Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Drst6AfQQkVxVfsYP-JUbMCjiP4.roa
File: Drst6AfQQkVxVfsYP-JUbMCjiP4.roa (raw, json)
Hash identifier: jCBJkhToc7POHuRMk5Z9BTSIGj6zm40ONQ/gN66rgYI=
Subject key identifier: 0E:BB:2D:E8:07:D0:42:45:71:55:FB:18:3F:E2:54:6C:C0:A3:88:FE
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0190B64FFF6A62ACDC56566510176AE45C3A
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Drst6AfQQkVxVfsYP-JUbMCjiP4.roa
Signing time: Mon 15 Jul 2024 12:13:34 +0000
ROA not before: Mon 15 Jul 2024 12:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6461
IP address blocks: 46.232.4.0/23 maxlen: 24
149.126.195.0/24 maxlen: 24
149.126.198.0/24 maxlen: 24
149.126.201.0/24 maxlen: 24
149.126.202.0/24 maxlen: 24
149.126.204.0/24 maxlen: 24
149.126.205.0/24 maxlen: 24
149.126.208.0/24 maxlen: 24
149.126.210.0/24 maxlen: 24
149.126.214.0/24 maxlen: 24
149.126.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b6:4f:ff:6a:62:ac:dc:56:56:65:10:17:6a:e4:5c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jul 15 12:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ebb2de807d042457155fb183fe2546cc0a388fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5c:24:eb:7c:8b:32:03:c8:24:18:a0:cf:c7:
6a:b3:cc:ad:62:f3:fc:81:b5:33:ea:80:61:de:39:
eb:4e:08:e5:63:b5:ad:27:48:53:22:09:e2:91:b8:
e6:20:9b:14:bf:8c:e0:79:cc:64:a0:b4:d2:71:6e:
4d:58:d1:e1:98:ec:f9:1a:10:c6:f6:3e:6d:1a:2a:
a9:27:f5:73:3a:df:58:95:c0:1b:5a:3c:90:8b:82:
ec:3e:36:15:97:b9:f2:73:7e:3d:80:56:60:17:09:
ca:06:89:84:65:70:10:ca:52:09:a9:b5:97:a6:d8:
bf:c7:bf:e6:1e:b7:14:33:66:e8:2a:68:13:da:3f:
59:d8:45:21:b6:99:92:b8:b8:25:81:ff:7a:ba:dd:
62:39:6c:97:de:48:3d:a0:91:6f:1a:bc:2f:ca:46:
19:85:53:f7:8b:e6:d3:24:9e:ac:e8:7b:d1:f6:87:
6f:61:1e:c5:a8:e9:89:92:30:fa:00:9b:b7:9d:c9:
c7:c8:40:5a:43:5f:49:87:16:a4:5c:a3:c4:02:3c:
ce:f0:54:48:ce:4c:df:75:8a:92:1f:c2:ff:2f:fc:
fe:c5:80:f8:57:91:af:24:b0:48:49:f9:14:40:90:
81:c7:4f:8d:e6:f8:24:21:33:ee:4a:90:45:14:35:
48:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BB:2D:E8:07:D0:42:45:71:55:FB:18:3F:E2:54:6C:C0:A3:88:FE
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Drst6AfQQkVxVfsYP-JUbMCjiP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.4.0/23
149.126.195.0/24
149.126.198.0/24
149.126.201.0-149.126.202.255
149.126.204.0/23
149.126.208.0/24
149.126.210.0/24
149.126.214.0/24
149.126.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:93:aa:75:5c:94:da:52:2e:b6:70:21:1f:3d:c4:c2:e6:b8:
4a:37:aa:41:75:2e:2e:b4:1c:42:38:a6:51:9e:1c:e6:de:eb:
78:3f:5c:f9:88:e2:84:b4:5a:30:e5:c0:df:d7:f0:cc:7d:e5:
5c:26:6f:48:1a:96:5f:b0:78:d2:39:2a:ca:24:0b:96:a9:ed:
1e:61:ec:2c:b5:d4:41:42:ba:d4:32:b2:c7:2d:06:c4:f3:2c:
40:19:16:9b:47:f1:24:f8:99:76:27:e3:3d:ba:2a:d8:7b:b8:
7a:ef:bd:40:ff:5a:26:46:9d:85:10:e4:e3:86:96:57:37:3f:
36:22:46:27:f5:b7:ac:11:20:c8:6c:11:87:bb:04:bb:dd:dd:
0f:f5:94:02:26:6d:74:b9:67:a3:12:b5:24:45:a3:06:2b:d5:
2c:b9:83:81:9c:b8:03:dc:92:3d:42:51:18:03:56:92:4a:08:
9e:86:86:45:20:f3:da:ce:ac:10:92:fd:a8:fb:8f:e2:62:73:
5b:ff:90:78:37:3a:23:ee:27:f0:6e:40:82:3e:ea:ae:40:26:
b5:8c:65:ae:37:99:5c:f6:84:3f:74:99:80:e1:cc:7f:80:29:
8f:51:e5:22:e8:8a:f1:f7:0d:2f:1a:e6:3a:8e:3c:a7:98:66:
72:57:e7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:08:43 2024 by rpki-client on console-fra.rpki-client.org