Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b182bc-bc32-4e2f-bad7-ca51fb408901/1/6ohYNiAZv-l138NdgfBrOR_26bY.roa
File: 6ohYNiAZv-l138NdgfBrOR_26bY.roa (raw, json)
Hash identifier: pVVWoxXNAUafgTmVxWaRNZL13SsvhM7TWj5ZVkM5U+U=
Subject key identifier: EA:88:58:36:20:19:BF:E9:75:DF:C3:5D:81:F0:6B:39:1F:F6:E9:B6
Certificate issuer: /CN=2078baee6b6ec5425a16b1fc00c52c30ed95a3f0
Certificate serial: 018CC8DE09270EBB5777F999CEC44E7390BD
Authority key identifier: 20:78:BA:EE:6B:6E:C5:42:5A:16:B1:FC:00:C5:2C:30:ED:95:A3:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHi67mtuxUJaFrH8AMUsMO2Vo_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b182bc-bc32-4e2f-bad7-ca51fb408901/1/6ohYNiAZv-l138NdgfBrOR_26bY.roa
Signing time: Tue 02 Jan 2024 06:30:43 +0000
ROA not before: Tue 02 Jan 2024 06:30:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208290
IP address blocks: 45.148.209.0/24 maxlen: 24
45.148.210.0/24 maxlen: 24
45.148.211.0/24 maxlen: 24
45.148.208.0/24 maxlen: 24
2a10:9f00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/b182bc-bc32-4e2f-bad7-ca51fb408901/1/IHi67mtuxUJaFrH8AMUsMO2Vo_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/b182bc-bc32-4e2f-bad7-ca51fb408901/1/IHi67mtuxUJaFrH8AMUsMO2Vo_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHi67mtuxUJaFrH8AMUsMO2Vo_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:09:27:0e:bb:57:77:f9:99:ce:c4:4e:73:90:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2078baee6b6ec5425a16b1fc00c52c30ed95a3f0
Validity
Not Before: Jan 2 06:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea8858362019bfe975dfc35d81f06b391ff6e9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fd:fe:09:dd:df:d4:61:37:e8:43:9e:5f:e9:
a1:e5:5b:51:60:e3:1b:39:86:22:d6:8d:42:e9:bc:
2d:9c:fe:3a:96:96:49:18:45:ac:42:9c:d4:ba:62:
c3:11:bc:6d:c6:d2:bd:c6:78:b2:f5:21:5f:56:36:
0b:d8:0d:37:3c:db:5f:b8:19:f1:04:e0:cb:4b:58:
5e:f1:01:cd:4f:c5:bf:53:fa:43:29:37:b2:b2:bb:
96:70:eb:76:13:0c:2c:e6:01:02:ec:76:40:70:2c:
68:c3:82:1a:0a:ce:1e:26:e0:d0:a2:73:cc:17:30:
c6:1f:55:fe:b7:e3:b4:2b:01:b7:f0:8b:42:e2:0f:
77:68:a4:06:9e:4c:e7:50:cb:b2:2e:64:7a:03:fe:
07:5b:5f:95:e0:52:07:e3:76:b1:34:3d:ca:4c:3e:
fd:43:bd:bb:c0:60:8e:91:89:e2:ac:8d:b0:55:2c:
bb:e8:30:49:f1:33:b9:9c:af:7a:d6:74:6e:ec:7c:
a0:6c:52:a8:6a:93:8c:6d:32:07:0f:5b:02:70:d5:
6c:08:76:c1:46:cd:e9:4c:c9:7d:99:c0:53:52:24:
3c:37:fa:cf:34:c4:78:5f:4e:90:3a:14:d7:c2:ff:
d1:b4:a8:fe:5b:4c:d1:49:3a:c5:d7:a3:8b:b7:01:
1e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:88:58:36:20:19:BF:E9:75:DF:C3:5D:81:F0:6B:39:1F:F6:E9:B6
X509v3 Authority Key Identifier:
keyid:20:78:BA:EE:6B:6E:C5:42:5A:16:B1:FC:00:C5:2C:30:ED:95:A3:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHi67mtuxUJaFrH8AMUsMO2Vo_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b182bc-bc32-4e2f-bad7-ca51fb408901/1/6ohYNiAZv-l138NdgfBrOR_26bY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b182bc-bc32-4e2f-bad7-ca51fb408901/1/IHi67mtuxUJaFrH8AMUsMO2Vo_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.208.0/22
IPv6:
2a10:9f00::/29
Signature Algorithm: sha256WithRSAEncryption
53:09:52:b4:4c:a5:33:2d:19:13:e1:a5:52:e2:ea:38:de:b8:
86:93:c7:1b:59:09:3c:dc:68:fb:14:cf:cf:8a:a7:10:cc:24:
72:71:f9:73:b3:09:45:97:e1:e7:3b:7b:35:c6:72:37:2a:30:
50:48:9b:65:30:e8:b9:99:d3:21:94:08:b1:84:0c:ca:c8:f6:
5c:8f:a9:c3:d1:fb:5e:c5:aa:49:7e:ae:81:14:4e:1e:24:48:
60:54:20:3f:7c:b9:2c:51:29:fc:d8:07:83:c4:2c:9a:e6:a8:
31:9f:d4:a9:fd:96:d3:22:7a:e6:00:65:80:a1:37:55:04:91:
57:38:9b:6c:64:63:0f:03:3c:75:a9:ec:b2:85:c6:18:f2:87:
91:a7:da:de:ce:1e:34:b2:e4:b4:43:93:33:0c:f5:a7:e1:38:
74:9b:9c:6f:a6:21:ab:bb:ea:15:0e:e4:58:26:a3:36:bc:ee:
b4:cb:c9:d4:a1:ec:5b:38:9c:2c:7a:60:d4:6b:a7:15:2f:25:
13:77:e3:03:06:2f:8b:c8:bc:28:f0:dd:ba:e0:fa:3d:85:12:
68:15:c7:d0:6f:f0:70:0a:00:ed:18:8c:9a:7e:6a:b1:8d:b8:
d7:52:fb:ea:ef:f7:d9:58:de:6a:7c:e4:41:46:eb:fe:5f:4d:
69:14:c9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:09:11 2024 by rpki-client on console-fra.rpki-client.org