Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/OL-RCCb6Urn4ZW0tuTV8760Jlho.roa
File: OL-RCCb6Urn4ZW0tuTV8760Jlho.roa (raw, json)
Hash identifier: h1ZnxkDz1lBV8tdNwH80bTiUq+8LbrfRehYOme7WfZk=
Subject key identifier: 38:BF:91:08:26:FA:52:B9:F8:65:6D:2D:B9:35:7C:EF:AD:09:96:1A
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EE6A3A25184D29BC0D9871687ADDCFE56
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/OL-RCCb6Urn4ZW0tuTV8760Jlho.roa
Signing time: Tue 16 Apr 2024 11:21:07 +0000
ROA not before: Tue 16 Apr 2024 11:21:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201776
IP address blocks: 2.63.144.0/20 maxlen: 20
2.63.176.0/20 maxlen: 20
2.63.224.0/20 maxlen: 20
46.61.150.0/24 maxlen: 24
46.61.245.0/24 maxlen: 24
176.208.74.0/24 maxlen: 24
176.211.120.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 22:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:a3:a2:51:84:d2:9b:c0:d9:87:16:87:ad:dc:fe:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 16 11:21:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38bf910826fa52b9f8656d2db9357cefad09961a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:82:90:66:09:c9:8e:7c:51:a9:56:5b:71:37:
85:e8:f0:c1:73:77:c9:4a:bc:8d:72:3d:7f:eb:01:
e5:10:04:cc:6c:07:f9:7b:aa:21:02:87:8c:0c:45:
e5:2b:7a:44:53:04:c9:0f:43:ab:43:8c:f4:83:a1:
9c:f9:92:de:ff:d9:e1:d6:26:25:12:68:53:0b:e3:
58:09:28:bf:1e:55:e1:82:96:1b:44:1d:c6:11:ca:
d7:aa:99:be:3c:05:ba:1d:4e:07:f3:ab:32:44:a2:
e9:9e:df:64:db:3b:f7:4b:67:05:61:38:5f:44:90:
99:4e:25:63:98:20:2e:41:a8:9d:2d:f3:88:42:89:
28:65:54:92:94:ee:76:87:8a:49:f2:fc:4e:84:79:
6b:d4:af:35:58:56:b3:5d:d1:77:53:4c:67:b3:b4:
3e:9a:5f:55:51:c8:21:d4:27:68:18:5d:bf:62:3f:
ae:21:88:7f:3d:b6:a1:8f:63:7c:66:55:74:6a:62:
3a:73:c2:db:57:40:30:33:81:1a:a5:ed:07:18:6e:
48:58:ce:39:2a:ce:51:80:56:d5:48:97:9f:fc:01:
d7:52:10:88:79:ee:82:c5:aa:30:2a:eb:62:39:2f:
6b:ea:3f:77:64:7b:ca:7e:ea:3d:46:c8:1b:f5:db:
97:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:BF:91:08:26:FA:52:B9:F8:65:6D:2D:B9:35:7C:EF:AD:09:96:1A
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/OL-RCCb6Urn4ZW0tuTV8760Jlho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.63.144.0/20
2.63.176.0/20
2.63.224.0/20
46.61.150.0/24
46.61.245.0/24
176.208.74.0/24
176.211.120.0/22
Signature Algorithm: sha256WithRSAEncryption
90:fb:e2:1e:98:ae:04:18:99:b3:5a:d1:4a:a2:44:cc:e2:ac:
2b:d5:6b:ff:b6:96:df:3a:a2:cb:09:4f:50:28:bb:e9:2b:73:
f8:35:f9:6a:9e:4c:13:df:78:ff:ec:7c:d8:b9:d3:cf:1d:0e:
69:0d:74:a1:5f:ee:96:ef:65:08:1a:d1:8e:a5:a4:a4:4e:77:
8a:05:8c:e1:73:73:08:4b:19:8c:72:06:19:1e:1b:c6:78:05:
ab:72:e1:9f:4f:f5:34:71:30:e1:66:d3:a7:99:62:0c:a2:2e:
f5:ed:56:91:bd:6d:aa:23:82:89:31:76:37:a3:95:66:fd:85:
c8:b6:55:fd:d4:5e:df:18:3f:61:57:12:07:fc:d3:32:9b:45:
25:85:11:dd:f2:76:8b:4d:47:7d:23:36:1a:b6:4c:07:e7:ef:
a2:1b:14:91:db:2f:d0:83:0d:7b:d5:ac:f6:5d:d7:1e:98:24:
54:3d:e0:66:dc:bd:4c:ed:3b:94:de:33:75:cd:c2:63:ba:9e:
84:07:bf:15:47:2d:a5:a7:10:45:d4:f7:8f:1e:4f:07:8e:3e:
48:ad:c1:1c:a4:11:30:ef:aa:83:2f:ca:9e:81:15:ff:ec:8c:
4a:9e:de:8c:87:cb:5b:5b:28:15:be:fc:f9:cb:94:ed:17:97:
94:57:81:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:37:16 2024 by rpki-client on console-ams.rpki-client.org