Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/dlz5XmHCKkQ4Njyw0Ks62QOXSpc.roa
File: dlz5XmHCKkQ4Njyw0Ks62QOXSpc.roa (raw, json)
Hash identifier: 4+2mQ4AD73wDharMMy8akI37ehJ0cztOgWjrfDmzkLE=
Subject key identifier: 76:5C:F9:5E:61:C2:2A:44:38:36:3C:B0:D0:AB:3A:D9:03:97:4A:97
Certificate issuer: /CN=335e725cacf83c97f457a56762cf846d643117cd
Certificate serial: 018CC79416E62C5257EBDE09B566167381ED
Authority key identifier: 33:5E:72:5C:AC:F8:3C:97:F4:57:A5:67:62:CF:84:6D:64:31:17:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M15yXKz4PJf0V6VnYs-EbWQxF80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/dlz5XmHCKkQ4Njyw0Ks62QOXSpc.roa
Signing time: Tue 02 Jan 2024 00:30:20 +0000
ROA not before: Tue 02 Jan 2024 00:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42612
IP address blocks: 46.231.120.0/21 maxlen: 24
46.231.120.0/24 maxlen: 24
82.98.128.0/18 maxlen: 24
185.192.220.0/22 maxlen: 24
2a02:be8::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/M15yXKz4PJf0V6VnYs-EbWQxF80.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/M15yXKz4PJf0V6VnYs-EbWQxF80.mft
rsync://rpki.ripe.net/repository/DEFAULT/M15yXKz4PJf0V6VnYs-EbWQxF80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:16:e6:2c:52:57:eb:de:09:b5:66:16:73:81:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335e725cacf83c97f457a56762cf846d643117cd
Validity
Not Before: Jan 2 00:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=765cf95e61c22a4438363cb0d0ab3ad903974a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6e:0e:78:85:71:db:99:23:23:aa:ce:e3:1a:
dd:a0:09:a2:33:17:03:24:0f:37:c0:cc:64:37:6f:
d2:18:6d:98:6d:d0:83:50:4a:d6:7a:f8:0d:28:74:
3c:f2:dd:a7:7a:eb:d1:cf:02:6e:29:6c:06:c9:1c:
51:c0:f6:c8:f1:5d:47:b4:03:b8:2c:9b:c8:af:ac:
5f:7a:ee:9f:25:0b:30:f2:c5:3e:e1:db:c3:e1:1e:
22:51:df:81:95:a0:4c:ee:b3:6a:b0:32:91:53:ee:
0e:30:86:da:c9:af:0b:2a:f6:d6:ca:af:a5:46:3b:
ae:b3:31:32:a8:00:71:90:8f:80:dd:e4:0c:f7:24:
12:eb:91:4b:e7:40:7c:de:26:57:e4:0f:72:99:2f:
25:52:ca:29:ce:ef:e2:f9:df:13:43:08:68:86:0b:
15:8e:0d:fd:75:db:9d:35:0a:69:71:33:84:2a:a9:
5b:20:10:a9:fb:56:4c:ee:88:8f:3e:8c:d7:f4:ea:
7a:ca:d2:fa:76:ed:e6:13:43:58:0b:48:43:ac:ef:
53:f1:76:09:89:67:44:6a:6a:b6:9c:cd:72:a9:2f:
f7:9f:99:53:ef:6a:53:77:f5:eb:4c:26:ab:01:61:
9d:64:4f:90:8d:88:d8:5e:21:3d:a4:d6:a1:3d:c8:
01:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5C:F9:5E:61:C2:2A:44:38:36:3C:B0:D0:AB:3A:D9:03:97:4A:97
X509v3 Authority Key Identifier:
keyid:33:5E:72:5C:AC:F8:3C:97:F4:57:A5:67:62:CF:84:6D:64:31:17:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M15yXKz4PJf0V6VnYs-EbWQxF80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/dlz5XmHCKkQ4Njyw0Ks62QOXSpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/M15yXKz4PJf0V6VnYs-EbWQxF80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.120.0/21
82.98.128.0/18
185.192.220.0/22
IPv6:
2a02:be8::/32
Signature Algorithm: sha256WithRSAEncryption
9f:15:6f:ae:58:60:80:c2:53:80:c5:f5:93:7c:95:69:c3:ec:
b9:86:fa:cc:4d:37:69:76:ea:bf:ee:35:64:44:f5:12:16:53:
1d:c8:36:04:fe:d5:7c:1e:0a:ee:af:c0:58:dd:fe:e7:cb:86:
d8:eb:3d:8c:32:e0:db:65:86:3a:1c:c8:8c:9e:a4:a7:be:d3:
d0:09:a7:95:24:4a:34:17:0a:11:dc:b9:16:55:2c:f6:1c:db:
7e:8b:ea:3f:ed:1b:06:d2:00:ef:93:a1:77:ab:e1:ef:9b:3b:
37:3f:cf:f8:a5:f7:41:0a:20:0b:83:73:12:db:6e:1e:07:aa:
72:32:84:67:56:26:81:f7:cc:e6:fc:d5:5e:14:8a:78:e2:f6:
89:bc:34:7d:64:aa:4a:78:77:80:ed:58:3e:98:3b:cf:65:73:
cc:e5:47:18:aa:c3:26:ab:08:18:06:fc:4e:ad:49:da:62:ba:
18:ec:47:11:2f:0b:3a:5a:68:22:9e:09:0f:3a:59:a7:fd:fe:
3e:52:c0:a4:ff:10:6d:c2:0d:d0:2c:b8:1c:e6:4b:bb:19:49:
0e:5f:8f:dc:9d:21:6f:89:a1:46:42:da:d4:37:7c:95:0b:be:
8f:b1:38:3f:69:45:5e:d8:80:05:d5:99:85:54:97:88:ae:7b:
6f:be:35:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 09:31:06 2024 by rpki-client on console-ams.rpki-client.org