Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/aobLXTmPd_6Ukp1ManNdqX-3DQA.roa
File: aobLXTmPd_6Ukp1ManNdqX-3DQA.roa (raw, json)
Hash identifier: pfQSQLiXOyjEu0hp6NuVLx8Gd5m02zdqAnm2pyHFZ88=
Subject key identifier: 6A:86:CB:5D:39:8F:77:FE:94:92:9D:4C:6A:73:5D:A9:7F:B7:0D:00
Certificate issuer: /CN=079d9053717a16a76c10ae838f5625055be0481f
Certificate serial: 0194258ECC213722A97FF6A8F865BC67CED1
Authority key identifier: 07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/aobLXTmPd_6Ukp1ManNdqX-3DQA.roa
Signing time: Thu 02 Jan 2025 05:48:22 +0000
ROA not before: Thu 02 Jan 2025 05:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50941
IP address blocks: 178.18.192.0/24 maxlen: 24
178.18.193.0/24 maxlen: 24
178.18.195.0/24 maxlen: 24
178.18.196.0/24 maxlen: 24
178.18.197.0/24 maxlen: 24
178.18.198.0/24 maxlen: 24
178.18.199.0/24 maxlen: 24
178.18.200.0/24 maxlen: 24
178.18.201.0/24 maxlen: 24
178.18.203.0/24 maxlen: 24
178.18.204.0/24 maxlen: 24
178.18.205.0/24 maxlen: 24
178.18.206.0/24 maxlen: 24
178.18.207.0/24 maxlen: 24
185.21.6.0/24 maxlen: 24
185.21.7.0/24 maxlen: 24
185.88.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 05:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:cc:21:37:22:a9:7f:f6:a8:f8:65:bc:67:ce:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=079d9053717a16a76c10ae838f5625055be0481f
Validity
Not Before: Jan 2 05:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6a86cb5d398f77fe94929d4c6a735da97fb70d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7d:d8:59:30:81:48:a5:91:d7:7a:4b:34:13:
0e:4a:86:64:d7:b7:6f:12:87:f1:63:b0:7e:cb:97:
a0:28:97:20:8d:b7:a7:a3:d5:aa:71:f5:34:6a:91:
d6:49:ce:62:4f:fc:25:57:a1:62:5a:cd:01:08:64:
83:fc:c0:f9:57:03:0d:f7:5b:0d:40:1f:eb:db:f2:
ea:66:3d:89:d3:18:c2:dc:14:4c:b8:fb:99:87:fd:
0a:65:54:24:eb:b7:50:3b:b9:68:ac:66:52:93:86:
ab:36:10:82:36:8b:46:cd:8e:79:eb:1a:f0:cd:36:
c6:34:bd:99:b5:a7:0b:7e:4d:98:99:82:25:1d:ae:
70:02:e7:78:0a:70:87:34:1e:23:58:a6:70:14:4f:
14:84:ef:52:10:33:cc:c5:5f:cf:ef:82:cf:ea:4c:
5b:73:de:cd:22:16:c7:eb:5a:5b:17:53:48:c0:e6:
67:12:f8:8d:18:46:e9:8d:47:98:c7:fe:5c:ed:28:
59:64:b6:ca:f5:32:e1:fb:99:04:78:40:e5:19:fe:
cb:e6:b8:ca:76:bf:3c:08:8e:aa:cf:c2:86:1e:ba:
99:4a:58:e0:59:ec:6d:bd:44:3c:b6:88:97:5a:2a:
90:83:1c:57:3e:f4:f5:63:10:c9:77:95:0a:4d:2a:
3e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:86:CB:5D:39:8F:77:FE:94:92:9D:4C:6A:73:5D:A9:7F:B7:0D:00
X509v3 Authority Key Identifier:
keyid:07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/aobLXTmPd_6Ukp1ManNdqX-3DQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.192.0/23
178.18.195.0-178.18.201.255
178.18.203.0-178.18.207.255
185.21.6.0/23
185.88.132.0/24
Signature Algorithm: sha256WithRSAEncryption
59:45:df:ff:d6:72:d0:76:59:7a:cd:c6:48:a5:26:f5:20:4d:
7f:3f:b1:3b:45:08:cf:88:de:9d:9b:90:30:21:08:23:69:3c:
eb:00:df:ee:59:21:90:60:29:2a:92:1a:ee:65:0c:0c:29:8e:
e0:b7:1a:78:d7:b0:61:1e:87:a9:50:20:a3:7f:59:13:d7:e2:
b3:f0:f0:57:90:39:e7:2b:d1:34:4f:fa:36:2d:6e:b6:12:b1:
e3:9e:9e:99:89:53:13:3e:b4:59:79:76:53:9c:46:1c:b2:6f:
1b:0f:58:c1:96:a0:1a:b4:10:c0:83:d5:2a:00:b5:7a:d5:dc:
fb:82:c3:75:3e:a8:cd:c2:f4:c0:32:f2:82:97:8d:37:ed:e9:
56:ed:86:ce:43:a9:88:78:62:fa:d3:e7:07:7e:6d:e4:3e:ca:
68:f2:65:fc:c7:0e:56:c3:04:21:00:b1:2d:e0:fc:c0:77:ef:
c9:47:7d:dd:1d:07:10:20:70:6d:93:61:fc:d7:ec:31:0d:b1:
08:4a:b7:76:dc:a6:c4:68:9d:4b:d6:03:24:d9:e8:2d:31:f6:
7d:6d:41:d8:b9:02:2f:a3:d4:aa:62:f7:a4:39:6f:e1:b8:16:
2e:50:34:05:24:91:7d:3a:cd:e2:0d:c4:9d:e3:a6:3d:b6:e0:
62:0f:ce:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:28:23 2025 by rpki-client