Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6wmRUTi7A6yB3zMKKwCNvTPbjjY.roa
File: 6wmRUTi7A6yB3zMKKwCNvTPbjjY.roa (raw, json)
Hash identifier: 6fzquh3VmgLz7r418i/mGTfmbYZsCwlPYjrgXFY6lIw=
Subject key identifier: EB:09:91:51:38:BB:03:AC:81:DF:33:0A:2B:00:8D:BD:33:DB:8E:36
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC802ED3CB1829B30733313EDDBD514E2
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6wmRUTi7A6yB3zMKKwCNvTPbjjY.roa
Signing time: Tue 02 Jan 2024 02:31:24 +0000
ROA not before: Tue 02 Jan 2024 02:31:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43893
IP address blocks: 192.165.66.0/24 maxlen: 24
194.103.221.0/24 maxlen: 24
194.71.224.0/24 maxlen: 24
194.71.161.0/24 maxlen: 24
194.71.162.0/24 maxlen: 24
194.132.80.0/24 maxlen: 24
193.234.52.0/24 maxlen: 24
194.132.82.0/23 maxlen: 23
193.234.53.0/24 maxlen: 24
192.121.13.0/24 maxlen: 24
194.132.30.0/24 maxlen: 24
192.121.62.0/24 maxlen: 24
192.71.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:ed:3c:b1:82:9b:30:73:33:13:ed:db:d5:14:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb09915138bb03ac81df330a2b008dbd33db8e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ad:b1:4d:6d:a4:2e:eb:d9:6d:1b:33:0a:c7:
8a:b9:c2:50:34:5d:7e:65:b2:38:bc:94:5e:cb:f4:
a8:a0:01:bd:74:63:ea:96:04:c1:d6:89:d2:24:e7:
1d:07:a9:49:89:d0:2d:dc:88:be:62:85:9c:e5:5b:
7e:88:5b:87:b6:ea:34:19:ab:69:09:58:14:39:30:
e1:c4:83:f5:aa:98:ce:c9:eb:0a:a4:83:56:fd:d8:
02:dc:f9:39:05:12:8f:fc:9d:ff:1d:34:52:62:a4:
0e:04:85:1c:59:b2:81:99:a2:b8:8e:04:bd:51:a2:
bc:0c:24:e9:76:5a:a5:3c:94:14:7e:32:94:87:53:
dd:b2:b0:4a:ce:60:94:ac:86:34:cf:c7:6f:55:94:
ac:99:6f:d3:7e:eb:f6:ec:83:86:9e:f9:b7:7e:23:
47:9b:d1:84:26:36:5d:ce:7b:5c:1e:e5:fa:34:e3:
1e:16:d4:85:f8:ca:4e:bd:a3:68:d0:fb:93:8a:26:
74:dd:48:8c:2f:31:34:b3:c0:01:27:fe:3d:91:ce:
02:65:2c:97:38:f6:0c:df:5c:fc:c2:b4:89:f6:fc:
23:be:cf:91:67:8e:5c:cb:46:06:3b:69:99:3a:01:
07:32:72:ab:6d:ed:41:fb:30:7b:fa:3a:28:7a:f2:
09:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:09:91:51:38:BB:03:AC:81:DF:33:0A:2B:00:8D:BD:33:DB:8E:36
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6wmRUTi7A6yB3zMKKwCNvTPbjjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.58.0/24
192.121.13.0/24
192.121.62.0/24
192.165.66.0/24
193.234.52.0/23
194.71.161.0-194.71.162.255
194.71.224.0/24
194.103.221.0/24
194.132.30.0/24
194.132.80.0/24
194.132.82.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:17:78:09:8b:28:1b:b1:d8:0e:ec:f1:b7:ec:e7:47:86:41:
5f:71:a1:8e:eb:e4:2d:b3:3e:53:20:8e:f5:ab:6a:81:63:b7:
fd:4f:d8:94:1c:08:72:51:d2:f0:de:da:45:72:45:9e:b5:45:
af:a2:11:4e:6c:30:e7:6c:62:07:b4:c2:bd:15:8e:12:c1:17:
db:15:20:26:df:87:2c:15:5d:74:c0:52:69:75:1a:53:10:c6:
c3:f0:85:7d:52:6d:ae:1e:20:e5:93:71:8c:cf:8e:8b:d3:9d:
2f:55:13:e5:6b:d4:90:ce:e5:0b:5a:5f:01:f5:66:77:da:fe:
99:4a:08:c9:16:17:88:3a:b6:99:8d:1e:16:a9:f2:75:f8:c2:
38:cf:9d:c2:b2:b2:9c:9d:da:e9:b6:a8:d6:4b:36:5c:33:66:
c8:e4:5e:88:df:8b:0f:73:69:25:94:e7:52:95:25:41:5f:be:
39:dd:66:e5:f5:37:18:d5:04:f0:80:19:d6:7a:25:f7:25:56:
e5:67:9d:b4:9f:17:31:f3:5d:b3:69:8c:24:20:cb:6f:ce:91:
12:fb:94:51:f0:c7:a9:c9:c4:bb:6e:13:ae:f4:13:20:63:05:
5d:80:53:bb:fa:30:e3:c5:e7:1f:fe:e2:eb:c8:8b:9c:4a:cd:
79:01:20:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:04:53 2024 by rpki-client on console-ams.rpki-client.org