Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/c6IW0l8LjPJSHVX7lsEh7G8fi-o.roa
File: c6IW0l8LjPJSHVX7lsEh7G8fi-o.roa (raw, json)
Hash identifier: GKoJ9XEuYqyEsKBA2k3Cr9DW2FOJMOZlg+YVyzEbsjg=
Subject key identifier: 73:A2:16:D2:5F:0B:8C:F2:52:1D:55:FB:96:C1:21:EC:6F:1F:8B:EA
Certificate issuer: /CN=2f08df165d497d7a9b99e0e71f15ba07d184615a
Certificate serial: 018CC5863E13B1C6DDF66DFA9313EADA6DBB
Authority key identifier: 2F:08:DF:16:5D:49:7D:7A:9B:99:E0:E7:1F:15:BA:07:D1:84:61:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LwjfFl1JfXqbmeDnHxW6B9GEYVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/c6IW0l8LjPJSHVX7lsEh7G8fi-o.roa
Signing time: Mon 01 Jan 2024 14:55:58 +0000
ROA not before: Mon 01 Jan 2024 14:55:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5650
IP address blocks: 193.36.179.0/24 maxlen: 24
193.36.185.0/24 maxlen: 24
193.36.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/LwjfFl1JfXqbmeDnHxW6B9GEYVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/LwjfFl1JfXqbmeDnHxW6B9GEYVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/LwjfFl1JfXqbmeDnHxW6B9GEYVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:86:3e:13:b1:c6:dd:f6:6d:fa:93:13:ea:da:6d:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f08df165d497d7a9b99e0e71f15ba07d184615a
Validity
Not Before: Jan 1 14:55:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73a216d25f0b8cf2521d55fb96c121ec6f1f8bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e9:f2:f2:59:4a:68:a9:94:7c:09:85:6d:a1:
41:7c:9e:67:9d:4d:58:9e:8f:e1:24:b4:58:a1:ed:
38:72:78:5c:db:89:6b:e3:44:af:fe:0e:f0:60:8e:
9d:29:d1:77:9e:8c:95:a7:5b:fe:db:41:84:7e:4a:
e6:56:d5:3f:20:32:f0:9d:69:7e:7b:ef:8c:1b:25:
8f:25:39:0c:35:74:16:26:90:a4:fa:7b:a1:93:07:
4a:ac:59:d9:9a:4b:6d:dc:f3:85:7e:12:4a:1d:c0:
78:b2:6c:d6:4f:e6:2e:63:31:3c:4f:17:30:04:97:
29:58:f2:ba:7f:14:70:de:81:c1:5f:3f:25:ad:83:
b0:1b:af:e4:77:26:d5:5b:51:07:da:d1:35:48:8d:
a1:2d:26:34:38:e7:88:2c:3e:19:71:45:98:30:98:
4c:95:a7:f7:d3:5b:b3:58:70:7d:c5:b8:fa:73:a1:
8f:a4:f8:7a:75:45:3e:f4:6a:17:91:fd:f1:89:fb:
7d:55:7d:f6:26:32:6d:87:32:39:a9:95:7f:70:f3:
61:9e:cf:2b:77:d4:6c:d0:57:0d:19:17:fa:01:23:
79:8f:c2:ce:89:1c:e0:9e:15:4b:e7:55:20:5c:1c:
02:21:63:62:3f:d6:49:ca:8d:dd:da:61:7e:c1:95:
90:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A2:16:D2:5F:0B:8C:F2:52:1D:55:FB:96:C1:21:EC:6F:1F:8B:EA
X509v3 Authority Key Identifier:
keyid:2F:08:DF:16:5D:49:7D:7A:9B:99:E0:E7:1F:15:BA:07:D1:84:61:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LwjfFl1JfXqbmeDnHxW6B9GEYVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/c6IW0l8LjPJSHVX7lsEh7G8fi-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/LwjfFl1JfXqbmeDnHxW6B9GEYVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.179.0/24
193.36.185.0/24
193.36.187.0/24
Signature Algorithm: sha256WithRSAEncryption
71:6b:eb:cd:4e:69:47:65:4a:3f:c2:ac:1a:eb:b7:f7:57:10:
ad:9a:95:e6:03:8f:7d:31:e7:9e:78:dc:ba:44:de:65:ec:85:
5f:d3:6d:5e:57:3d:00:3b:d3:81:f2:2c:33:22:77:7c:29:26:
25:96:96:d5:28:93:c9:ab:6e:f7:3b:c5:74:09:af:66:31:9b:
be:96:71:fb:17:90:65:3b:22:99:3a:ae:15:fd:cd:e9:35:1d:
aa:c0:7c:43:7f:b4:b4:f9:bd:13:7e:4a:71:3d:08:81:8b:02:
84:5e:e3:d4:26:5c:2c:28:d8:99:3a:66:bb:42:1a:80:5e:d4:
cc:03:47:ad:72:60:18:f2:c5:23:12:24:cd:a0:89:e2:b0:98:
dc:81:c9:02:e6:00:cd:25:0a:79:d9:d5:b0:0a:7e:ae:d6:9e:
54:4c:ce:9d:d8:cd:a0:7d:7e:89:e3:9d:72:92:90:20:33:0d:
77:1e:d0:6b:61:df:e6:3f:d7:fa:fb:da:34:8e:ca:21:bb:10:
7c:3d:85:95:fa:79:1a:dd:ae:89:74:65:78:9d:fa:39:c8:b2:
dd:e8:34:94:db:05:1d:cb:7a:3b:5a:7c:94:0b:01:5e:f5:c5:
19:83:e3:42:fb:10:2c:f8:4a:48:76:97:7a:63:a8:f9:e4:a2:
dc:1d:c5:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 03:04:54 2024 by rpki-client on console-fra.rpki-client.org