Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/TUrXkPd4Y5jnlsfVv8gZw4wCLXw.roa
File: TUrXkPd4Y5jnlsfVv8gZw4wCLXw.roa (raw, json)
Hash identifier: ljm6OPhw1dLRmI07/VS39Ngd7Ba2RrlkEbwUQ7Y1a/8=
Subject key identifier: 4D:4A:D7:90:F7:78:63:98:E7:96:C7:D5:BF:C8:19:C3:8C:02:2D:7C
Certificate issuer: /CN=bc0078a27f1003263c4c561b0250766f2f526e7d
Certificate serial: 019305BDBE4115D9CF67A62A6719A8CC4693
Authority key identifier: BC:00:78:A2:7F:10:03:26:3C:4C:56:1B:02:50:76:6F:2F:52:6E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vAB4on8QAyY8TFYbAlB2by9Sbn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/TUrXkPd4Y5jnlsfVv8gZw4wCLXw.roa
Signing time: Thu 07 Nov 2024 08:29:01 +0000
ROA not before: Thu 07 Nov 2024 08:29:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214359
IP address blocks: 2001:3680::/29 maxlen: 29
2001:3680::/48 maxlen: 48
2001:3680:1::/48 maxlen: 48
2001:3680:2::/48 maxlen: 48
2001:3680:3::/48 maxlen: 48
2001:3680:4::/48 maxlen: 48
2001:3680:5::/48 maxlen: 48
2001:3680:6::/48 maxlen: 48
2001:3680:7::/48 maxlen: 48
2001:3680:8::/48 maxlen: 48
2001:3680:9::/48 maxlen: 48
2001:3680:a::/48 maxlen: 48
2001:3680:b::/48 maxlen: 48
2001:3680:c::/48 maxlen: 48
2001:3680:d::/48 maxlen: 48
2001:3680:e::/48 maxlen: 48
2001:3680:f::/48 maxlen: 48
2001:3680:10::/48 maxlen: 48
2001:3680:11::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/vAB4on8QAyY8TFYbAlB2by9Sbn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/vAB4on8QAyY8TFYbAlB2by9Sbn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vAB4on8QAyY8TFYbAlB2by9Sbn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:05:bd:be:41:15:d9:cf:67:a6:2a:67:19:a8:cc:46:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc0078a27f1003263c4c561b0250766f2f526e7d
Validity
Not Before: Nov 7 08:29:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d4ad790f7786398e796c7d5bfc819c38c022d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:55:5e:68:e5:87:a4:35:d2:6c:1c:67:79:08:
57:a8:a0:74:65:75:e8:b6:39:22:5d:ee:08:11:e4:
e6:d7:64:d9:7b:8a:c0:9e:66:7b:4d:97:3c:1f:8e:
7c:5f:f1:94:ae:52:8d:b8:ba:f3:86:e0:09:4c:81:
5f:bb:b5:d8:67:7d:e6:fe:94:79:a8:83:23:e6:97:
32:63:cf:f9:62:d8:b6:6b:77:17:a3:10:00:be:f5:
8e:d8:fe:c9:40:6f:e4:8d:25:8f:72:94:fc:90:a1:
57:16:dc:a7:67:7f:23:7d:b5:19:fc:b8:67:2e:ec:
80:a5:d7:5c:bc:35:b9:b8:44:45:0f:b5:55:c9:75:
3f:df:9d:8c:a1:e3:08:f9:42:cf:92:3a:b2:56:3c:
fa:19:9e:97:05:e3:2d:64:9d:80:11:08:8b:ef:cc:
60:ad:de:a6:ee:c7:41:f6:2a:70:21:09:95:cb:31:
98:4b:d1:4d:4e:07:1b:a4:ae:8d:8f:65:4c:2b:b5:
ad:a5:1d:2d:ad:d7:57:7a:0b:14:04:02:41:93:19:
11:ef:55:73:82:e7:2c:93:63:3f:24:db:4c:ad:83:
83:2c:6d:3d:f4:38:64:cb:43:77:95:12:0f:38:a0:
3c:d8:c1:db:9f:1c:27:f8:c8:a9:03:c0:58:3f:17:
65:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4A:D7:90:F7:78:63:98:E7:96:C7:D5:BF:C8:19:C3:8C:02:2D:7C
X509v3 Authority Key Identifier:
keyid:BC:00:78:A2:7F:10:03:26:3C:4C:56:1B:02:50:76:6F:2F:52:6E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vAB4on8QAyY8TFYbAlB2by9Sbn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/TUrXkPd4Y5jnlsfVv8gZw4wCLXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/vAB4on8QAyY8TFYbAlB2by9Sbn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3680::/29
Signature Algorithm: sha256WithRSAEncryption
47:fc:01:46:cf:97:b2:c9:2d:37:b7:af:f2:0c:ca:0e:08:6e:
cc:66:4f:06:a9:d0:a9:7a:91:a1:ec:66:b7:cb:49:71:8b:40:
6a:83:9d:f7:2b:b2:2e:40:7d:8c:0d:94:2f:ff:9b:b1:f9:99:
c2:e0:5c:8a:13:5b:f1:0b:4c:45:27:f0:57:06:e1:34:68:bd:
a5:d6:39:1f:d1:02:da:a1:f6:56:ab:38:5d:98:44:3c:c4:15:
e3:bb:20:25:59:de:a3:db:65:23:dc:9f:c9:3f:ab:16:95:10:
23:d2:6d:39:f8:3d:de:fe:31:c1:62:47:a7:d4:dd:62:25:91:
c6:68:7d:a0:5c:23:ca:c3:b4:e4:62:8f:a1:d1:52:5f:33:79:
15:b3:6d:16:2e:b5:c4:b5:42:c7:0f:95:50:bf:68:a1:58:8c:
76:24:d6:58:9d:8e:f8:fa:f2:88:54:13:dc:0d:ea:c6:c5:9c:
5c:a0:1a:1b:2e:f6:f6:43:56:b9:d6:1b:e5:6c:b0:5f:78:e2:
16:dd:11:89:18:04:2a:f8:cb:9e:e2:dd:f1:30:e1:66:04:b8:
23:80:1f:15:de:ad:40:de:27:ab:2b:1c:70:9e:55:61:31:84:
37:28:66:e6:98:07:ef:d4:62:2f:fc:e9:ac:6e:d1:19:f4:72:
c5:56:56:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:26:16 2024 by rpki-client on console-ams.rpki-client.org