Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/aDe6MhmkHWutBD16HcaDmkZvbmU.roa
File: aDe6MhmkHWutBD16HcaDmkZvbmU.roa (raw, json)
Hash identifier: m+U6nBbEByATE5rZnT+YU7k85kTT7K9Ibs3g2wTshHM=
Subject key identifier: 68:37:BA:32:19:A4:1D:6B:AD:04:3D:7A:1D:C6:83:9A:46:6F:6E:65
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 018CC49290F0436A79D51ECA76CD84E6E543
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/aDe6MhmkHWutBD16HcaDmkZvbmU.roa
Signing time: Mon 01 Jan 2024 10:29:48 +0000
ROA not before: Mon 01 Jan 2024 10:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44090
IP address blocks: 185.179.168.0/22 maxlen: 22
109.70.237.0/24 maxlen: 24
2a0a:74c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:90:f0:43:6a:79:d5:1e:ca:76:cd:84:e6:e5:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: Jan 1 10:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6837ba3219a41d6bad043d7a1dc6839a466f6e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:16:eb:2e:d9:fb:c5:3e:a9:58:4c:87:4a:ac:
a3:c4:63:75:cb:4a:9e:d8:ae:23:ef:c2:c2:dd:b3:
74:b9:b3:39:68:e3:22:ae:62:a0:ef:95:7c:f9:80:
7b:85:07:24:7a:ee:a5:42:84:3b:0c:b7:30:d5:37:
16:7e:00:3b:69:4f:10:68:37:d4:6c:24:dd:eb:80:
7d:32:f4:43:10:8c:f4:6c:e9:be:8e:ab:f5:d1:51:
a3:3a:03:af:5c:93:0e:9a:9c:1d:d8:9b:0f:19:5a:
ed:f9:e8:0c:40:f6:ea:c7:0a:ea:62:04:bc:7b:33:
04:87:6a:58:c7:19:e5:d8:56:af:5a:08:5f:ca:52:
4b:e2:31:6c:c3:a6:04:96:38:64:5e:ad:a5:c6:dc:
9a:f1:25:00:7d:61:eb:01:da:54:bd:25:49:98:20:
ff:20:7a:dd:21:21:00:fe:79:4c:1f:70:88:a8:20:
a4:54:6e:d0:ba:3c:3d:f6:29:bc:c0:a7:7b:19:02:
90:a2:69:57:cb:0e:ec:a0:a9:28:ae:3e:e9:0d:a9:
38:d7:53:00:c9:a0:dc:db:7d:ca:71:05:d5:be:a0:
50:6d:d7:bb:a9:fb:30:fa:56:c5:71:23:73:d6:fe:
90:51:5c:be:f5:ed:07:82:27:f8:74:02:6d:32:12:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:37:BA:32:19:A4:1D:6B:AD:04:3D:7A:1D:C6:83:9A:46:6F:6E:65
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/aDe6MhmkHWutBD16HcaDmkZvbmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.237.0/24
185.179.168.0/22
IPv6:
2a0a:74c0::/32
Signature Algorithm: sha256WithRSAEncryption
74:e3:58:8d:64:62:30:e9:2e:f2:43:7a:d9:00:7f:2d:45:83:
10:c1:ee:8a:f9:47:58:02:1d:2c:99:03:48:72:46:7f:ee:2c:
43:30:50:bd:cf:ae:45:f2:19:01:6d:50:7e:97:a6:e8:2a:2c:
f2:31:08:78:2d:10:be:55:c4:bd:2c:da:b0:9c:57:65:67:e1:
19:d8:ee:be:78:9b:06:fa:8e:ba:6e:91:08:ae:48:2f:5e:9c:
a1:a5:3a:4d:e4:43:92:db:5f:9d:15:0d:de:5a:5e:ea:a1:bb:
85:d1:03:f8:7b:31:15:63:1a:1d:11:4c:e6:fa:da:cd:f4:13:
a8:92:c6:7e:7c:4c:24:5e:a2:db:bd:a1:1d:90:09:77:17:74:
18:14:b6:e6:68:97:6b:97:55:52:fc:e9:7a:c4:fd:b8:45:1a:
9d:0a:bb:c9:ae:63:09:c4:c8:d6:51:31:ad:5e:f2:e7:a5:41:
7f:d5:30:34:6d:5f:69:f6:d5:67:f0:82:02:52:3c:36:ed:e9:
7f:49:c0:40:3c:67:42:8c:ac:a8:35:38:ff:e4:b7:a8:8e:77:
15:85:e0:01:bd:45:76:7b:74:d5:1e:40:cc:97:28:f6:f3:30:
32:52:1c:7e:d3:4d:4e:bb:5a:89:eb:28:26:01:ff:26:b1:dc:
f4:59:91:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 17:39:46 2024 by rpki-client on console-ams.rpki-client.org