Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/55yp6HEOigsmHhPj1qwiDQmAgMU.roa
File: 55yp6HEOigsmHhPj1qwiDQmAgMU.roa (raw, json)
Hash identifier: oeLJP3bGz0XI3H1vV7iUS7EMbE6l3dQ8IrI/08MJjDs=
Subject key identifier: E7:9C:A9:E8:71:0E:8A:0B:26:1E:13:E3:D6:AC:22:0D:09:80:80:C5
Certificate issuer: /CN=573104ff3568cb99b7f5024e73ff2aea0563ce6a
Certificate serial: 0191420895F4934762C66B0F039B4F0FE5E6
Authority key identifier: 57:31:04:FF:35:68:CB:99:B7:F5:02:4E:73:FF:2A:EA:05:63:CE:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VzEE_zVoy5m39QJOc_8q6gVjzmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/55yp6HEOigsmHhPj1qwiDQmAgMU.roa
Signing time: Sun 11 Aug 2024 15:22:24 +0000
ROA not before: Sun 11 Aug 2024 15:22:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211960
IP address blocks: 2001:67c:2924::/48 maxlen: 48
2a04:1ac0:fff3::/48 maxlen: 48
2a04:1ac0:fff4::/48 maxlen: 48
2a04:1ac1:1::/48 maxlen: 48
2a04:1ac1:2::/48 maxlen: 48
2a04:1ac1:3::/48 maxlen: 48
2a04:1ac1:10::/48 maxlen: 48
2a04:1ac1:11::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/VzEE_zVoy5m39QJOc_8q6gVjzmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/VzEE_zVoy5m39QJOc_8q6gVjzmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/VzEE_zVoy5m39QJOc_8q6gVjzmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:42:08:95:f4:93:47:62:c6:6b:0f:03:9b:4f:0f:e5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=573104ff3568cb99b7f5024e73ff2aea0563ce6a
Validity
Not Before: Aug 11 15:22:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e79ca9e8710e8a0b261e13e3d6ac220d098080c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ca:45:39:d7:00:d6:41:2e:7e:9a:1e:5d:5f:
50:25:48:09:fb:bf:89:36:d3:e9:31:b8:25:e1:8b:
7a:21:32:88:2e:3d:35:31:be:45:2c:0e:b9:25:2e:
d6:7b:b0:39:76:f0:65:b2:0c:d0:50:c2:0e:07:a5:
95:98:6f:e9:ff:93:b4:92:33:7c:31:af:19:7c:01:
bb:12:93:08:e9:52:0f:11:73:94:5b:22:bf:b0:e8:
81:5d:d7:0e:8b:ed:dd:5f:af:f7:af:9d:07:2a:db:
12:7a:17:75:5f:51:95:86:08:8e:6f:42:eb:1e:5a:
c0:50:d8:aa:65:10:3a:f7:08:92:56:c6:4e:24:e8:
d8:3f:6e:7d:9d:86:1d:51:6d:f5:50:51:00:e9:32:
94:6a:b3:d7:f8:1c:b7:4e:d0:a9:be:36:f0:a1:eb:
20:a3:b4:b3:cc:6a:d4:25:e0:b0:09:4c:cd:a0:73:
29:8b:98:d1:58:be:05:ac:8a:f0:b9:3a:5e:bb:11:
39:c9:40:f9:5e:d0:b4:12:60:24:de:bd:dc:ae:b8:
a2:e6:fb:58:c6:8b:13:00:a1:82:95:db:91:d4:9c:
15:91:15:41:2b:70:77:83:18:59:d2:e8:31:e9:a2:
c7:da:4e:4f:9e:57:84:b8:1e:6b:37:29:05:a2:91:
87:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:9C:A9:E8:71:0E:8A:0B:26:1E:13:E3:D6:AC:22:0D:09:80:80:C5
X509v3 Authority Key Identifier:
keyid:57:31:04:FF:35:68:CB:99:B7:F5:02:4E:73:FF:2A:EA:05:63:CE:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VzEE_zVoy5m39QJOc_8q6gVjzmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/55yp6HEOigsmHhPj1qwiDQmAgMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/VzEE_zVoy5m39QJOc_8q6gVjzmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2924::/48
2a04:1ac0:fff3::-2a04:1ac0:fff4:ffff:ffff:ffff:ffff:ffff
2a04:1ac1:1::-2a04:1ac1:3:ffff:ffff:ffff:ffff:ffff
2a04:1ac1:10::/47
Signature Algorithm: sha256WithRSAEncryption
14:ac:f7:80:e5:9e:78:e1:5f:c7:11:8e:4b:4b:c2:f7:bc:1f:
69:bd:96:bd:d5:99:ee:c0:0c:3f:e5:34:09:b2:21:4f:95:3f:
4a:af:bd:10:10:21:26:53:7f:78:9e:0f:ff:3d:a8:99:27:ef:
a8:21:d0:45:d3:25:95:0b:5a:0d:45:58:93:5c:9e:c3:5c:a8:
dd:d3:08:f9:b7:16:5b:7b:e9:38:b5:a7:7a:74:c1:53:26:e5:
bf:ee:62:6a:10:d9:1a:09:14:bf:df:36:fd:af:b0:08:e7:40:
ce:d4:94:eb:b7:e3:e1:25:80:c1:e0:73:7e:61:c2:32:86:51:
43:4b:0d:7b:69:77:6d:db:fc:c9:38:08:cb:79:40:41:8d:f9:
69:55:4d:47:21:c0:fb:c6:cf:fd:c0:54:25:48:2e:ff:00:65:
cf:0b:c3:3a:9e:50:12:ec:d1:19:29:f4:32:f4:7a:4d:3e:80:
cc:fd:c1:53:79:ca:fa:92:6a:83:7a:12:bc:63:3e:8c:6e:f8:
b6:8d:fc:0b:25:37:5c:ab:9a:9a:1e:ee:d3:f7:31:a4:17:af:
61:6c:78:67:32:a6:3e:7e:46:25:ce:4b:53:b4:30:f4:23:b8:
3f:75:94:32:a4:23:dc:d8:c2:50:7f:e8:76:a8:90:92:fa:6b:
03:7e:02:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:54:04 2024 by rpki-client on console-ams.rpki-client.org