Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/om30UBsymlQoTNJt7gUfxjFfMlE.roa
File: om30UBsymlQoTNJt7gUfxjFfMlE.roa (raw, json)
Hash identifier: 2Wpn16I36PvXTZ3YR5mggC62+TNBf+aCTb6Jkga8U2Q=
Subject key identifier: A2:6D:F4:50:1B:32:9A:54:28:4C:D2:6D:EE:05:1F:C6:31:5F:32:51
Certificate issuer: /CN=d2c81b1d028f2af61ea9b422679a5f8de90572e7
Certificate serial: 018CC8DF33A7193B3AE99BACD9F1BA24E061
Authority key identifier: D2:C8:1B:1D:02:8F:2A:F6:1E:A9:B4:22:67:9A:5F:8D:E9:05:72:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0sgbHQKPKvYeqbQiZ5pfjekFcuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/om30UBsymlQoTNJt7gUfxjFfMlE.roa
Signing time: Tue 02 Jan 2024 06:32:00 +0000
ROA not before: Tue 02 Jan 2024 06:32:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206652
IP address blocks: 185.180.36.0/24 maxlen: 24
185.180.36.0/23 maxlen: 23
185.180.36.0/22 maxlen: 22
185.180.38.0/24 maxlen: 24
185.180.37.0/24 maxlen: 24
2a0a:d180::/29 maxlen: 29
2a0a:d180:b00::/40 maxlen: 40
2a0a:d180:300::/40 maxlen: 40
2a0a:d180:100::/40 maxlen: 40
2a0a:d180:600::/40 maxlen: 40
2a0a:d180:900::/40 maxlen: 40
2a0a:d180:c00::/40 maxlen: 40
2a0a:d180:700::/40 maxlen: 40
2a0a:d180:a00::/40 maxlen: 40
2a0a:d180:e00::/40 maxlen: 40
2a0a:d180::/40 maxlen: 40
2a0a:d180:d00::/40 maxlen: 40
2a0a:d180:200::/40 maxlen: 40
2a0a:d180:500::/40 maxlen: 40
2a0a:d180:800::/40 maxlen: 40
2a0a:d180:400::/40 maxlen: 40
2a0a:d180:f00::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/0sgbHQKPKvYeqbQiZ5pfjekFcuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/0sgbHQKPKvYeqbQiZ5pfjekFcuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0sgbHQKPKvYeqbQiZ5pfjekFcuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 14:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:33:a7:19:3b:3a:e9:9b:ac:d9:f1:ba:24:e0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2c81b1d028f2af61ea9b422679a5f8de90572e7
Validity
Not Before: Jan 2 06:32:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a26df4501b329a54284cd26dee051fc6315f3251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:34:fa:d8:d5:0a:61:e2:40:5f:74:25:a9:01:
72:75:26:c4:d3:d8:cb:19:f0:49:e4:60:b5:46:1b:
3f:05:1a:e0:a2:c3:57:ce:9c:50:43:e4:cc:3d:35:
8f:b6:b7:52:11:c7:08:92:dc:0a:e9:ba:8f:e1:57:
0e:8a:9d:e8:52:f8:75:aa:bb:9b:18:24:16:b2:f6:
83:b7:55:17:06:e5:1b:61:14:de:fb:ad:00:32:9a:
a5:0f:e6:48:95:41:a1:c8:ff:c9:41:4f:44:5d:d4:
0d:9a:ad:b6:29:c9:14:b4:32:1b:c5:1a:a3:87:8c:
88:c2:cd:12:12:23:3a:b8:f8:98:92:fb:df:d6:a1:
af:4e:c6:4b:28:99:b9:9e:15:e7:60:8a:86:ba:35:
4b:a3:5f:6f:7a:42:83:10:40:25:e9:6f:89:bd:28:
14:23:52:42:82:8d:6b:7a:a1:25:2f:50:c1:30:24:
ca:bd:29:1d:e6:a5:3a:30:90:18:8d:a6:a1:2d:66:
99:95:19:f2:b4:3b:ec:3a:be:98:80:c5:d5:97:80:
1f:d5:ef:22:93:bb:f0:a5:52:05:97:f6:a6:98:ce:
10:69:18:92:4d:29:7d:e0:13:c1:3a:59:55:1e:41:
67:64:01:fc:48:05:a1:d1:e6:5d:34:9e:1d:f7:a6:
d0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6D:F4:50:1B:32:9A:54:28:4C:D2:6D:EE:05:1F:C6:31:5F:32:51
X509v3 Authority Key Identifier:
keyid:D2:C8:1B:1D:02:8F:2A:F6:1E:A9:B4:22:67:9A:5F:8D:E9:05:72:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0sgbHQKPKvYeqbQiZ5pfjekFcuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/om30UBsymlQoTNJt7gUfxjFfMlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/0sgbHQKPKvYeqbQiZ5pfjekFcuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.36.0/22
IPv6:
2a0a:d180::/29
Signature Algorithm: sha256WithRSAEncryption
6f:dc:d5:c4:92:85:8a:fe:e1:69:39:49:ca:c8:4a:3e:5c:c4:
b4:99:ce:45:b7:d8:36:8d:b3:f4:15:cc:6d:57:fb:34:d5:84:
b7:cf:97:92:55:df:12:55:70:88:ca:3e:fb:6a:b6:69:b6:76:
f3:ce:ab:22:f9:48:d8:cf:1e:f6:71:f2:b8:39:df:dc:8b:63:
02:68:ba:1f:69:ed:f1:c4:66:0b:88:d4:fb:77:28:f0:9e:6e:
70:02:18:21:7f:e6:dd:83:64:75:ce:71:5b:d2:a9:71:01:80:
33:c4:ef:7e:99:3a:ad:c7:50:73:33:0f:75:d9:46:8b:5f:a9:
c9:9c:f9:93:c1:98:e1:a5:8d:1f:60:44:59:0b:d8:52:1f:21:
c5:28:0c:8a:25:70:a5:bf:70:c7:7e:9d:39:68:03:f5:68:3a:
5e:c1:9a:81:18:41:29:79:3e:a2:39:a8:98:d5:89:12:93:8f:
70:78:d5:92:bc:0d:fd:92:38:50:e1:9b:68:2e:6f:7a:37:4c:
f4:69:c7:63:41:ff:27:89:44:76:97:3d:6e:c2:6f:92:8f:14:
f9:d9:86:22:41:40:d1:a1:76:45:80:5b:ec:45:eb:1f:bf:01:
66:ca:68:e8:b2:71:83:e5:83:41:96:46:41:2b:12:be:8b:e9:
3f:c7:7b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 22:41:48 2024 by rpki-client on console-fra.rpki-client.org