Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/6TTJDyk0yAI7WETTwx9sGBhLjJA.roa
File: 6TTJDyk0yAI7WETTwx9sGBhLjJA.roa (raw, json)
Hash identifier: jiRKVOMndM2wTqXsoHDqYGD+7PUkhfYD6jKsfp16GkI=
Subject key identifier: E9:34:C9:0F:29:34:C8:02:3B:58:44:D3:C3:1F:6C:18:18:4B:8C:90
Certificate issuer: /CN=2ef957aba2ef00352850e202464c71d33ca81448
Certificate serial: 018CC4930915652E05843D76ED4579E944A6
Authority key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/6TTJDyk0yAI7WETTwx9sGBhLjJA.roa
Signing time: Mon 01 Jan 2024 10:30:19 +0000
ROA not before: Mon 01 Jan 2024 10:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2472
IP address blocks: 193.48.161.0/24 maxlen: 24
193.48.162.0/24 maxlen: 24
193.49.230.0/24 maxlen: 24
193.55.4.0/24 maxlen: 24
195.98.226.0/24 maxlen: 24
195.98.227.0/24 maxlen: 24
193.50.134.0/24 maxlen: 24
194.254.208.0/24 maxlen: 24
193.51.118.0/24 maxlen: 24
194.214.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:09:15:65:2e:05:84:3d:76:ed:45:79:e9:44:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ef957aba2ef00352850e202464c71d33ca81448
Validity
Not Before: Jan 1 10:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e934c90f2934c8023b5844d3c31f6c18184b8c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c2:4b:19:e7:08:fb:55:83:3a:45:ab:75:c2:
ab:aa:ee:b5:92:ea:a0:ee:9b:22:67:60:09:c8:09:
1c:23:b3:aa:c5:74:5c:6a:5c:f1:7b:aa:a5:d7:48:
4d:97:86:fd:32:b7:8f:a2:fe:55:f8:a2:ae:f2:3b:
18:6f:1a:42:39:bb:f2:36:92:54:c9:2d:c7:ef:a6:
4d:ee:9f:7d:4f:0a:15:5f:5e:b7:78:49:e9:e0:cb:
d9:66:d0:88:ed:66:1b:bc:49:55:6b:c3:11:27:59:
72:c5:74:40:e4:cd:ce:e2:20:d2:bf:8f:a1:db:b4:
04:c5:51:1b:7b:80:77:94:e9:fb:ab:0a:83:6f:2d:
a3:79:6f:2e:eb:c1:0f:07:a7:ea:e9:55:f7:75:62:
d2:d4:ab:14:a4:b3:d6:7e:18:f2:0c:5d:e0:c0:bc:
b6:c2:42:47:5d:6d:23:93:ca:e9:2e:ba:fe:f4:91:
25:f9:66:c8:69:fb:02:bb:54:39:5e:10:5e:a9:5f:
b7:c8:61:db:65:58:0b:15:71:1a:03:be:a3:d4:d5:
7e:6b:4c:ad:b7:f9:bd:bc:59:65:5e:54:3a:e7:96:
2e:b4:d5:29:bb:82:f2:33:c9:08:de:84:d6:ff:88:
44:fb:fe:3c:86:c0:c5:12:ca:dc:d7:c5:ff:86:a0:
cc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:34:C9:0F:29:34:C8:02:3B:58:44:D3:C3:1F:6C:18:18:4B:8C:90
X509v3 Authority Key Identifier:
keyid:2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/6TTJDyk0yAI7WETTwx9sGBhLjJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.48.161.0-193.48.162.255
193.49.230.0/24
193.50.134.0/24
193.51.118.0/24
193.55.4.0/24
194.214.214.0/24
194.254.208.0/24
195.98.226.0/23
Signature Algorithm: sha256WithRSAEncryption
17:e1:b5:ae:7f:0e:41:29:97:9d:97:35:57:ef:17:15:f4:fd:
32:95:c6:c7:24:bf:5b:53:d5:60:d7:81:2c:98:73:a8:9b:a8:
e0:e9:22:d3:6e:ba:aa:79:ff:e3:f1:6f:8e:a7:32:b9:d1:0f:
ee:c2:db:c6:53:57:f1:eb:b5:16:c8:b7:c6:7c:ef:1d:b8:be:
2f:42:ce:b7:df:56:2e:42:f9:ec:ad:3a:78:f2:77:21:20:c5:
bb:90:7e:d0:28:8f:8c:63:48:9a:78:6d:05:db:6d:fc:35:54:
04:5c:e5:cf:aa:c8:2a:09:a4:69:d9:9e:b9:35:fd:c9:c0:2e:
14:25:44:8c:43:c5:c4:d7:eb:83:19:dd:96:cb:da:ce:59:c5:
d2:f7:f7:31:59:a5:8b:0c:0c:73:26:76:e6:1f:b6:41:de:95:
21:3d:d4:08:c7:69:c7:35:7c:ea:68:95:62:89:cd:2d:8c:85:
be:9b:86:f6:f5:fd:6c:de:66:43:18:15:ed:f4:e7:52:1f:c7:
6a:93:cf:eb:24:96:c8:27:10:ca:59:67:53:dd:d6:d9:cd:4a:
60:f8:98:7d:79:6e:85:99:20:f3:05:6b:8c:12:9a:dd:34:6c:
32:35:52:47:c2:e8:de:a3:af:c6:4e:53:87:fc:a6:f8:d5:4a:
b4:05:77:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:19:35 2024 by rpki-client on console-fra.rpki-client.org