Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6d7c1c-8ebd-4246-83f9-5f3cc318f180/1/bIn-sIL0xNjhUritGk9asVhA9W4.roa
File: bIn-sIL0xNjhUritGk9asVhA9W4.roa (raw, json)
Hash identifier: viJ6jMzso79T8y/CmZorkYd3Lzu+v4dDERrD4NZyHrs=
Subject key identifier: 6C:89:FE:B0:82:F4:C4:D8:E1:52:B8:AD:1A:4F:5A:B1:58:40:F5:6E
Certificate issuer: /CN=0c048b5f815235c393fea761e07eb8b8bbf87fd3
Certificate serial: 019367E5709763577DEDC80225286E8CE98F
Authority key identifier: 0C:04:8B:5F:81:52:35:C3:93:FE:A7:61:E0:7E:B8:B8:BB:F8:7F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DASLX4FSNcOT_qdh4H64uLv4f9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6d7c1c-8ebd-4246-83f9-5f3cc318f180/1/bIn-sIL0xNjhUritGk9asVhA9W4.roa
Signing time: Tue 26 Nov 2024 09:55:09 +0000
ROA not before: Tue 26 Nov 2024 09:55:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56588
IP address blocks: 46.226.136.0/21 maxlen: 21
46.226.137.0/24 maxlen: 24
2a00:6a00::/29 maxlen: 29
2a00:6a00::/32 maxlen: 32
2a00:6a07::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6d7c1c-8ebd-4246-83f9-5f3cc318f180/1/DASLX4FSNcOT_qdh4H64uLv4f9M.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/6d7c1c-8ebd-4246-83f9-5f3cc318f180/1/DASLX4FSNcOT_qdh4H64uLv4f9M.mft
rsync://rpki.ripe.net/repository/DEFAULT/DASLX4FSNcOT_qdh4H64uLv4f9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:e5:70:97:63:57:7d:ed:c8:02:25:28:6e:8c:e9:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c048b5f815235c393fea761e07eb8b8bbf87fd3
Validity
Not Before: Nov 26 09:55:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c89feb082f4c4d8e152b8ad1a4f5ab15840f56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3a:e8:2e:05:f2:11:c5:cc:c3:f7:8d:d7:fe:
ce:e3:41:f6:94:50:3e:2a:ea:0c:73:3f:49:44:1c:
f6:48:54:35:fd:7e:a5:1f:3a:52:af:24:ee:d1:98:
88:07:23:46:10:7a:d6:06:6f:e1:8f:b2:c9:bd:90:
db:fb:02:c5:85:30:0c:6e:8f:5c:d1:ae:3d:7c:d5:
52:da:8a:14:19:c6:0a:b3:88:44:3d:75:98:6e:f4:
be:99:97:90:cc:9e:32:9c:91:2b:38:69:a9:36:75:
4b:b4:11:5e:d8:b9:c8:1d:15:f1:7c:44:ce:8b:37:
97:ff:d3:7e:52:a8:6f:6d:03:4a:0f:d1:cc:9c:1a:
5c:03:a8:64:ab:73:60:27:07:f6:52:60:ba:7d:4f:
2c:c1:0e:04:05:e1:91:b1:93:df:35:9f:ee:9b:b1:
fe:1f:73:a8:23:d9:56:1c:90:5d:80:ea:34:77:af:
84:67:7d:0f:55:74:a6:28:dd:89:a0:90:0b:65:82:
fe:3f:c3:bb:77:e9:b1:74:71:6a:3d:9b:34:32:01:
d3:a6:cd:3d:25:16:30:c7:84:bf:35:d6:42:58:36:
54:f0:5b:bb:8b:cd:87:ba:e3:f5:fd:6d:11:8c:2e:
17:d3:a1:d0:ce:a2:69:fa:4b:ee:fa:77:96:09:8e:
fd:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:89:FE:B0:82:F4:C4:D8:E1:52:B8:AD:1A:4F:5A:B1:58:40:F5:6E
X509v3 Authority Key Identifier:
keyid:0C:04:8B:5F:81:52:35:C3:93:FE:A7:61:E0:7E:B8:B8:BB:F8:7F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DASLX4FSNcOT_qdh4H64uLv4f9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6d7c1c-8ebd-4246-83f9-5f3cc318f180/1/bIn-sIL0xNjhUritGk9asVhA9W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6d7c1c-8ebd-4246-83f9-5f3cc318f180/1/DASLX4FSNcOT_qdh4H64uLv4f9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.136.0/21
IPv6:
2a00:6a00::/29
Signature Algorithm: sha256WithRSAEncryption
06:74:4d:26:9a:c9:ef:94:1e:91:83:88:ef:49:4b:eb:65:8f:
6d:ad:85:44:09:23:7a:99:3e:b6:1a:fe:ed:99:91:c3:f6:5a:
ff:76:16:c8:27:99:51:b3:b6:eb:96:37:13:e9:e3:be:a4:69:
de:8e:16:19:09:43:36:3c:7c:ba:73:88:5f:b2:53:d5:21:a0:
ab:32:40:51:c0:1f:6f:81:9b:a1:55:ad:16:ae:5f:59:8c:37:
31:a4:8a:f4:39:e4:65:7c:2d:f7:3b:b0:9b:33:3f:52:a4:4e:
90:f3:60:af:f6:a9:9d:00:b6:eb:ee:34:ce:db:f2:52:1f:90:
f2:45:d8:57:14:be:e8:bf:71:dc:86:6f:d9:95:7e:9f:bc:0b:
84:17:9f:b1:d4:d7:87:ea:2e:85:1f:50:26:fe:9f:38:51:05:
55:47:0e:dd:5a:c5:c3:2e:0c:c8:09:0d:89:14:14:4b:74:39:
d0:c3:b2:51:e8:21:69:12:07:71:bb:25:77:63:37:1d:86:05:
60:64:18:2e:a4:3b:28:9d:20:fc:58:28:e9:59:14:f3:60:5d:
aa:fd:0a:07:54:a3:9d:00:88:50:49:17:69:f2:bf:91:2b:0f:
9f:4e:ac:fb:50:7c:7b:95:85:64:1f:ff:c9:cd:02:35:eb:b1:
65:aa:06:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:44:12 2024 by rpki-client on console-fra.rpki-client.org