Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ug6P2aYmMdo27ed9gICKqDNxpxk.roa
File: Ug6P2aYmMdo27ed9gICKqDNxpxk.roa (raw, json)
Hash identifier: WNMC6P6u0p6izNfuBORu2nDQNcYTs8SoP60/WnjjjqE=
Subject key identifier: 52:0E:8F:D9:A6:26:31:DA:36:ED:E7:7D:80:80:8A:A8:33:71:A7:19
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0192091601570D40C7B7346BF4D6E70F5F0B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ug6P2aYmMdo27ed9gICKqDNxpxk.roa
Signing time: Thu 19 Sep 2024 07:01:29 +0000
ROA not before: Thu 19 Sep 2024 07:01:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 2a05:b300::/29 maxlen: 29
2a06:dfc0::/29 maxlen: 29
2a07:a300::/29 maxlen: 29
2a0e:5800::/29 maxlen: 29
2a0f:1740::/29 maxlen: 29
2a0f:17c0::/29 maxlen: 29
2a0f:19c0::/29 maxlen: 29
2a0f:1ac0::/29 maxlen: 29
2a0f:2840::/29 maxlen: 29
2a0f:e740::/29 maxlen: 29
2a10:30c0::/29 maxlen: 29
2a10:33c0::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:6400::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a10:7b00::/29 maxlen: 29
2a11:e580::/29 maxlen: 29
2a11:f040::/29 maxlen: 29
2a12:ba00::/29 maxlen: 29
2a12:d100::/29 maxlen: 29
2a13:200::/29 maxlen: 29
2a13:cc0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 05:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:09:16:01:57:0d:40:c7:b7:34:6b:f4:d6:e7:0f:5f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 19 07:01:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=520e8fd9a62631da36ede77d80808aa83371a719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d3:0f:af:ec:c1:3a:07:97:b8:bd:cb:be:59:
e4:44:dd:c6:b3:ab:56:a9:c5:5f:36:9c:86:bd:17:
e4:1c:00:75:bc:85:f4:7b:7b:83:5a:55:7d:bc:a5:
48:40:eb:9a:38:e4:95:e6:fb:7f:e9:6d:f1:f8:7a:
c7:b6:8f:4b:1e:7c:b5:15:e7:b8:35:8a:0b:62:2c:
94:8b:d0:31:c0:2b:8d:5c:81:93:b2:ab:45:41:5e:
f4:d9:fa:32:0b:c9:0f:43:5c:79:28:e5:cb:79:72:
94:0e:dd:63:a7:51:ca:7d:fa:91:f4:10:86:da:f1:
fc:e0:de:9b:01:72:46:01:d2:ee:81:cf:0f:27:6f:
a6:65:75:1d:71:a3:40:36:9e:6f:d4:4e:6d:56:55:
05:00:31:d6:cb:34:46:46:26:0a:8e:c9:a3:26:e0:
da:d4:b1:e7:4c:74:29:e1:ba:d9:65:a7:b4:32:ea:
dd:51:51:53:db:68:00:b8:b2:cd:04:6d:71:ab:a4:
0f:b4:ac:96:0c:37:62:d2:c5:05:68:32:bc:ce:d0:
0e:07:99:27:3d:b6:70:93:a2:e2:ec:93:6f:bc:fa:
c5:2f:56:c4:47:fa:7a:e5:b0:9d:58:85:9e:c4:c2:
88:e9:40:43:a0:04:a2:8c:32:f3:7f:bd:6d:99:5e:
7d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0E:8F:D9:A6:26:31:DA:36:ED:E7:7D:80:80:8A:A8:33:71:A7:19
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ug6P2aYmMdo27ed9gICKqDNxpxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b300::/29
2a06:dfc0::/29
2a07:a300::/29
2a0e:5800::/29
2a0f:1740::/29
2a0f:17c0::/29
2a0f:19c0::/29
2a0f:1ac0::/29
2a0f:2840::/29
2a0f:e740::/29
2a10:30c0::/29
2a10:33c0::/29
2a10:3840::/29
2a10:5c00::/29
2a10:6400::/29
2a10:7700::/29
2a10:7b00::/29
2a11:e580::/29
2a11:f040::/29
2a12:ba00::/29
2a12:d100::/29
2a13:200::/29
2a13:cc0::/29
Signature Algorithm: sha256WithRSAEncryption
0b:28:f2:34:ad:17:3c:d8:0e:f5:16:1c:e7:77:2a:bb:30:6f:
92:34:e3:f6:13:20:8e:25:5c:99:15:e2:0d:2b:6d:60:50:11:
07:8f:33:3b:a6:24:73:14:2c:9e:ea:7f:6a:e9:34:f0:58:01:
68:12:6d:93:97:83:6b:cc:be:a1:23:8f:95:94:d0:0d:ae:93:
50:80:ee:c1:48:a8:cf:16:c9:7c:1f:06:0e:fe:93:46:e3:ac:
20:72:63:50:9e:9d:00:0a:c2:92:2d:78:4a:7d:72:c5:83:25:
dd:5d:5e:f0:5f:99:54:9e:50:b4:a9:67:b9:93:50:48:30:5d:
19:d6:c1:d2:b8:3a:29:c5:58:7b:cf:a0:63:18:2d:b2:f2:aa:
7d:63:3e:52:58:47:66:aa:df:27:50:5d:53:fc:f8:93:fc:5a:
42:7a:78:a6:dd:9e:fb:df:39:87:0a:12:2b:82:05:18:ed:ab:
35:5e:96:f0:ae:fd:4a:6e:5b:67:03:51:fb:37:27:ec:47:f9:
08:0b:f5:66:33:2b:bf:a8:22:fd:3e:a8:61:2d:7f:2c:3d:d6:
c8:40:66:d7:a8:ae:ed:7d:45:da:66:81:e7:e0:97:6d:bd:63:
9b:fa:14:8b:4e:69:8c:77:0c:42:19:09:16:07:2d:0a:1a:46:
7c:14:7d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:49:53 2024 by rpki-client on console-ams.rpki-client.org