Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tEJ8uJ2x_N4pRSlHc1N3Ekr1jDI.roa
File: tEJ8uJ2x_N4pRSlHc1N3Ekr1jDI.roa (raw, json)
Hash identifier: l8p5xuhXPJP/DxTcYacsaV6Lt3G6nppuSbnHFFVDVhs=
Subject key identifier: B4:42:7C:B8:9D:B1:FC:DE:29:45:29:47:73:53:77:12:4A:F5:8C:32
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0193AB56AACE60296C9CE4A070649A676645
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tEJ8uJ2x_N4pRSlHc1N3Ekr1jDI.roa
Signing time: Mon 09 Dec 2024 12:13:23 +0000
ROA not before: Mon 09 Dec 2024 12:13:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:de01:140::/44 maxlen: 48
2a06:de01:141::/48 maxlen: 48
2a06:de01:142::/48 maxlen: 48
2a06:de01:143::/48 maxlen: 48
2a06:de01:144::/48 maxlen: 48
2a06:de01:145::/48 maxlen: 48
2a06:de03:3690::/48 maxlen: 48
2a06:de03:3691::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ab:56:aa:ce:60:29:6c:9c:e4:a0:70:64:9a:67:66:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 9 12:13:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4427cb89db1fcde29452947735377124af58c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ae:bf:c3:53:ec:f5:24:b8:2e:7c:51:a1:c5:
3c:70:03:0b:a2:d2:f1:27:1d:9b:7c:7a:1e:ba:79:
ab:df:ff:13:cf:37:f2:d8:84:07:d1:15:26:d9:b1:
2f:b0:bc:b8:06:7b:17:c2:f6:72:e1:40:ef:e4:b0:
f8:8b:d9:08:01:05:93:3d:ec:7c:d8:4c:6e:8b:b8:
be:5a:7e:9e:3f:34:fa:5b:9a:9c:75:e8:34:83:8d:
3f:c5:25:6e:e7:d6:56:a1:1f:59:d2:ce:6a:f1:32:
88:25:01:c8:04:df:ba:82:be:5e:52:f2:09:74:7d:
f1:5c:8d:ee:e6:62:50:f1:6e:b2:bc:ac:6d:ff:a2:
24:54:00:ed:16:9a:e3:5c:84:24:57:bd:7a:5a:6c:
19:07:81:89:74:02:6e:83:45:07:7c:0b:cf:cb:f4:
d6:3a:02:ff:3c:63:d8:db:1e:2c:54:b4:71:54:cc:
c9:c2:00:be:f5:a4:75:34:a4:23:f7:88:ce:87:c9:
27:27:18:49:02:e8:8f:43:a4:44:c1:e3:69:98:67:
07:2c:9b:3b:48:c1:2f:65:be:2b:8a:5a:53:a4:2b:
17:68:13:e7:54:d6:b2:48:6a:bf:2c:38:9f:cd:80:
51:72:11:e0:21:ab:0d:d1:21:b6:96:08:62:df:be:
19:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:42:7C:B8:9D:B1:FC:DE:29:45:29:47:73:53:77:12:4A:F5:8C:32
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tEJ8uJ2x_N4pRSlHc1N3Ekr1jDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:140::/44
2a06:de03:3690::/47
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
8e:a7:ea:3c:cd:68:54:80:b9:42:c5:39:bc:47:1c:8b:f2:27:
d2:9b:17:9d:05:ce:35:ca:c0:f8:36:53:f6:e0:53:61:7c:e8:
9f:86:d1:77:9d:6d:74:7f:41:a9:d2:28:2c:f2:d9:74:48:18:
d8:d8:df:40:25:47:ea:85:8a:78:af:34:fc:80:49:c7:2f:73:
c8:53:1d:21:65:ad:0f:a7:4b:d8:64:c3:cb:60:bf:07:6b:75:
8f:f0:29:96:00:b5:b1:ea:dd:cb:0d:e1:95:81:a8:60:0b:7a:
a9:69:92:dc:d5:bf:7a:ab:65:dc:34:74:f1:f4:2c:aa:4a:93:
27:b7:10:08:92:c5:e2:c8:0a:92:9f:d4:09:39:e1:b5:aa:db:
d0:de:61:ea:06:77:98:52:79:84:20:f5:03:90:30:67:6d:37:
02:e7:e3:21:e3:a6:c6:22:5d:f8:00:7a:be:41:5d:87:b1:20:
89:66:93:2e:e0:88:2a:8e:23:25:38:8b:22:c5:97:6d:84:e0:
54:38:d4:60:bc:36:f1:be:75:96:54:4f:1b:3b:9c:5b:3e:d6:
10:40:1a:69:93:30:ba:f5:03:88:17:53:84:29:60:bf:e6:27:
a1:8b:15:bc:4e:3f:55:32:83:20:2e:2f:32:f1:33:23:3a:b4:
22:b9:bc:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 20:36:27 2024 by rpki-client on console-fra.rpki-client.org