Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QoIB47U4ut_vEQpsMzAPyo2v4LQ.roa
File: QoIB47U4ut_vEQpsMzAPyo2v4LQ.roa (raw, json)
Hash identifier: 6uvMONxf/EVM2G4Ms/00+j51CYAYWwKdMeW1A9Rh0hE=
Subject key identifier: 42:82:01:E3:B5:38:BA:DF:EF:11:0A:6C:33:30:0F:CA:8D:AF:E0:B4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019147D8DBD88CCEF8BF1212F3799CA53AE4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QoIB47U4ut_vEQpsMzAPyo2v4LQ.roa
Signing time: Mon 12 Aug 2024 18:28:00 +0000
ROA not before: Mon 12 Aug 2024 18:28:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51939
IP address blocks: 2a0e:97c0:5c0::/44 maxlen: 48
2a0e:97c0:5c0::/48 maxlen: 48
2a0e:97c0:5c1::/48 maxlen: 48
2a0e:97c0:5c2::/48 maxlen: 48
2a0e:97c0:5c3::/48 maxlen: 48
2a0e:97c0:5c4::/48 maxlen: 48
2a0e:97c0:5c5::/48 maxlen: 48
2a0e:97c0:5c6::/48 maxlen: 48
2a0e:97c0:5c7::/48 maxlen: 48
2a0e:97c0:5c8::/48 maxlen: 48
2a0e:97c0:5c9::/48 maxlen: 48
2a0e:97c0:5ca::/48 maxlen: 48
2a0e:97c0:5cb::/48 maxlen: 48
2a0e:97c0:5cc::/48 maxlen: 48
2a0e:97c0:5cd::/48 maxlen: 48
2a0e:97c0:5ce::/48 maxlen: 48
2a0e:97c0:5cf::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:47:d8:db:d8:8c:ce:f8:bf:12:12:f3:79:9c:a5:3a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 12 18:28:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=428201e3b538badfef110a6c33300fca8dafe0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a0:51:26:b5:e5:c3:a6:33:41:c9:b8:e7:92:
b0:da:ef:7b:7a:09:c0:63:2d:bb:7e:fd:b7:79:61:
b9:f8:fd:11:37:c1:48:73:34:f0:58:01:61:96:b5:
32:43:6a:c8:e9:1a:37:38:20:ee:35:dc:59:9d:74:
f7:38:73:8c:28:e2:37:51:b7:cd:89:5d:8b:a6:54:
26:89:33:9b:e9:44:ac:53:d1:8d:89:00:cc:fb:a4:
e2:42:09:ed:32:2d:5b:ca:fa:b2:08:cc:52:40:33:
ee:b9:c6:7a:25:9e:72:39:4d:47:4b:c3:fa:9b:c6:
fc:c5:3d:3f:8e:2e:e8:ba:e6:4f:7e:8f:cf:10:e8:
05:82:2b:78:88:f5:38:2b:0c:56:31:61:b0:03:3f:
42:6c:62:87:ae:73:a7:41:99:71:a7:e7:00:ed:c6:
91:f4:76:3c:38:50:c3:d3:e6:6a:3b:d2:e9:1d:d1:
48:61:c4:e6:48:a3:b6:ba:c4:9b:82:ee:e2:ad:39:
35:2e:40:c8:18:cf:4c:63:f1:81:c9:9b:8c:70:58:
96:e4:f8:c7:b7:ef:e6:11:07:4a:37:fa:7c:a1:f0:
50:ed:57:aa:a8:fd:51:b7:20:a9:2a:16:c9:2f:e5:
35:9d:ec:64:ec:f8:b4:8c:de:70:ad:74:cb:2b:b9:
66:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:82:01:E3:B5:38:BA:DF:EF:11:0A:6C:33:30:0F:CA:8D:AF:E0:B4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QoIB47U4ut_vEQpsMzAPyo2v4LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:5c0::/44
Signature Algorithm: sha256WithRSAEncryption
6b:7c:9d:88:16:bb:f8:56:57:e7:f2:43:1a:e5:1d:1c:03:6c:
13:85:e9:b6:8a:b7:bc:93:82:67:ce:5a:af:10:ee:82:72:a9:
22:89:6c:d3:37:dd:d7:09:08:f3:07:4c:ec:b2:6c:ea:4e:d3:
68:f2:a4:21:9c:1f:43:7c:7a:1e:0a:30:8b:cc:60:d7:37:85:
c4:bc:d7:93:35:61:a5:37:74:02:43:95:f6:92:bd:69:5b:27:
b3:b3:67:fc:d4:c8:d1:e8:0c:0c:19:9f:cb:9c:3f:d1:d4:60:
90:0a:c8:dd:12:47:1d:0d:bd:c0:23:f4:3c:41:90:26:93:14:
80:5b:54:3d:bd:97:98:98:85:db:16:ff:2c:eb:67:d4:99:ed:
13:eb:1e:97:71:90:fd:08:76:cd:48:ec:70:21:00:93:05:62:
89:d6:6c:5a:dc:ec:e2:f8:bd:c4:eb:c8:21:42:36:b8:f5:70:
16:77:0a:9c:6a:29:b3:64:3c:61:eb:fd:d9:94:4a:b2:6c:92:
71:2c:04:fa:9a:01:a5:1e:47:f6:3a:6d:cb:15:58:45:a0:cc:
9e:a3:8a:b2:9a:18:0a:64:b2:24:c8:c8:df:82:b2:c8:04:9c:
90:9d:c0:48:d2:4d:80:af:5d:b5:78:a1:9d:c2:f5:70:b7:90:
62:a0:cd:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:24:30 2024 by rpki-client on console-fra.rpki-client.org