Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/bce0agyAeulGoTEWVW66M3c42CQ.roa
File: bce0agyAeulGoTEWVW66M3c42CQ.roa (raw, json)
Hash identifier: 9WdDnmcXDcNfAqW3V5v2FU4LiWQpyhTy1QR7r5CM1p0=
Subject key identifier: 6D:C7:B4:6A:0C:80:7A:E9:46:A1:31:16:55:6E:BA:33:77:38:D8:24
Certificate issuer: /CN=6b0ecdbf51360cecae617abe1a3ac6a6ff0a5b6c
Certificate serial: 018D59559DF540965C46764080F5AB4D8CA4
Authority key identifier: 6B:0E:CD:BF:51:36:0C:EC:AE:61:7A:BE:1A:3A:C6:A6:FF:0A:5B:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/bce0agyAeulGoTEWVW66M3c42CQ.roa
Signing time: Tue 30 Jan 2024 07:46:39 +0000
ROA not before: Tue 30 Jan 2024 07:46:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50464
IP address blocks: 195.191.76.0/23 maxlen: 24
195.191.76.196/32 maxlen: 32
195.191.76.210/32 maxlen: 32
195.191.77.99/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:59:55:9d:f5:40:96:5c:46:76:40:80:f5:ab:4d:8c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b0ecdbf51360cecae617abe1a3ac6a6ff0a5b6c
Validity
Not Before: Jan 30 07:46:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6dc7b46a0c807ae946a13116556eba337738d824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:7c:76:2c:94:19:0b:7f:10:ad:46:ee:6e:e6:
00:f6:b9:d1:3d:3a:60:d7:84:c3:ad:9a:ce:29:9b:
de:b3:a4:54:da:08:c3:79:d2:c3:b5:b6:bd:af:66:
22:23:83:9d:94:c1:23:fe:65:d4:bb:51:fa:27:7b:
a2:41:6c:52:dc:d7:83:1f:ad:38:33:d2:d6:84:25:
cd:2b:61:cb:2d:e9:db:b0:f2:45:61:da:a5:1c:a1:
e9:6f:1e:31:59:7d:3b:c2:36:f0:3c:01:f7:47:cb:
69:46:68:3a:4f:1a:71:99:0d:78:cf:7b:f4:9e:81:
47:dd:ee:e6:96:a1:b1:e0:27:72:5d:94:5b:0d:83:
a4:6e:d3:23:7c:e9:10:49:00:36:2c:97:6a:8e:ad:
57:f4:db:9e:6b:ee:e2:c3:37:44:66:2e:cd:06:aa:
dd:35:00:a0:6b:2c:4f:ea:60:a8:ff:e6:5e:fb:25:
ac:ff:68:ed:21:44:10:88:b4:1b:7c:f8:43:f3:38:
1c:cc:1f:ce:92:94:8e:44:28:50:20:a4:df:d8:b1:
9d:71:1b:f4:6f:d6:fe:37:6d:c4:a9:9c:2b:92:33:
d2:7d:ce:14:68:24:87:1c:63:a6:31:50:28:80:d6:
93:1e:b6:8f:96:ea:1c:c9:e4:bd:53:ff:03:ef:33:
6d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C7:B4:6A:0C:80:7A:E9:46:A1:31:16:55:6E:BA:33:77:38:D8:24
X509v3 Authority Key Identifier:
keyid:6B:0E:CD:BF:51:36:0C:EC:AE:61:7A:BE:1A:3A:C6:A6:FF:0A:5B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/bce0agyAeulGoTEWVW66M3c42CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.76.0/23
Signature Algorithm: sha256WithRSAEncryption
06:8a:34:ce:ed:9b:af:17:45:1e:59:e5:7b:19:91:40:2d:41:
a1:cb:19:fb:c4:75:4e:58:94:76:b7:42:51:b1:74:fa:13:4a:
25:57:35:0c:2c:94:1f:4c:b5:ba:05:21:cb:7c:66:4c:d0:74:
7b:96:39:bf:85:5c:24:8f:eb:26:0f:04:82:95:54:a8:17:a3:
42:7c:cd:5c:d9:3b:03:f7:d3:b1:44:15:6c:1f:31:84:6c:e9:
2f:1f:70:de:38:67:1b:c8:0d:c4:8c:b3:f0:08:58:c9:bf:bc:
cb:22:4f:b1:67:59:ea:ae:1f:0f:3c:5d:e1:61:dc:15:2c:6d:
d0:81:93:04:76:ae:ea:3c:be:57:ab:a0:24:71:02:c5:2d:59:
02:b6:92:10:03:c3:5e:36:ca:20:66:b6:29:cc:9b:d8:9c:86:
97:b0:4a:4c:4f:94:cc:aa:8a:7b:49:39:2d:f1:98:1b:bb:83:
0d:24:a2:a1:30:3f:1e:d5:32:f2:ad:7a:41:93:33:22:cb:1e:
e5:59:a1:90:69:9f:61:09:f5:a2:49:23:cd:6d:42:81:29:f5:
29:63:e7:74:9d:59:41:16:ec:89:88:d9:0f:ee:14:48:4c:7a:
a6:ca:a5:5e:9a:c8:f2:01:5c:f7:15:7c:de:1b:d8:db:36:a1:
eb:55:05:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 04:19:29 2024 by rpki-client on console-ams.rpki-client.org