Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/l6VaTvd3SFnEDXLh3CqzvoDm-B0.roa
File: l6VaTvd3SFnEDXLh3CqzvoDm-B0.roa (raw, json)
Hash identifier: XyDimzYP6PKNv1LhCPkxaVMSs5AWv6rr9VUXOuQ0D9g=
Subject key identifier: 97:A5:5A:4E:F7:77:48:59:C4:0D:72:E1:DC:2A:B3:BE:80:E6:F8:1D
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018CCA99727272017927E0729E68806D4EA4
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/l6VaTvd3SFnEDXLh3CqzvoDm-B0.roa
Signing time: Tue 02 Jan 2024 14:35:03 +0000
ROA not before: Tue 02 Jan 2024 14:35:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197099
IP address blocks: 193.7.192.0/24 maxlen: 24
193.7.194.0/24 maxlen: 24
193.7.193.0/24 maxlen: 24
2a11:a000::/29 maxlen: 29
2a10:fd40::/29 maxlen: 29
2a0d:be00::/29 maxlen: 29
2a0d:d340::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:72:72:72:01:79:27:e0:72:9e:68:80:6d:4e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Jan 2 14:35:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97a55a4ef7774859c40d72e1dc2ab3be80e6f81d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:88:c9:17:98:86:35:81:c2:f8:db:d4:85:53:
47:c0:90:1b:0e:48:4f:c7:31:ff:f5:20:37:cf:c4:
64:65:4d:85:22:1b:9c:9b:45:39:fc:99:6f:b1:37:
25:a2:5c:d2:7b:43:10:51:58:6f:19:39:48:f5:33:
90:7a:47:80:d4:d0:51:6c:6e:ea:73:c0:d0:05:3d:
41:90:d2:b4:a7:83:73:b7:2a:fd:31:f4:12:8b:ef:
e2:3f:47:aa:81:ce:78:13:20:73:a5:87:08:c1:f5:
6d:60:f6:ae:da:ec:d7:d8:7c:c7:5f:de:0c:82:4a:
9c:63:b1:a5:4c:fb:c2:63:3d:1e:d6:5c:00:d2:fd:
74:0c:7a:2a:67:5b:56:1d:ee:91:20:cd:d8:54:01:
c1:51:8c:89:d2:20:a9:f6:ea:24:5d:34:45:91:dd:
bb:75:e4:8c:d1:d1:3c:26:20:9c:5e:68:72:ee:d3:
1a:69:c2:7f:99:30:e0:14:8d:f1:cf:74:cf:e3:6d:
1e:8d:4e:c8:81:c3:2b:11:42:31:1f:c5:e5:cb:09:
42:1a:3b:25:15:9d:93:46:48:06:7f:cf:18:0b:4a:
b4:c7:b6:38:67:b0:7c:9c:57:67:1b:8c:33:c8:f0:
60:41:f2:7b:b0:d3:67:c3:93:91:ed:0d:cd:f0:b6:
da:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A5:5A:4E:F7:77:48:59:C4:0D:72:E1:DC:2A:B3:BE:80:E6:F8:1D
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/l6VaTvd3SFnEDXLh3CqzvoDm-B0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.7.192.0-193.7.194.255
IPv6:
2a0d:be00::/29
2a0d:d340::/29
2a10:fd40::/29
2a11:a000::/29
Signature Algorithm: sha256WithRSAEncryption
36:79:58:66:50:42:a9:9d:0a:06:91:f7:a4:44:08:a5:f7:bb:
fb:1e:d3:9c:6e:62:e6:e6:7a:20:f4:f6:f4:e4:ad:ac:93:0c:
e6:d4:04:0c:35:c0:14:84:9c:0b:71:8a:21:6e:4c:72:e6:9f:
2f:14:23:38:98:5b:eb:c2:78:25:0e:15:36:b6:1e:2c:64:1c:
ab:0c:43:eb:45:5a:65:c7:b6:e2:74:9e:d1:85:1f:14:89:57:
f0:1c:d1:2d:81:8a:4d:5d:78:1e:96:b7:55:a5:f0:43:3d:69:
e6:53:43:be:41:85:e9:84:75:60:dd:56:2f:f2:b8:3f:fd:4d:
59:d9:07:56:2f:46:5c:0f:ce:02:70:56:c2:07:cd:a0:ef:64:
57:fb:40:a9:ac:a3:8b:90:2f:ac:9c:80:ac:36:2a:e5:bc:d2:
60:68:84:8e:5b:2b:b5:83:ef:68:8c:d2:0f:67:ea:30:7c:f4:
c0:c6:a7:81:36:b9:1a:74:51:f0:23:9a:81:47:3a:e7:5c:8f:
3b:23:cc:bb:28:19:b1:9f:5b:c1:e1:71:61:0f:3b:9c:54:73:
3a:c1:eb:cb:cf:fb:76:19:34:43:3e:cb:97:e1:de:6d:24:78:
e0:b5:6e:9a:41:86:b7:a3:10:61:61:46:ec:10:d1:26:ba:5d:
76:e8:5e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:52:55 2024 by rpki-client on console-ams.rpki-client.org