Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/6gQUnw9Nwc6LgejRX0Cbu7z5VSA.roa
File: 6gQUnw9Nwc6LgejRX0Cbu7z5VSA.roa (raw, json)
Hash identifier: ju/9lA2wiWNIIExNHpblTstEjLiddCuI3GywoLVPfTo=
Subject key identifier: EA:04:14:9F:0F:4D:C1:CE:8B:81:E8:D1:5F:40:9B:BB:BC:F9:55:20
Certificate issuer: /CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Certificate serial: 018F78367460C47D607F34942E22B0A68A2D
Authority key identifier: B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/6gQUnw9Nwc6LgejRX0Cbu7z5VSA.roa
Signing time: Tue 14 May 2024 17:46:25 +0000
ROA not before: Tue 14 May 2024 17:46:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 185.91.127.0/24 maxlen: 24
2a12:de40::/29 maxlen: 29
2a12:de40::/32 maxlen: 32
2a12:de40:42::/48 maxlen: 48
2a12:de43::/32 maxlen: 32
2a12:de44::/32 maxlen: 32
2a12:de45::/32 maxlen: 32
2a12:de46::/32 maxlen: 32
2a12:de47::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:78:36:74:60:c4:7d:60:7f:34:94:2e:22:b0:a6:8a:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Validity
Not Before: May 14 17:46:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea04149f0f4dc1ce8b81e8d15f409bbbbcf95520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:7e:ce:4c:62:a8:0a:8a:b2:68:39:46:05:dc:
87:fd:bb:46:cc:27:de:d1:7d:6b:67:d6:07:10:53:
ce:90:44:49:4c:9b:99:f1:5b:d3:59:ab:78:61:af:
02:4b:69:a4:38:18:4e:8b:29:86:db:4a:22:35:62:
0f:42:ac:7b:1b:5a:32:f5:c3:54:09:5b:0f:4a:33:
da:f1:66:ff:2a:ba:7d:a9:51:c1:f7:3d:87:8f:4b:
38:4a:f9:4f:70:84:d7:f7:01:cc:63:10:fc:bf:42:
f6:76:5f:f6:5c:f0:3e:8a:3a:b9:52:5e:21:a7:6a:
13:20:47:56:bb:fd:4f:78:ee:7b:02:c3:10:0e:22:
aa:3a:84:5a:ad:42:0b:a9:c8:4f:03:d9:68:53:8d:
92:74:6d:b9:62:7f:2f:63:94:42:3d:be:e2:56:49:
c2:ee:f4:f6:db:2d:9a:40:f7:ef:db:0c:b1:08:1c:
ad:2c:ab:9b:c1:97:38:84:5b:9e:66:cb:5e:32:fe:
e3:fc:d0:3c:78:40:15:38:76:c0:60:ca:18:df:1a:
33:1c:d9:e1:62:b7:b7:96:1e:9e:33:a5:23:a0:f1:
f2:cf:4f:2a:aa:9f:65:08:37:a0:17:e5:c1:da:35:
cf:5d:a0:80:0e:52:54:dc:31:67:73:3a:11:fd:0b:
dc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:04:14:9F:0F:4D:C1:CE:8B:81:E8:D1:5F:40:9B:BB:BC:F9:55:20
X509v3 Authority Key Identifier:
keyid:B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/6gQUnw9Nwc6LgejRX0Cbu7z5VSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.127.0/24
IPv6:
2a12:de40::/29
Signature Algorithm: sha256WithRSAEncryption
1b:cc:2f:74:1a:7e:5b:3f:3e:02:ff:72:e0:43:16:74:44:33:
25:8a:68:24:70:44:0c:3d:63:73:89:38:e8:a0:26:36:71:65:
ff:a8:ef:3b:05:60:75:e8:ca:dc:23:b8:1d:3c:72:cc:60:f5:
d1:41:0b:ac:52:d0:10:d5:a3:7a:18:40:13:ac:22:c2:d7:52:
2c:58:b7:32:ba:9e:a2:db:42:fc:13:61:ce:48:7f:e2:23:9a:
5a:a9:70:69:9c:20:7b:7a:a3:f2:b7:d4:d0:24:b1:87:50:3a:
b5:fa:8c:50:5f:cc:9d:02:9d:77:9c:9f:59:fa:9a:e5:f6:a8:
76:6a:f8:fc:18:cf:4a:97:14:27:88:b2:cd:c5:fe:8a:cb:7c:
ae:b0:6a:9c:fe:84:a3:36:01:c5:70:bf:ff:23:84:65:92:c4:
6c:ae:03:dd:4f:d5:cb:0c:02:68:a5:bc:16:44:0a:f2:3f:3b:
73:d8:38:55:57:fc:26:49:e5:17:28:4e:50:ed:2f:7e:6a:a9:
9d:46:95:c7:3c:47:11:37:df:a4:c6:7d:be:1b:a2:75:89:b6:
20:69:84:b9:39:0a:c9:2a:d7:03:34:87:a5:9c:be:4c:65:5e:
df:1f:3e:4d:97:a9:90:60:0f:e8:23:d5:ac:92:b5:a2:9f:bf:
49:96:24:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:35:11 2024 by rpki-client on console-ams.rpki-client.org