Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/egV5WIwivWIUh_bMmoeyqJWHErc.roa
File: egV5WIwivWIUh_bMmoeyqJWHErc.roa (raw, json)
Hash identifier: eAhjKOFZsw9GQ2lnSitTjwlY3Uf3s7F9P7yCohc/o/o=
Subject key identifier: 7A:05:79:58:8C:22:BD:62:14:87:F6:CC:9A:87:B2:A8:95:87:12:B7
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8EA3D606A7ABE7C92095694272CC2
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/egV5WIwivWIUh_bMmoeyqJWHErc.roa
Signing time: Mon 01 Jan 2024 20:30:56 +0000
ROA not before: Mon 01 Jan 2024 20:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209022
IP address blocks: 2a0c:9a40:c003::/48 maxlen: 48
2a10:a501:b00b::/48 maxlen: 48
2a10:a505:b00b::/48 maxlen: 48
2a0c:9a44:beef::/48 maxlen: 48
2a0c:9a40:c004::/48 maxlen: 48
2a10:a504:b00b::/48 maxlen: 48
2a10:a502:b00b::/48 maxlen: 48
2a0c:9a40:c002::/48 maxlen: 48
2a10:a503:b00b::/48 maxlen: 48
2a0c:9a40:c001::/48 maxlen: 48
2a10:a507:b00b::/48 maxlen: 48
2a10:a500:b00b::/48 maxlen: 48
2a10:a506:b00b::/48 maxlen: 48
2a0c:9a40:c000::/36 maxlen: 48
2a0c:9a40:c000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:ea:3d:60:6a:7a:be:7c:92:09:56:94:27:2c:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a0579588c22bd621487f6cc9a87b2a8958712b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:9c:6d:43:2c:da:eb:f7:75:08:e6:7b:c6:
ea:ac:f2:c2:47:11:ac:64:98:79:63:05:1c:fb:ca:
64:d2:c5:ae:89:5c:b0:d0:1e:d5:66:f9:31:7a:af:
15:bd:a4:34:5f:f8:f1:59:18:63:55:b7:ae:51:56:
6d:57:af:8a:8e:56:b0:0f:0d:21:d3:d8:21:d5:00:
16:6e:ef:fd:d6:99:f2:62:4a:3b:b2:a1:d5:a1:f5:
e8:8a:77:99:b1:9b:1b:f6:0e:c6:4b:74:1d:1e:ab:
97:8e:ff:cd:20:5f:73:30:96:59:d5:0c:48:0c:fb:
83:ba:9a:5f:dd:91:fb:9a:ac:c8:20:b0:3b:2b:7c:
0b:e9:78:7a:cd:42:1c:b0:00:25:3c:4f:51:94:bf:
dc:9e:81:ed:87:40:2a:46:22:93:70:a8:a0:cf:90:
03:e0:d6:f8:c3:a5:33:34:5c:04:4b:08:ac:d7:4e:
6c:f3:ca:42:71:cd:6e:b9:0e:5d:b9:10:ff:01:24:
b4:ce:6a:42:4d:f7:63:92:18:85:52:4e:ce:34:86:
16:c2:90:3f:e1:c0:47:d3:8e:1d:dd:4c:36:ab:9f:
df:77:36:81:6b:1b:0c:2e:65:19:51:70:12:a4:17:
68:a4:d7:a9:25:d4:59:15:e9:d0:45:63:9c:67:50:
3f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:05:79:58:8C:22:BD:62:14:87:F6:CC:9A:87:B2:A8:95:87:12:B7
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/egV5WIwivWIUh_bMmoeyqJWHErc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:c000::/36
2a0c:9a44:beef::/48
2a10:a500:b00b::/48
2a10:a501:b00b::/48
2a10:a502:b00b::/48
2a10:a503:b00b::/48
2a10:a504:b00b::/48
2a10:a505:b00b::/48
2a10:a506:b00b::/48
2a10:a507:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
d0:0b:d9:ab:9d:1f:4f:7a:4a:1b:ae:cf:c9:b5:b3:43:ae:d5:
71:fd:cc:3c:57:4e:6b:cf:5b:5c:84:90:07:46:55:b6:6e:c0:
36:bf:45:42:d1:b2:ad:c5:0d:22:c9:84:84:ce:d5:db:cd:48:
a5:e2:64:30:23:22:1b:08:2f:26:e8:e6:f8:90:3d:37:0f:53:
83:86:a8:77:b8:5f:72:64:4e:1d:0f:0b:50:26:c6:c4:6b:55:
4a:70:46:73:60:0e:7d:39:08:78:34:da:49:b2:ce:e2:ce:64:
b4:f0:32:96:c1:ad:a4:88:5d:0a:a0:19:f7:39:92:ac:a3:99:
0f:36:a7:78:47:2b:45:2e:22:4a:75:a8:c3:34:92:f4:19:0e:
20:41:c3:17:e6:7e:65:c5:3f:bf:db:7c:0a:f8:50:fe:f6:09:
5b:44:fa:23:c5:e1:d6:2e:ba:44:e2:00:56:77:31:76:bd:2a:
18:4e:1b:e3:07:cc:c3:d2:ba:aa:d9:a8:92:74:b3:77:68:39:
ed:c2:91:39:82:87:90:87:31:0d:2d:0a:11:ff:5c:4d:b9:9a:
2a:2d:c0:20:0e:9c:57:2f:a6:57:2d:7d:75:7c:81:90:03:3a:
41:f5:29:ef:fd:7f:fe:5a:cb:ef:34:cc:b7:b5:7d:35:cd:6b:
92:62:f7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 21:48:14 2024 by rpki-client on console-fra.rpki-client.org