Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/373146-2c9d-45cc-85cc-9b7997481f72/1/6dv-5vHf3EfV2GsC1E1I-P-a0qo.roa
File: 6dv-5vHf3EfV2GsC1E1I-P-a0qo.roa (raw, json)
Hash identifier: BE2xOlyvEFYE3Im8vUEEQH2HZpN+5Mqka7A5mBFDiCc=
Subject key identifier: E9:DB:FE:E6:F1:DF:DC:47:D5:D8:6B:02:D4:4D:48:F8:FF:9A:D2:AA
Certificate issuer: /CN=0beb38e34bbe17e15772706c7a961a85e5d18b5c
Certificate serial: 018CC94C0B0D959E12EC3D75FAFDCE009A27
Authority key identifier: 0B:EB:38:E3:4B:BE:17:E1:57:72:70:6C:7A:96:1A:85:E5:D1:8B:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C-s440u-F-FXcnBsepYaheXRi1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/373146-2c9d-45cc-85cc-9b7997481f72/1/6dv-5vHf3EfV2GsC1E1I-P-a0qo.roa
Signing time: Tue 02 Jan 2024 08:30:53 +0000
ROA not before: Tue 02 Jan 2024 08:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201958
IP address blocks: 185.42.189.0/24 maxlen: 24
185.42.188.0/23 maxlen: 23
185.42.188.0/24 maxlen: 24
185.42.191.0/24 maxlen: 24
185.42.190.0/24 maxlen: 24
185.42.190.0/23 maxlen: 23
2a04:9140:3003::/48 maxlen: 48
2a04:9140:3043::/48 maxlen: 48
2a04:9140:3044::/48 maxlen: 48
2a04:9140:3104::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/373146-2c9d-45cc-85cc-9b7997481f72/1/C-s440u-F-FXcnBsepYaheXRi1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/373146-2c9d-45cc-85cc-9b7997481f72/1/C-s440u-F-FXcnBsepYaheXRi1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/C-s440u-F-FXcnBsepYaheXRi1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 May 2024 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:0b:0d:95:9e:12:ec:3d:75:fa:fd:ce:00:9a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0beb38e34bbe17e15772706c7a961a85e5d18b5c
Validity
Not Before: Jan 2 08:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9dbfee6f1dfdc47d5d86b02d44d48f8ff9ad2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9f:28:b6:99:b3:a6:aa:aa:24:72:f4:0b:4f:
23:88:66:06:b8:b9:52:22:3c:d1:11:bf:3b:7a:19:
f4:44:63:92:09:af:ba:63:31:ce:43:15:53:e8:9b:
6c:d7:7f:b3:ca:2d:f9:2e:47:65:93:49:01:4a:33:
36:7f:0c:95:d7:11:bb:78:2a:2c:77:96:3c:e6:f4:
8b:a6:55:c2:cd:e2:8a:0e:33:ff:42:d8:8b:9b:73:
b9:82:e6:24:7e:ee:5e:72:fa:20:a6:81:a0:2a:c7:
09:e1:06:2a:20:62:f7:fe:f4:10:7f:f4:e7:69:ec:
60:71:a9:fe:45:d5:0a:be:02:c6:b8:bc:5e:da:85:
5e:77:b8:e8:8f:e0:0a:04:ed:76:dc:04:58:9b:ba:
db:9f:c8:87:2b:0f:a4:30:30:51:1e:66:a7:90:02:
22:b8:67:0f:85:4c:76:60:a6:5c:89:ec:68:4b:51:
2a:74:2d:de:09:c5:b7:f1:9c:b1:45:c8:49:64:6b:
e6:5e:1a:ae:b6:ad:58:67:9b:13:67:0b:9d:94:af:
c1:c0:d1:73:57:07:59:1e:2c:2d:6c:29:5a:ce:8f:
44:89:15:ff:d5:36:45:7a:80:4d:8f:88:48:19:72:
23:b5:a8:2e:14:9a:b6:99:64:96:92:b2:31:3c:01:
fb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DB:FE:E6:F1:DF:DC:47:D5:D8:6B:02:D4:4D:48:F8:FF:9A:D2:AA
X509v3 Authority Key Identifier:
keyid:0B:EB:38:E3:4B:BE:17:E1:57:72:70:6C:7A:96:1A:85:E5:D1:8B:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C-s440u-F-FXcnBsepYaheXRi1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/373146-2c9d-45cc-85cc-9b7997481f72/1/6dv-5vHf3EfV2GsC1E1I-P-a0qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/373146-2c9d-45cc-85cc-9b7997481f72/1/C-s440u-F-FXcnBsepYaheXRi1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.188.0/22
IPv6:
2a04:9140:3003::/48
2a04:9140:3043::-2a04:9140:3044:ffff:ffff:ffff:ffff:ffff
2a04:9140:3104::/48
Signature Algorithm: sha256WithRSAEncryption
0e:49:1c:6e:98:9b:cd:0f:51:f4:bb:70:06:73:13:8a:e9:60:
71:7e:5f:81:13:2b:b8:93:c0:66:02:e1:70:05:16:7b:47:db:
b8:bb:f0:98:d7:ec:88:5b:79:2f:3b:5f:b3:14:66:0d:06:b9:
7b:b3:af:68:46:3d:27:00:6d:89:a4:69:73:4b:5a:4c:ec:5f:
35:0b:d9:5f:38:41:90:ff:54:27:05:3a:10:22:b0:2c:8c:d7:
51:67:4e:8d:cb:aa:22:48:57:f0:bc:2d:74:50:55:fa:84:ef:
f4:31:89:25:f9:96:62:6d:13:55:7d:46:08:34:b9:93:47:ea:
bf:99:f3:73:4b:fa:dc:bd:12:c1:9c:68:5b:89:95:9a:45:51:
ef:a5:7e:cb:2a:71:b1:d0:54:93:7c:2b:76:61:98:b6:6e:55:
81:39:94:f6:aa:18:6f:84:9c:7c:c1:76:dd:bd:e6:b4:3e:51:
85:24:f5:da:12:42:80:10:0b:6e:d3:79:86:bc:8a:92:d0:fc:
d4:dd:a7:31:4b:8e:c7:85:aa:12:b5:74:64:01:79:ee:94:fe:
4e:4e:44:e8:93:ba:53:3f:93:32:11:8a:be:de:78:19:09:a9:
0c:94:cb:3b:46:62:12:b9:4b:49:90:11:5d:46:86:8b:d9:b1:
09:cf:43:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 19:51:50 2024 by rpki-client on console-ams.rpki-client.org