Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6uuB25_0zBoPC3CJCTX-EE5p5zY.roa
File: 6uuB25_0zBoPC3CJCTX-EE5p5zY.roa (raw, json)
Hash identifier: nzV41hglTNgYyPcaMX84yOXqzk6DfYCjdXyrWyIbZCw=
Subject key identifier: EA:EB:81:DB:9F:F4:CC:1A:0F:0B:70:89:09:35:FE:10:4E:69:E7:36
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BD22990C79EAD694D93F07DB957DC2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6uuB25_0zBoPC3CJCTX-EE5p5zY.roa
Signing time: Tue 02 Jan 2024 10:34:24 +0000
ROA not before: Tue 02 Jan 2024 10:34:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210320
IP address blocks: 2a0e:b107:18c0::/48 maxlen: 48
2a0e:b107:18c8::/48 maxlen: 48
2a0e:b107:18c5::/48 maxlen: 48
2a0e:b107:18c2::/48 maxlen: 48
2a0e:b107:18c7::/48 maxlen: 48
2a0e:b107:18c4::/48 maxlen: 48
2a0e:b107:18c1::/48 maxlen: 48
2a0e:b107:18c9::/48 maxlen: 48
2a0e:b107:18c6::/48 maxlen: 48
2a0e:b107:18c3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bd:22:99:0c:79:ea:d6:94:d9:3f:07:db:95:7d:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eaeb81db9ff4cc1a0f0b70890935fe104e69e736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3e:d6:c3:c5:1c:8a:28:f7:0b:aa:f3:73:17:
7f:4b:b6:a3:18:e3:01:96:f9:46:ec:8f:1a:97:5f:
07:16:54:ec:12:f5:83:98:25:87:71:92:8c:b6:f0:
5b:94:27:d0:87:77:89:47:50:99:1c:e7:97:bc:fc:
71:27:34:a7:85:e2:2b:84:44:e3:c4:ac:a8:25:ad:
e9:56:d2:8b:9a:bc:ec:9b:59:4a:8a:1f:c2:ae:f1:
ab:d6:6f:e7:a8:76:18:46:00:1e:33:a5:9d:ba:0d:
b2:53:e6:e2:4e:61:e3:21:0e:d9:2b:36:9b:6b:45:
2b:db:67:05:2e:e8:d7:82:a8:56:75:0e:a4:9d:33:
8c:86:b9:a3:07:2c:22:e6:4c:68:ad:95:33:bc:de:
3f:39:2a:0e:1f:94:40:10:26:72:9f:41:26:45:7f:
ae:d8:df:4b:06:39:37:15:00:32:41:6f:46:8f:7a:
22:e0:39:8d:af:bd:4a:73:30:8d:7f:16:fe:bb:58:
44:a7:ba:aa:92:27:f5:ce:02:7b:5f:bb:c2:5a:3b:
c4:c2:48:d1:13:ed:09:29:0d:14:14:43:af:0c:21:
ad:ff:f7:7d:c4:26:78:e0:0d:26:37:98:cf:bc:ae:
08:9d:12:30:01:ae:e9:8f:21:48:32:87:1b:55:31:
1e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:EB:81:DB:9F:F4:CC:1A:0F:0B:70:89:09:35:FE:10:4E:69:E7:36
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6uuB25_0zBoPC3CJCTX-EE5p5zY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:18c0::-2a0e:b107:18c9:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
49:ee:1b:2d:10:0f:3d:fa:7a:37:2e:8f:ad:50:f7:28:c1:31:
5d:73:ea:37:a4:8e:38:30:c1:d7:a3:89:0b:58:f6:ef:f3:ec:
f9:5a:3a:65:5e:1c:a2:78:d8:97:bc:61:55:e2:54:03:a1:c9:
9f:e4:54:e1:ee:cc:39:52:15:82:61:e3:08:ae:11:7e:35:fc:
ae:76:ce:e0:e3:03:41:fe:9b:9f:fe:3f:98:0d:57:13:ea:a1:
09:da:08:ba:10:34:aa:28:b0:22:f5:7b:0c:c3:ed:71:50:eb:
5a:fa:6e:8a:ec:bc:2e:28:63:e7:1b:c1:8a:a2:90:7d:25:76:
d9:f0:9a:77:13:0c:0b:01:5a:62:7b:99:52:28:c0:50:0c:2a:
40:3d:8a:27:ac:5c:e7:01:4d:ad:b9:17:84:ff:02:4b:0a:21:
29:d5:dd:e8:d8:04:5b:fc:26:a4:86:3a:72:72:71:6c:e4:e4:
c8:94:1f:88:78:fd:e4:2c:78:06:e3:ed:ce:66:4f:d5:ba:93:
fa:1b:57:3d:95:7c:3f:c8:1e:4a:6b:07:0e:fc:8b:4f:50:46:
4d:7b:11:0d:fb:1c:70:77:a6:d4:f2:10:9e:6d:3e:3d:33:6d:
0e:08:33:e0:f4:cc:74:67:98:a0:09:05:40:ef:0e:1d:88:a7:
e7:f0:e5:09
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 3 06:56:32 2024 by rpki-client on console-fra.rpki-client.org