Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Of6tXEVsQkrwgMIPVntULpcCcuA.roa
File: Of6tXEVsQkrwgMIPVntULpcCcuA.roa (raw, json)
Hash identifier: w4i+zBy4g6l3BrrkA4lTbIzD3BiI+gFRkboRjyiX2Ls=
Subject key identifier: 39:FE:AD:5C:45:6C:42:4A:F0:80:C2:0F:56:7B:54:2E:97:02:72:E0
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 018E51464B5835755802E7660BFB75EFCBFA
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Of6tXEVsQkrwgMIPVntULpcCcuA.roa
Signing time: Mon 18 Mar 2024 11:15:45 +0000
ROA not before: Mon 18 Mar 2024 11:15:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 2a05:541:102::/48 maxlen: 48
2a05:541:103::/48 maxlen: 48
2a05:541:104::/48 maxlen: 48
2a05:541:105::/48 maxlen: 48
2a05:541:106::/48 maxlen: 48
2a05:541:107::/48 maxlen: 48
2a05:541:108::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:110::/48 maxlen: 48
2a05:541:111::/48 maxlen: 48
2a05:541:112::/48 maxlen: 48
2a05:541:113::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:115::/48 maxlen: 48
2a05:541:116::/48 maxlen: 48
2a05:541:117::/48 maxlen: 48
2a05:541:118::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:124::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:141::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:46:4b:58:35:75:58:02:e7:66:0b:fb:75:ef:cb:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Mar 18 11:15:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39fead5c456c424af080c20f567b542e970272e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:93:03:d8:1c:68:2b:43:b7:8b:c1:5c:87:9e:
5e:79:ee:6f:b5:b5:c3:c7:6b:b0:1d:04:39:ad:6b:
19:39:be:b2:ca:0f:b7:fb:ae:6a:ff:46:59:c1:23:
f7:0d:1a:ce:58:47:d4:d9:d5:88:69:58:ae:7e:19:
f2:c6:39:10:34:4b:57:bc:7a:10:19:0b:24:30:6a:
da:85:5b:05:59:2a:af:6e:0b:3f:3a:b8:8b:1b:bf:
d9:8b:f6:d7:1c:29:d9:53:99:c7:53:83:dd:6e:e3:
37:d3:90:62:d1:01:a4:fb:df:96:af:8e:61:83:24:
cf:af:f6:0f:cc:be:09:c4:7f:e7:35:7e:dc:c0:32:
44:d0:f6:1a:a6:02:1a:c9:b2:27:d8:46:7a:83:11:
48:27:dc:80:f0:63:77:72:f8:95:07:26:33:c5:02:
70:32:86:b3:36:5f:17:82:36:87:88:39:1f:77:8d:
d2:d6:d9:5b:cc:02:46:51:26:a0:75:da:a7:bd:89:
2f:0b:12:33:90:3b:3f:59:b6:cb:c2:0c:3d:86:7b:
f3:c9:22:b7:6f:08:a2:46:9e:ae:45:15:eb:1a:ad:
7a:14:0b:f4:aa:de:7d:2d:e1:3e:5a:f1:bb:6f:9b:
ce:fb:c0:33:8a:66:cc:6d:63:87:2d:db:57:70:e4:
a4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FE:AD:5C:45:6C:42:4A:F0:80:C2:0F:56:7B:54:2E:97:02:72:E0
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Of6tXEVsQkrwgMIPVntULpcCcuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:102::-2a05:541:109:ffff:ffff:ffff:ffff:ffff
2a05:541:110::-2a05:541:119:ffff:ffff:ffff:ffff:ffff
2a05:541:121::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::/48
2a05:541:133::/48
2a05:541:141::/48
Signature Algorithm: sha256WithRSAEncryption
23:89:05:9e:4b:75:00:81:f5:10:2e:e7:b0:12:d7:b1:67:1e:
d4:71:35:ed:28:c5:da:1c:dd:2d:8d:ea:65:1b:62:e5:6e:18:
5b:83:a5:6c:c0:3b:a1:f0:06:8b:92:bd:f8:3e:a4:cc:71:ca:
bd:1e:4b:0c:20:44:b6:5f:c6:76:85:80:a4:6f:75:f3:86:88:
4a:90:15:20:44:56:fe:07:38:54:70:a9:b9:0b:84:4a:44:44:
ad:92:55:1d:a4:84:22:af:7e:fa:25:76:df:59:c0:4e:35:36:
e2:7c:9e:dd:47:8f:6e:5c:89:a1:94:da:d4:07:ad:3a:39:22:
ef:46:1b:86:0f:c9:e4:ee:c0:34:00:3e:de:aa:e5:5e:37:6e:
08:ca:fb:5a:bc:34:bb:df:15:6d:65:25:8a:64:90:4c:82:01:
92:03:43:29:61:18:19:c2:91:51:ed:93:1e:d0:50:fc:cf:5d:
2c:29:7b:cf:de:33:28:cb:bf:88:0c:dd:d0:f4:6b:c7:6c:7b:
84:61:03:93:20:7e:8b:07:f9:54:cc:87:75:58:66:19:b5:4a:
0b:12:35:1a:65:49:14:34:49:35:b8:13:13:1f:1b:dc:8a:e0:
60:e8:48:1d:00:65:e8:3a:14:fc:87:b4:51:af:3f:29:e4:8f:
2a:7f:30:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:28:51 2024 by rpki-client on console-ams.rpki-client.org