Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ZNA0_qqpBY8Ci5meNO7O4A6D7uU.roa
File: ZNA0_qqpBY8Ci5meNO7O4A6D7uU.roa (raw, json)
Hash identifier: p/sPfuYf2AyjvzbnAlRkBfTntZc/nIOqMpru/g6LDhM=
Subject key identifier: 64:D0:34:FE:AA:A9:05:8F:02:8B:99:9E:34:EE:CE:E0:0E:83:EE:E5
Certificate issuer: /CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Certificate serial: 018CC86FA744C23ED86EED1F766CFA4F4EB4
Authority key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ZNA0_qqpBY8Ci5meNO7O4A6D7uU.roa
Signing time: Tue 02 Jan 2024 04:30:09 +0000
ROA not before: Tue 02 Jan 2024 04:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:d040:1e::/48 maxlen: 48
2a13:d040:19::/48 maxlen: 48
2a13:d040:14::/48 maxlen: 48
2a13:d040:1f::/48 maxlen: 48
2a13:d040:12::/48 maxlen: 48
2a13:d040:2::/48 maxlen: 48
2a13:d040:1d::/48 maxlen: 48
2a13:d040:18::/48 maxlen: 48
2a13:d040:3::/48 maxlen: 48
2a13:d040:13::/48 maxlen: 48
2a13:d040:16::/48 maxlen: 48
2a13:d040:1::/48 maxlen: 48
2a13:d040:11::/48 maxlen: 48
2a13:d040:1c::/48 maxlen: 48
2a13:d040:17::/48 maxlen: 48
2a13:d040:1a::/48 maxlen: 48
2a13:d040:15::/48 maxlen: 48
2a13:d040:10::/48 maxlen: 48
2a13:d040:1b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 16:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:a7:44:c2:3e:d8:6e:ed:1f:76:6c:fa:4f:4e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Validity
Not Before: Jan 2 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64d034feaaa9058f028b999e34eecee00e83eee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9d:f4:24:eb:05:e8:12:19:b6:b3:b9:94:b7:
f2:1c:dc:cd:21:70:3e:3d:da:2f:53:56:fe:90:13:
32:23:53:82:60:db:69:ee:8f:42:a0:de:1c:b5:2e:
2f:52:df:69:c6:34:44:78:ae:69:8e:96:b4:20:60:
d2:54:6e:85:f5:f6:56:9d:31:a3:8f:87:d5:52:e2:
99:18:c7:fb:91:ac:18:99:e5:bb:3e:e9:5c:8e:13:
85:d7:82:72:e0:f7:8e:71:32:43:cf:62:b8:0f:34:
f7:b6:07:5d:ac:dc:4d:fc:41:cc:2f:58:60:e5:0f:
a8:b7:46:b1:31:19:03:f9:83:4d:51:0f:ce:b2:96:
0d:3b:c0:e3:c1:6b:24:77:af:6c:b9:81:39:ae:e3:
3f:4a:b8:86:52:5e:4e:89:6d:fa:20:f4:c9:5d:c6:
8e:95:46:c4:8f:1b:21:2c:19:78:df:7a:da:62:45:
f3:40:ae:42:2c:b9:e0:7d:08:7f:03:52:d6:a8:b3:
5d:ee:19:cb:34:4c:3e:91:b5:e0:51:02:08:15:71:
bc:71:9e:38:04:71:61:64:90:08:a6:64:09:87:ef:
51:f6:af:c4:a8:f6:f8:06:41:d3:bd:2b:ba:19:a2:
b4:df:f2:97:70:c6:45:f3:be:0b:1e:5e:d9:94:99:
27:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D0:34:FE:AA:A9:05:8F:02:8B:99:9E:34:EE:CE:E0:0E:83:EE:E5
X509v3 Authority Key Identifier:
