Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/dWAljN-VESiEsxSetRTl9Baapjk.roa
File: dWAljN-VESiEsxSetRTl9Baapjk.roa (raw, json)
Hash identifier: 15QCrXH29sutoazus2fCjy3w3Zo+ubUPeSA+0ZnUh90=
Subject key identifier: 75:60:25:8C:DF:95:11:28:84:B3:14:9E:B5:14:E5:F4:16:9A:A6:39
Certificate issuer: /CN=f6090b4db06a4d65935141bac98098127a8b8f5a
Certificate serial: 018CC49369C225942D954C3FFFE1094DB3F5
Authority key identifier: F6:09:0B:4D:B0:6A:4D:65:93:51:41:BA:C9:80:98:12:7A:8B:8F:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9gkLTbBqTWWTUUG6yYCYEnqLj1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/dWAljN-VESiEsxSetRTl9Baapjk.roa
Signing time: Mon 01 Jan 2024 10:30:44 +0000
ROA not before: Mon 01 Jan 2024 10:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136258
IP address blocks: 185.93.173.0/24 maxlen: 24
188.214.157.0/24 maxlen: 24
92.243.80.0/24 maxlen: 24
185.196.61.0/24 maxlen: 24
185.192.124.0/24 maxlen: 24
185.90.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/9gkLTbBqTWWTUUG6yYCYEnqLj1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/9gkLTbBqTWWTUUG6yYCYEnqLj1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/9gkLTbBqTWWTUUG6yYCYEnqLj1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:69:c2:25:94:2d:95:4c:3f:ff:e1:09:4d:b3:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6090b4db06a4d65935141bac98098127a8b8f5a
Validity
Not Before: Jan 1 10:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7560258cdf95112884b3149eb514e5f4169aa639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:60:d2:6d:c0:c0:de:99:d9:4c:a7:7d:f7:5b:
9a:81:45:a9:56:89:59:92:7c:09:53:a3:4f:70:a2:
d4:a2:f0:39:d4:ae:44:d4:62:82:26:d3:11:04:66:
d2:e9:87:77:ad:69:b7:f3:19:12:a2:f5:74:3d:28:
75:72:a8:cf:fd:26:61:6b:1f:59:f8:00:f3:ec:b0:
f7:74:5e:c9:4a:7a:68:e8:ca:d3:24:bb:f0:e0:ce:
9a:93:04:33:cb:db:2e:4a:9c:6c:8f:3f:96:ee:93:
e9:1a:dc:4c:38:2f:ee:ff:f5:2d:b9:85:cc:12:28:
27:ae:be:36:68:ec:eb:11:05:39:34:3a:66:2b:05:
2a:6f:06:36:3c:81:ea:e5:22:f3:78:0e:f7:30:f4:
9e:df:f7:30:3a:d6:0f:76:c8:ad:31:8f:00:9e:09:
67:a2:20:d3:75:7d:9f:32:4a:5f:72:cb:30:85:53:
0f:4b:67:13:56:f0:53:bf:28:07:c0:0b:5c:03:98:
2b:ed:8a:39:f1:49:a1:29:0f:5a:ab:1d:a5:30:4e:
1a:c1:ce:83:5a:79:0a:b2:85:68:e5:2b:16:b8:87:
10:c4:7f:c3:fd:ed:bd:8f:42:26:70:f0:7e:44:f3:
3c:a4:e4:b5:10:66:6a:67:77:81:5e:7b:0f:f3:2f:
90:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:60:25:8C:DF:95:11:28:84:B3:14:9E:B5:14:E5:F4:16:9A:A6:39
X509v3 Authority Key Identifier:
keyid:F6:09:0B:4D:B0:6A:4D:65:93:51:41:BA:C9:80:98:12:7A:8B:8F:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9gkLTbBqTWWTUUG6yYCYEnqLj1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/dWAljN-VESiEsxSetRTl9Baapjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/9gkLTbBqTWWTUUG6yYCYEnqLj1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.243.80.0/24
185.90.61.0/24
185.93.173.0/24
185.192.124.0/24
185.196.61.0/24
188.214.157.0/24
Signature Algorithm: sha256WithRSAEncryption
24:6f:e0:3d:4e:08:0e:51:57:89:e8:53:3f:61:7f:bd:65:51:
9a:e8:f1:cb:53:4d:f2:73:0e:a4:f8:38:06:f8:4f:95:e2:49:
28:2f:54:e4:d6:e0:92:f7:ea:fc:4f:05:06:21:5b:3f:cc:64:
46:33:8b:4f:d3:26:3f:2b:c7:2d:71:1f:c5:cc:31:d0:8d:e1:
05:7b:29:d6:18:83:41:79:f6:2a:e1:9f:d4:bb:70:57:5a:e8:
b6:5a:2f:5c:c0:28:b1:00:1e:cc:3e:a1:39:7d:3a:30:7e:6e:
70:44:05:06:4c:a2:4a:de:9f:10:b5:a1:d4:01:9e:40:0a:75:
33:c9:79:19:64:98:d0:ae:eb:e8:81:ce:ee:b9:ff:9d:ba:82:
62:ca:2e:97:aa:ca:c1:2c:73:7c:cc:33:b9:5e:67:8e:cd:85:
05:bf:38:56:76:66:98:bf:85:aa:1d:60:ed:45:cd:a7:bf:61:
34:65:2a:07:4b:d3:5c:f8:f7:9d:86:06:ea:5e:64:c5:f3:81:
d8:96:c7:6c:0e:38:79:b3:0f:c1:dc:55:4b:45:fd:7b:6b:88:
ce:81:24:42:fc:40:88:f0:06:97:dd:20:82:0c:db:a8:26:81:
2c:b3:0c:46:92:c0:b5:fe:0b:fb:2c:2e:df:8a:80:a9:08:eb:
fe:64:7d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:55:25 2024 by rpki-client on console-fra.rpki-client.org