: 24
185.221.189.0/24 maxlen: 24
185.194.26.0/24 maxlen: 24
185.194.27.0/24 maxlen: 24
185.219.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:77:49:75:d6:12:bf:d3:db:57:9f:14:17:2e:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 1 22:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bcf12bff05a39c14a096cd4439c492f2d800933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f4:0e:c5:a0:62:b4:13:2d:ce:be:69:96:83:
6d:88:93:a0:3e:9f:f8:3f:4b:73:78:a4:f1:ea:70:
a4:97:d6:db:d6:66:09:7e:46:ba:88:49:3a:2f:80:
e7:c9:f7:92:2e:8c:ff:b1:a2:f2:ac:e1:e2:50:6d:
41:c2:96:64:ad:ce:45:0e:38:8e:2d:4d:b9:3a:00:
54:e2:7a:02:5e:57:da:36:24:6f:5e:88:21:82:fc:
6c:2a:7a:8e:5d:ab:c7:45:d4:81:8a:62:b8:b4:9b:
7b:d3:e0:ea:4d:66:51:2d:50:cd:b8:76:a7:b7:5e:
71:5a:ab:8f:5f:90:ef:bd:26:65:6c:fb:65:74:2d:
25:b7:d2:e5:ca:63:21:93:7b:69:e2:9d:ec:e4:9e:
6f:40:09:8c:9e:e5:1d:b5:8f:66:69:49:11:19:05:
49:f2:06:45:2d:7b:31:0b:8c:ae:84:62:5b:b6:dd:
8b:ab:8e:b3:58:30:82:34:e0:22:c2:70:f6:bf:c0:
cd:50:bc:02:84:27:9d:8f:f1:95:93:60:d6:b9:b3:
3a:d9:ec:90:3f:56:59:a5:4d:ce:47:30:46:b1:ef:
1d:61:19:ce:58:26:f5:ca:ec:68:d9:d6:a9:47:df:
4c:c2:7b:83:31:91:df:ff:44:7d:86:dd:45:a2:ec:
a5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CF:12:BF:F0:5A:39:C1:4A:09:6C:D4:43:9C:49:2F:2D:80:09:33
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a88Sv_BaOcFKCWzUQ5xJLy2ACTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.26.0/23
185.219.218.0/24
185.221.188.0/22
Signature Algorithm: sha256WithRSAEncryption
62:ac:82:e6:52:67:8e:07:86:c8:21:9a:39:2e:a6:cc:d2:a9:
4a:69:5b:ed:61:80:e2:55:be:e7:5a:05:2f:a0:fd:59:36:3b:
05:cd:23:b5:d0:a6:bf:82:fc:1d:9d:f4:b5:e1:46:ba:34:e5:
19:5b:06:1c:d1:70:39:90:7a:5d:83:9a:87:94:59:1c:5d:3d:
7d:d1:c0:78:37:8b:93:85:ce:28:02:8b:79:5a:41:9c:0d:31:
55:81:37:65:e2:67:a6:bb:f1:85:0b:2f:65:f9:13:86:cb:57:
b8:b8:73:ad:14:01:e2:60:03:45:b4:7b:7d:fe:06:0d:3f:30:
2c:73:6b:07:b5:db:7a:c6:b3:15:9d:09:0d:08:9d:17:6d:4c:
73:ba:f8:74:5f:46:7f:9d:8d:0a:2b:bc:9a:08:05:28:c1:d0:
9c:67:a1:da:fb:69:d5:64:48:9b:12:17:31:c2:e6:3e:7d:86:
55:38:48:74:40:ce:86:9f:7f:88:6a:88:a4:1e:dd:94:b0:df:
b3:76:5a:a3:e7:48:cd:2e:d0:8f:46:25:3f:83:77:23:76:c8:
7e:92:83:b9:c2:c8:e5:ff:3b:ef:04:9e:8b:35:6f:46:8c:74:
77:6e:61:c2:a2:82:c4:a9:4c:9f:bd:ca:dd:48:97:52:52:05:
9a:bc:bb:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:38:44 2024 by rpki-client on console-fra.rpki-client.org