keyid:6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/ZNA0_qqpBY8Ci5meNO7O4A6D7uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d040:1::-2a13:d040:3:ffff:ffff:ffff:ffff:ffff
2a13:d040:10::/44
Signature Algorithm: sha256WithRSAEncryption
28:46:89:d5:2f:da:7e:bb:95:00:33:bf:c6:11:85:f9:07:d8:
b3:f8:94:e2:0c:e0:0b:41:bb:68:68:c9:14:8b:f8:ea:51:68:
59:9f:ac:b3:c1:13:80:fb:57:73:fe:db:0a:1a:ef:66:3e:23:
73:c1:16:b5:f2:66:7b:53:b5:dd:39:60:c3:0a:00:ae:ed:ab:
8f:02:46:af:08:52:67:d7:22:4b:89:6b:7a:d8:43:ee:0a:4d:
a2:e8:a2:71:0a:b5:e6:a7:bd:6f:a4:93:91:b3:56:4a:8c:33:
81:5c:14:e9:79:cc:f9:3d:03:57:13:43:51:89:88:ac:58:ac:
ed:89:09:0f:30:f5:f9:f9:ee:c3:e6:7b:59:bb:b1:59:1e:0e:
a1:a1:ec:69:46:5d:22:49:a5:4f:3a:0f:14:59:e3:53:84:65:
28:3e:f3:e9:f9:94:3d:d8:e6:ec:59:db:d2:72:82:d2:ad:48:
17:de:c6:4e:f1:f6:39:6b:c0:cc:93:bd:f6:dd:83:14:ca:fb:
82:a6:09:ae:83:2a:0e:ec:30:33:f3:00:74:cd:50:40:fe:af:
92:7a:67:b7:cf:15:b5:73:ad:d3:b4:23:50:12:ee:13:01:26:
7a:f5:ae:dc:3f:ac:55:ee:01:e0:52:6c:e7:57:f9:03:19:4d:
f5:d8:36:94
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISAYzIb6dEwj7Ybu0fdmz6T060MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhYThmYTc1YzUwMjBjZDYyMThjZjdmMTA5ZGU0MjAyNjUy
MDRiYWMwHhcNMjQwMTAyMDQzMDA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGQwMzRmZWFhYTkwNThmMDI4Yjk5OWUzNGVlY2VlMDBlODNlZWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJ30JOsF6BIZtrO5lLfyHNzNIXA+
PdovU1b+kBMyI1OCYNtp7o9CoN4ctS4vUt9pxjREeK5pjpa0IGDSVG6F9fZWnTGj
j4fVUuKZGMf7kawYmeW7PulcjhOF14Jy4PeOcTJDz2K4DzT3tgddrNxN/EHML1hg
5Q+ot0axMRkD+YNNUQ/OspYNO8DjwWskd69suYE5ruM/SriGUl5OiW36IPTJXcaO
lUbEjxshLBl433raYkXzQK5CLLngfQh/A1LWqLNd7hnLNEw+kbXgUQIIFXG8cZ44
BHFhZJAIpmQJh+9R9q/EqPb4BkHTvSu6GaK03/KXcMZF874LHl7ZlJknMwIDAQAB
o4ICIDCCAhwwHQYDVR0OBBYEFGTQNP6qqQWPAouZnjTuzuAOg+7lMB8GA1UdIwQY
MBaAFGqo+nXFAgzWIYz38QneQgJlIEusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAt
MzVjNjNmYTc2NWEyLzEvWk5BMF9xcXBCWThDaTVtZU5PN080QTZEN3VVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAtMzVjNjNmYTc2NWEy
LzEvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAjBAIAAjAdMBIDBwAqE9BA
AAEDBwIqE9BAAAADBwQqE9BAABAwDQYJKoZIhvcNAQELBQADggEBAChGidUv2n67
lQAzv8YRhfkH2LP4lOIM4AtBu2hoyRSL+OpRaFmfrLPBE4D7V3P+2woa72Y+I3PB
FrXyZntTtd05YMMKAK7tq48CRq8IUmfXIkuJa3rYQ+4KTaLoonEKteanvW+kk5Gz
VkqMM4FcFOl5zPk9A1cTQ1GJiKxYrO2JCQ8w9fn57sPme1m7sVkeDqGh7GlGXSJJ
pU86DxRZ41OEZSg+8+n5lD3Y5uxZ29JygtKtSBfexk7x9jlrwMyTvfbdgxTK+4Km
Ca6DKg7sMDPzAHTNUED+r5J6Z7fPFbVzrdO0I1AS7hMBJnr1rtw/rFXuAeBSbOdX
+QMZTfXYNpQ=
-----END CERTIFICATE-----
Generated at Thu May 2 01:29:21 2024 by rpki-client on console-fra.rpki-client.org