Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/oGE-1j_0GnxqNwbw9oIc2C1iNnM.roa
File: oGE-1j_0GnxqNwbw9oIc2C1iNnM.roa (raw, json)
Hash identifier: qHSS3V10m5YUcktzm6QW8yFah9NvI4XfA8vyqvEvzOU=
Subject key identifier: A0:61:3E:D6:3F:F4:1A:7C:6A:37:06:F0:F6:82:1C:D8:2D:62:36:73
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 018CC80157F717719BDF3F75BB97FE862E8A
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/oGE-1j_0GnxqNwbw9oIc2C1iNnM.roa
Signing time: Tue 02 Jan 2024 02:29:40 +0000
ROA not before: Tue 02 Jan 2024 02:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42960
IP address blocks: 185.106.176.0/24 maxlen: 24
2a06:5040:103::/48 maxlen: 48
2a06:5040:101::/48 maxlen: 48
2a06:5040:102::/48 maxlen: 48
2a06:5040:100::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:57:f7:17:71:9b:df:3f:75:bb:97:fe:86:2e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 2 02:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0613ed63ff41a7c6a3706f0f6821cd82d623673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ec:63:ef:96:98:a9:42:a4:ee:57:61:67:d6:
ac:e8:ef:27:44:0e:88:03:cc:7b:f9:ff:f5:27:52:
5d:c6:1e:6d:9d:1c:f6:84:9e:87:c1:c4:b8:7e:e1:
57:3c:f9:db:76:81:b7:53:34:f9:bd:1d:44:3d:84:
80:a2:99:f1:55:1d:d5:84:7e:f6:ae:7c:f2:bd:be:
21:79:d1:aa:f4:bb:ec:6a:6a:d8:52:a6:56:3c:53:
3c:26:48:dd:dd:e6:f0:70:bd:66:67:64:de:9a:58:
d2:b2:cd:18:09:e8:85:f9:fa:ed:88:da:3e:c9:3c:
b2:34:c1:4b:c6:ac:6a:e1:be:02:2a:e2:bb:f3:38:
f1:69:ec:d9:7c:91:84:2f:33:e5:ed:d2:2a:28:dc:
7c:74:4e:98:54:b8:2d:db:aa:78:73:20:b9:02:7c:
73:46:5d:c5:36:05:68:dd:ca:30:04:88:b3:c5:16:
d0:2a:4f:3b:4f:01:ea:88:f9:af:c9:ce:71:e7:a6:
8d:09:60:df:22:9e:a3:f4:30:ac:25:e3:e9:31:09:
e4:4d:d3:3f:f8:dc:d3:71:48:9d:7a:a9:51:f9:93:
d5:49:13:b9:76:ce:2a:2f:79:24:a7:b8:5d:5d:3d:
de:fd:69:c3:af:e2:39:27:ad:78:ae:21:6f:f9:74:
21:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:61:3E:D6:3F:F4:1A:7C:6A:37:06:F0:F6:82:1C:D8:2D:62:36:73
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/oGE-1j_0GnxqNwbw9oIc2C1iNnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.176.0/24
IPv6:
2a06:5040:100::/46
Signature Algorithm: sha256WithRSAEncryption
a8:b2:6e:a8:9f:47:56:39:bd:aa:ba:7f:83:bb:42:45:2e:c7:
66:72:1a:91:bd:ed:a4:b2:f0:c7:d7:a2:73:5a:98:a2:41:32:
41:36:d5:5a:e7:dd:87:06:d9:13:53:78:39:35:3d:57:ad:4f:
7a:b2:28:63:34:a1:8b:34:14:82:bf:e4:a5:ad:d1:f2:a1:55:
5f:75:c9:8d:92:ef:e8:52:ca:96:3e:20:08:d2:36:28:0a:c6:
db:76:74:e2:be:f3:ff:21:ad:c0:1d:11:a2:d2:29:cc:78:86:
24:33:df:82:eb:e7:04:31:a0:83:c0:ce:23:3c:d9:a4:8d:81:
55:fb:25:1b:ce:6a:4d:96:4e:9c:66:d2:c4:2a:be:4c:7c:2c:
be:56:59:91:28:1e:a8:09:96:78:4c:77:2d:fb:9f:c7:a3:a3:
62:2c:fa:40:3c:6a:32:c5:f8:9e:8f:a8:96:18:a5:b0:34:09:
8e:a2:ef:4f:9d:82:d6:aa:26:9c:9e:d0:9a:59:ed:f3:fe:4e:
3a:96:47:92:01:61:06:a4:1b:9f:df:84:ff:80:7a:b5:a1:b1:
68:a9:23:05:d7:26:2b:5b:02:8d:f0:ff:aa:7b:36:f8:fd:41:
6a:eb:8a:01:cc:7a:fe:5f:89:eb:c1:52:34:16:b2:87:b2:8e:
03:27:af:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 22:50:30 2024 by rpki-client on console-ams.rpki-client.org