Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/M06EaR_BiGQHIDrlnjg-utI4Ehk.roa
File: M06EaR_BiGQHIDrlnjg-utI4Ehk.roa (raw, json)
Hash identifier: 66O0PQw5Ph5/+pcgzSMWwEtA8ttTbYvNmgKK7GiexSs=
Subject key identifier: 33:4E:84:69:1F:C1:88:64:07:20:3A:E5:9E:38:3E:BA:D2:38:12:19
Certificate issuer: /CN=7ef532ebb07ea8506b653430c046ec8d402f968b
Certificate serial: 018CC348C88042FB2A5E52CA34E7D36C1E73
Authority key identifier: 7E:F5:32:EB:B0:7E:A8:50:6B:65:34:30:C0:46:EC:8D:40:2F:96:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fvUy67B-qFBrZTQwwEbsjUAvlos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/M06EaR_BiGQHIDrlnjg-utI4Ehk.roa
Signing time: Mon 01 Jan 2024 04:29:36 +0000
ROA not before: Mon 01 Jan 2024 04:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202050
IP address blocks: 193.108.215.0/24 maxlen: 24
193.108.219.0/24 maxlen: 24
193.109.94.0/24 maxlen: 24
193.109.92.0/24 maxlen: 24
2a0f:f840::/48 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/fvUy67B-qFBrZTQwwEbsjUAvlos.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/fvUy67B-qFBrZTQwwEbsjUAvlos.mft
rsync://rpki.ripe.net/repository/DEFAULT/fvUy67B-qFBrZTQwwEbsjUAvlos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c8:80:42:fb:2a:5e:52:ca:34:e7:d3:6c:1e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ef532ebb07ea8506b653430c046ec8d402f968b
Validity
Not Before: Jan 1 04:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=334e84691fc1886407203ae59e383ebad2381219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:40:b4:0f:76:b5:5a:7a:3b:54:9d:cc:d2:06:
a1:bd:80:bb:2c:64:4c:5a:ab:43:80:93:68:b7:ee:
ed:cf:e4:8a:52:da:71:4b:8d:51:cd:c8:80:f1:7c:
c4:ab:1d:42:f4:4d:7e:7c:ac:dc:f3:9b:07:7a:2e:
67:b7:e1:09:bb:82:86:96:2c:44:45:02:7d:5f:00:
e3:7f:63:b7:fa:07:fb:a1:c7:d1:81:4b:49:77:df:
62:62:f4:06:7c:90:75:d3:70:74:1a:1d:dc:c4:e2:
de:56:9f:28:9d:34:9e:c2:ac:10:76:29:da:55:30:
85:28:b9:72:4e:0b:39:7c:85:bc:d0:1b:80:37:58:
8f:6b:f7:2d:7d:cc:d0:1c:95:dd:00:71:ac:0e:de:
c5:bd:3d:e5:41:58:7a:57:1c:b3:70:1e:7e:ee:eb:
63:80:99:60:77:40:56:d7:43:9e:80:ee:39:80:52:
b6:d3:d5:8b:b2:d8:ca:91:29:f5:cf:c0:e7:2e:f2:
34:2f:41:2c:f4:1a:d1:50:1e:cd:4f:18:b9:52:af:
bc:2e:e9:bd:32:a7:88:4d:2a:96:27:5d:c5:37:67:
95:e5:30:0c:c2:4e:54:8a:20:d5:af:14:37:a8:58:
7c:fe:a7:57:cc:5f:d1:b3:a4:20:a5:b3:7e:9e:8a:
17:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4E:84:69:1F:C1:88:64:07:20:3A:E5:9E:38:3E:BA:D2:38:12:19
X509v3 Authority Key Identifier:
keyid:7E:F5:32:EB:B0:7E:A8:50:6B:65:34:30:C0:46:EC:8D:40:2F:96:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fvUy67B-qFBrZTQwwEbsjUAvlos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/M06EaR_BiGQHIDrlnjg-utI4Ehk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/fvUy67B-qFBrZTQwwEbsjUAvlos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.215.0/24
193.108.219.0/24
193.109.92.0/24
193.109.94.0/24
IPv6:
2a0f:f840::/48
Signature Algorithm: sha256WithRSAEncryption
53:59:ca:8c:da:3c:b3:70:be:6b:a1:f6:76:ad:c3:15:81:5f:
8b:7a:e0:26:a9:8c:cc:bb:37:11:32:82:89:c7:2b:72:b4:24:
32:6c:48:d7:0e:f8:bc:5a:97:20:c9:34:59:13:c7:21:82:34:
6e:0d:b4:9d:96:26:03:32:6c:48:72:b2:1e:b4:e9:5c:76:b6:
18:d8:a4:eb:0f:e8:08:a4:16:ab:b5:35:56:c5:9d:c2:2e:5c:
3c:c7:68:0b:a7:3d:28:f4:60:c4:7c:20:85:87:74:d0:c6:c0:
b8:87:59:02:02:e5:f2:31:0c:55:20:c6:cc:51:a1:18:7c:25:
e7:43:c5:f5:c4:55:e4:e4:0e:39:61:1a:be:2a:cf:a7:12:5c:
9a:52:29:b1:eb:00:69:4a:ce:53:85:97:cf:a0:ea:1a:43:e3:
36:f8:8e:3c:ff:0c:5b:ca:88:b1:89:33:26:1d:0f:1b:05:47:
56:16:b7:85:21:9a:ac:aa:f5:5e:32:b7:d3:01:c9:f1:82:3c:
ff:91:3d:b2:7a:fc:6c:c1:2c:5d:a8:7a:ce:e6:59:20:87:59:
4a:b8:a5:63:89:c1:50:00:d5:2f:df:ab:48:b6:0b:2d:4a:15:
24:08:79:b6:88:05:49:4a:cd:63:27:28:37:42:1d:29:77:2d:
4e:23:f4:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:54:46 2024 by rpki-client on console-ams.rpki-client.org