Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/94d02e-6947-4286-a608-a27f55018a5c/1/x_mbuJcPNKJoyr_Z443rLIEnu6c.roa
File: x_mbuJcPNKJoyr_Z443rLIEnu6c.roa (raw, json)
Hash identifier: heMTrnkI3WmeIRyzbsDcYkCWDXggrIb+YtvrVu3Sywc=
Subject key identifier: C7:F9:9B:B8:97:0F:34:A2:68:CA:BF:D9:E3:8D:EB:2C:81:27:BB:A7
Certificate issuer: /CN=6de8ac4959725e4fed1c330d22b5cd060241a514
Certificate serial: 018E5BE73DD088C26289B3BD9D494043A029
Authority key identifier: 6D:E8:AC:49:59:72:5E:4F:ED:1C:33:0D:22:B5:CD:06:02:41:A5:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/beisSVlyXk_tHDMNIrXNBgJBpRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/94d02e-6947-4286-a608-a27f55018a5c/1/x_mbuJcPNKJoyr_Z443rLIEnu6c.roa
Signing time: Wed 20 Mar 2024 12:47:44 +0000
ROA not before: Wed 20 Mar 2024 12:47:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211075
IP address blocks: 185.206.230.0/24 maxlen: 24
2a11:9c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/94d02e-6947-4286-a608-a27f55018a5c/1/beisSVlyXk_tHDMNIrXNBgJBpRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/94d02e-6947-4286-a608-a27f55018a5c/1/beisSVlyXk_tHDMNIrXNBgJBpRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/beisSVlyXk_tHDMNIrXNBgJBpRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5b:e7:3d:d0:88:c2:62:89:b3:bd:9d:49:40:43:a0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6de8ac4959725e4fed1c330d22b5cd060241a514
Validity
Not Before: Mar 20 12:47:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7f99bb8970f34a268cabfd9e38deb2c8127bba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4f:26:53:fd:6b:b0:c1:f2:f0:51:2e:2e:66:
d3:ac:d8:70:65:72:17:8c:48:06:5e:37:e4:a5:df:
f8:87:7e:01:1a:ce:13:d1:19:df:cb:d8:9d:55:6b:
c6:a5:74:aa:f9:99:28:2a:14:bc:d8:3e:91:a5:97:
63:24:6b:b8:50:98:9c:dd:f6:8e:49:b8:ee:2c:79:
12:68:1f:f3:85:98:92:07:96:b2:30:5f:19:1c:ff:
0e:21:61:c5:3a:77:9d:5c:ca:0b:68:39:14:89:52:
f8:dc:f6:9b:30:43:df:12:23:80:b6:de:9a:3d:ae:
b4:58:5d:b0:55:23:d0:44:e1:42:38:5e:36:01:89:
e2:20:9f:d3:00:27:7b:53:da:d3:fd:e3:b8:ff:4c:
8a:ad:d3:ea:4c:b9:5d:3e:eb:74:69:2d:9b:b3:a9:
14:0b:85:ac:bf:74:68:30:f8:28:82:ab:bf:a7:b7:
80:3d:e1:34:3a:ca:e8:85:51:76:6d:4c:af:8e:36:
18:03:cb:61:d4:9a:4f:a7:f7:92:9b:39:ba:61:0c:
f1:24:5d:12:af:cf:0b:2e:ea:58:ea:17:a5:5e:7b:
b2:cd:88:e4:b5:8f:4e:d0:9c:85:28:c1:47:a1:75:
4f:22:88:5f:40:56:2f:2a:1a:92:3e:f8:d0:0c:5f:
fe:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F9:9B:B8:97:0F:34:A2:68:CA:BF:D9:E3:8D:EB:2C:81:27:BB:A7
X509v3 Authority Key Identifier:
keyid:6D:E8:AC:49:59:72:5E:4F:ED:1C:33:0D:22:B5:CD:06:02:41:A5:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/beisSVlyXk_tHDMNIrXNBgJBpRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/94d02e-6947-4286-a608-a27f55018a5c/1/x_mbuJcPNKJoyr_Z443rLIEnu6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/94d02e-6947-4286-a608-a27f55018a5c/1/beisSVlyXk_tHDMNIrXNBgJBpRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.230.0/24
IPv6:
2a11:9c0::/32
Signature Algorithm: sha256WithRSAEncryption
5d:8a:4d:ce:e9:ca:c8:97:5f:0e:ce:f8:e5:fa:bb:69:eb:90:
fa:d1:e4:e4:90:86:50:d8:f0:36:a8:e9:22:ad:3e:33:c9:3e:
9a:4c:07:38:32:02:85:6a:0b:7b:51:05:45:aa:28:d8:10:96:
20:ae:a2:80:03:9a:f9:9a:fb:69:f5:77:6a:da:b5:dd:26:1a:
a5:75:01:6c:cd:2e:a1:a1:7c:20:79:f3:e4:e3:f8:55:41:26:
95:eb:78:39:f9:a7:c5:33:7b:0f:12:b2:b8:d5:d9:90:1e:2f:
9c:f6:d5:72:5c:f2:c4:2a:e7:bc:b4:5d:6b:9a:a0:da:fb:a1:
24:2f:b2:25:7a:d4:96:af:fe:03:45:2e:e5:fd:88:44:1b:0f:
66:91:77:8d:0e:00:de:99:80:d7:01:d5:62:d8:9f:bb:d2:4a:
de:71:52:d0:f4:fd:86:6e:0e:91:93:f7:1d:7f:20:7d:8c:55:
67:fd:2e:f0:b0:f9:34:5f:ac:a6:08:f7:a0:b2:42:df:01:71:
9d:cb:10:fe:48:94:2e:64:a0:02:e8:d2:95:6c:ba:33:a0:7c:
7a:bf:6f:37:5e:9d:36:3e:52:2d:78:19:f5:74:90:10:23:31:
9f:10:d7:d3:7c:5c:e9:78:ce:8c:76:9c:bd:d2:93:19:81:fd:
66:e4:9e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:56:17 2024 by rpki-client on console-ams.rpki-client.org