Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rg9FPj75is2leVf68jrpFnDU0U0.roa
File: Rg9FPj75is2leVf68jrpFnDU0U0.roa (raw, json)
Hash identifier: 6RvCmETUOdofEg4I4SfT8wy0jrPW2w6+bkQALOD8aLU=
Subject key identifier: 46:0F:45:3E:3E:F9:8A:CD:A5:79:57:FA:F2:3A:E9:16:70:D4:D1:4D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018F33AE4098CB1BCF6E0F4A60C2EBACE3C8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rg9FPj75is2leVf68jrpFnDU0U0.roa
Signing time: Wed 01 May 2024 10:23:28 +0000
ROA not before: Wed 01 May 2024 10:23:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200950
IP address blocks: 2a10:cc45:120::/44 maxlen: 48
2a10:cc45:120::/48 maxlen: 48
2a10:cc45:121::/48 maxlen: 48
2a10:cc45:122::/48 maxlen: 48
2a10:cc45:123::/48 maxlen: 48
2a10:cc45:124::/48 maxlen: 48
2a10:cc45:125::/48 maxlen: 48
2a10:cc45:126::/48 maxlen: 48
2a10:cc45:127::/48 maxlen: 48
2a10:cc45:128::/48 maxlen: 48
2a10:cc45:129::/48 maxlen: 48
2a10:cc45:12a::/48 maxlen: 48
2a10:cc45:12b::/48 maxlen: 48
2a10:cc45:12f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:33:ae:40:98:cb:1b:cf:6e:0f:4a:60:c2:eb:ac:e3:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 1 10:23:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=460f453e3ef98acda57957faf23ae91670d4d14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:ca:48:ee:e3:88:88:dc:14:90:b8:53:12:
86:ff:58:07:90:d8:cd:48:ca:13:02:a2:36:6b:00:
20:7a:f6:5c:7a:7b:7e:91:84:87:50:07:8c:78:af:
9d:df:1d:77:25:74:37:11:8e:13:08:b7:20:a7:ca:
5c:88:38:3f:1b:d6:f4:78:9d:1a:5c:a2:56:c6:ea:
31:e8:a5:91:16:0d:7d:e1:ea:bd:28:45:f8:a9:69:
96:95:5c:88:54:1b:4e:fe:d8:f0:6d:b0:15:8f:00:
22:09:d1:2e:70:e7:c0:4f:9b:74:bf:b2:fe:40:bd:
dc:e1:c1:d1:a9:6c:15:b1:d6:5e:30:81:fa:3c:ad:
57:e6:a2:37:1d:1a:71:43:0a:de:92:a0:5b:e9:73:
8f:6e:dd:89:5c:f2:69:a1:a0:71:0b:55:0b:a4:3c:
a2:72:9e:b0:30:93:64:b1:dd:81:d3:0f:22:e1:d1:
2e:66:02:95:cc:0c:2c:41:99:2f:5a:0a:84:bc:1e:
cd:e3:61:07:3a:19:aa:ae:b0:4d:58:b7:81:b0:63:
5c:f4:56:2a:e2:39:23:5c:fa:bd:64:90:61:a0:b0:
1a:d9:99:87:87:6a:10:d0:dd:29:58:37:4f:90:2e:
d8:1f:e9:04:74:b4:5b:02:14:73:62:ba:54:35:45:
1f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0F:45:3E:3E:F9:8A:CD:A5:79:57:FA:F2:3A:E9:16:70:D4:D1:4D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rg9FPj75is2leVf68jrpFnDU0U0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc45:120::/44
Signature Algorithm: sha256WithRSAEncryption
83:39:b7:0b:93:3a:91:ec:60:f1:39:72:bf:8f:d7:4f:09:1a:
f6:7d:73:6b:04:c6:df:d3:d0:83:1b:a5:0a:cb:e0:c7:af:83:
1f:58:4f:d9:c0:61:d2:a5:71:5c:e1:5c:3e:fa:c5:1d:1f:e1:
94:08:d0:69:d8:5f:33:77:82:f8:ea:96:ca:7b:bb:aa:66:60:
7a:4a:d1:fb:1f:f8:8d:54:4e:ed:0b:6c:b6:07:12:d8:36:bc:
f5:c1:e4:e0:e9:83:01:c0:fe:15:ba:71:d8:ae:60:c8:73:0b:
85:83:73:76:99:3e:9e:b6:f0:82:7d:80:ec:e6:3d:83:68:d1:
5f:4a:b6:f3:0d:a8:5f:6c:f8:cf:5a:88:b0:7d:31:63:bf:f4:
0f:2e:91:17:c3:00:ff:d6:33:62:50:40:0f:b3:34:e4:a0:7c:
06:51:4e:5a:c2:29:b8:38:73:a1:49:ce:90:4a:e1:7e:64:84:
84:6c:78:f1:99:3d:0d:df:a2:af:92:dd:ad:25:7f:8c:98:b2:
02:5a:bb:df:68:3b:d8:10:85:23:17:bd:8d:34:31:5a:c5:55:
3b:9d:bf:1f:d5:42:3a:0d:1b:f2:ce:ab:a3:d4:d1:6e:37:a4:
80:bc:5c:bb:8e:ae:2f:4d:6a:74:a3:01:f9:21:29:61:3f:8b:
f1:b7:b9:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:07:57 2024 by rpki-client on console-ams.rpki-client.org