Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/7OJIQ0oq80MTt2Rsw5KjkLuwMoE.roa
File: 7OJIQ0oq80MTt2Rsw5KjkLuwMoE.roa (raw, json)
Hash identifier: H8fjl+zFTNGEWooOGEEzYhwIceMuwLzaV8zbK0/aug4=
Subject key identifier: EC:E2:48:43:4A:2A:F3:43:13:B7:64:6C:C3:92:A3:90:BB:B0:32:81
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 018CAF11A4E09531082FFA349F9C71E491B6
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/7OJIQ0oq80MTt2Rsw5KjkLuwMoE.roa
Signing time: Thu 28 Dec 2023 06:16:58 +0000
ROA not before: Thu 28 Dec 2023 06:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212271
IP address blocks: 2a05:4140::/29 maxlen: 48
2a05:4143::/32 maxlen: 48
2a05:4140:187::/48 maxlen: 48
2a05:4140:32::/48 maxlen: 48
2a11:e102::/32 maxlen: 32
2a05:4140:400::/40 maxlen: 48
2a05:4140:100::/40 maxlen: 48
2a05:4140:300::/40 maxlen: 40
2a05:4140:30::/48 maxlen: 48
2a05:4140:10::/48 maxlen: 48
2a05:4140:190::/48 maxlen: 48
2a05:4140:16::/48 maxlen: 48
2a05:4140:31::/48 maxlen: 48
2a05:4140:4::/48 maxlen: 48
2a05:4140:34::/48 maxlen: 48
2a05:4144::/32 maxlen: 32
2a05:4140:5::/48 maxlen: 48
2a05:4140:15::/48 maxlen: 48
2a05:4140:8::/48 maxlen: 48
2a05:4140:3::/48 maxlen: 48
2a05:4140:33::/48 maxlen: 48
2a05:4140:29::/48 maxlen: 48
2a05:4140:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 30 Dec 2023 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:11:a4:e0:95:31:08:2f:fa:34:9f:9c:71:e4:91:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Dec 28 06:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ece248434a2af34313b7646cc392a390bbb03281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:46:88:64:f8:87:c6:8e:e8:44:d8:cc:f9:96:
2d:8f:73:a0:dc:75:df:d7:bf:76:19:80:ab:3d:20:
62:a9:7c:cf:e2:67:ff:49:08:83:9a:2e:81:b8:a4:
07:98:38:fa:85:25:08:12:31:88:e6:df:b9:12:da:
ea:fa:e4:30:02:7d:26:65:4d:e3:2f:8c:32:85:80:
83:68:6c:e9:20:cf:7c:d0:2c:5a:af:a1:41:91:dd:
9a:5a:ce:31:31:78:1f:79:54:a8:b3:74:06:0a:d1:
eb:74:6d:1b:6c:43:c7:e4:36:b8:56:3b:71:7b:97:
91:9e:45:42:0a:d7:60:4a:31:ab:7c:c7:fd:97:e2:
46:43:d6:d9:b1:95:19:76:6a:32:28:b1:3b:5c:33:
d2:f5:e1:fb:c3:7c:0b:67:bd:7d:b6:40:a0:43:9d:
75:82:b7:59:a6:d2:1a:af:af:0e:d2:d0:c8:95:c2:
60:d7:f6:7b:f8:7b:72:02:c5:35:2b:fd:77:64:16:
d8:c7:86:76:15:69:a3:e3:77:6c:de:f8:7d:d3:15:
ff:e9:d3:a9:9e:9f:58:71:c4:71:b6:44:43:e7:78:
b4:9b:33:bf:17:82:2b:7e:68:44:f3:1f:2e:13:9c:
2d:cf:18:3d:a1:e1:da:df:e4:0c:e3:e7:50:24:1e:
76:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E2:48:43:4A:2A:F3:43:13:B7:64:6C:C3:92:A3:90:BB:B0:32:81
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/7OJIQ0oq80MTt2Rsw5KjkLuwMoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140::/29
2a11:e102::/32
Signature Algorithm: sha256WithRSAEncryption
7c:97:c9:b7:53:af:ea:bf:74:e6:0b:20:4b:a6:d6:f6:f9:56:
34:7d:25:92:f4:74:88:62:00:cc:1c:41:d7:49:93:2f:87:1b:
e3:14:2e:e0:10:40:7d:54:6e:5d:3d:72:06:ad:97:a7:50:0d:
76:04:2c:07:84:cb:cb:37:c6:08:1a:e1:02:1b:cc:81:65:86:
89:22:0c:1f:e9:b7:f1:91:38:0e:72:ad:da:a4:21:45:ab:ec:
73:ad:7c:e7:ca:b0:45:32:aa:8f:b1:fb:76:b1:53:ac:09:52:
3a:f0:96:af:5a:f9:2b:dc:f5:4c:56:53:b3:d5:ad:5f:da:dc:
18:6a:69:e3:08:e7:41:44:74:0e:aa:be:ff:aa:70:d0:4a:45:
f5:d3:e0:2b:5f:56:d3:ab:ff:ed:70:59:a6:8a:f0:c0:e0:39:
a5:06:85:2a:78:72:33:13:16:27:73:ce:21:8f:04:c5:53:5d:
9f:84:de:d0:8a:19:07:e1:78:eb:99:a4:e8:36:d8:22:de:21:
36:36:90:1c:09:6e:90:40:b3:f8:09:0c:e0:26:91:81:92:cf:
67:3c:7d:63:f6:84:5b:d7:65:99:64:79:93:30:9c:31:2d:1a:
eb:47:d9:9a:64:3a:3c:81:8f:64:5a:02:8f:16:b0:51:5f:77:
6a:2c:86:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 29 15:53:33 2023 by rpki-client on console-ams.rpki-client.org