Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/bD3iyJ5S6y2J7P57n8JARvjsvOM.roa
File: bD3iyJ5S6y2J7P57n8JARvjsvOM.roa (raw, json)
Hash identifier: pzuvATivXRrSfr8KnT0hisxuVdBRi5Fwz8UpvgiEOJM=
Subject key identifier: 6C:3D:E2:C8:9E:52:EB:2D:89:EC:FE:7B:9F:C2:40:46:F8:EC:BC:E3
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 018CC72576082EBFB1BEAC3C5C77FFEE3869
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/bD3iyJ5S6y2J7P57n8JARvjsvOM.roa
Signing time: Mon 01 Jan 2024 22:29:30 +0000
ROA not before: Mon 01 Jan 2024 22:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3262
IP address blocks: 185.192.183.0/24 maxlen: 24
185.224.92.0/24 maxlen: 24
185.194.24.0/24 maxlen: 24
185.219.217.0/24 maxlen: 24
185.219.216.0/24 maxlen: 24
185.219.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:76:08:2e:bf:b1:be:ac:3c:5c:77:ff:ee:38:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 1 22:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c3de2c89e52eb2d89ecfe7b9fc24046f8ecbce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b6:78:03:52:87:f9:6c:7c:2d:eb:a4:4b:e2:
d3:e6:fe:49:d4:1e:82:e3:36:95:56:05:be:5a:4b:
5d:4b:c5:f1:b7:11:f3:03:68:95:c7:c8:70:b7:aa:
f1:b7:28:e6:e0:3d:18:27:6b:50:47:9f:11:f4:44:
32:06:7c:6f:6c:5f:9f:89:6e:d4:cf:9f:97:66:31:
4a:5a:7a:00:41:1e:37:24:80:4c:43:f9:9a:e8:73:
61:00:16:91:25:a9:01:0e:8d:6d:fc:54:4e:83:f0:
57:8f:fa:38:da:9d:fe:a8:40:f4:a8:94:b5:bf:36:
15:e5:0d:d2:70:a8:d9:31:03:dc:13:50:59:69:c3:
05:bd:52:a5:1b:64:df:ed:ce:48:6d:d6:48:43:20:
15:22:13:42:5e:cd:92:e3:5f:fc:f5:ed:47:f9:eb:
04:1c:52:b4:83:f7:00:99:38:4a:aa:78:f3:18:a1:
70:38:46:70:08:85:f8:05:a4:56:6a:8c:06:7c:ac:
fd:44:26:96:1e:03:7c:18:c6:95:7b:a4:3c:ea:e7:
86:de:e2:75:8d:d4:15:eb:87:4e:47:56:13:bb:a4:
6d:20:55:08:93:1f:eb:23:a6:c8:0d:b0:24:66:76:
36:b0:07:2b:a4:d8:22:0f:1d:57:c0:37:18:ee:49:
ac:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3D:E2:C8:9E:52:EB:2D:89:EC:FE:7B:9F:C2:40:46:F8:EC:BC:E3
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/bD3iyJ5S6y2J7P57n8JARvjsvOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.183.0/24
185.194.24.0/24
185.219.216.0/23
185.219.219.0/24
185.224.92.0/24
Signature Algorithm: sha256WithRSAEncryption
74:2e:ad:3a:ae:be:18:78:19:a9:0c:13:e1:7d:3d:7d:40:b8:
9f:93:99:1c:e5:9d:99:fb:a8:44:ef:92:e8:f4:97:1c:bb:1d:
b8:3f:36:6e:98:bb:02:0c:32:7f:8a:92:43:53:8d:80:3d:38:
57:f7:76:e7:64:cc:0c:f5:59:7c:fd:9a:36:9b:8e:20:b7:c9:
cb:40:05:8b:dd:b9:06:81:7e:b4:76:e7:d6:24:21:c2:2d:1f:
79:69:ef:2d:27:ca:10:32:40:ad:7a:13:73:f8:6f:f8:96:2b:
b0:75:49:af:20:71:2c:7a:ff:49:80:15:59:85:cd:86:f9:f0:
6c:0d:8f:78:56:3b:c3:09:6c:c2:3d:f8:16:92:ee:e2:f6:d1:
4b:68:08:f8:a4:21:5b:b3:a7:d0:78:71:23:e1:c2:37:e4:a2:
a7:d3:9e:98:a8:a2:d7:11:14:ce:6d:6a:4e:9f:58:37:d6:c6:
c1:31:5b:9a:c4:cc:a5:0c:cc:34:d5:d9:6c:85:75:8e:44:32:
7b:95:96:2b:30:a5:6d:1a:e9:cc:a0:ec:87:ee:6e:47:69:88:
03:98:7c:21:c2:12:5f:b4:3d:9f:f3:7f:0a:ef:ad:89:ce:27:
bb:37:1a:d7:78:27:70:16:fe:54:1d:0b:bb:8b:39:6c:dc:2d:
98:97:fa:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:42 2024 by rpki-client on console-fra.rpki-client.org