Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/2zuiWIRVsCGIMXZP-VUiRKrJsBw.roa
File: 2zuiWIRVsCGIMXZP-VUiRKrJsBw.roa (raw, json)
Hash identifier: rDrN2/1yqI2isO0bDwSecP+OryMGm57h1qiBG+FZP9o=
Subject key identifier: DB:3B:A2:58:84:55:B0:21:88:31:76:4F:F9:55:22:44:AA:C9:B0:1C
Certificate issuer: /CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Certificate serial: 0192AED6D1E7EBCABD54BE3A5A6C60DACA3D
Authority key identifier: B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/2zuiWIRVsCGIMXZP-VUiRKrJsBw.roa
Signing time: Mon 21 Oct 2024 11:29:26 +0000
ROA not before: Mon 21 Oct 2024 11:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8239
IP address blocks: 212.59.192.0/19 maxlen: 19
213.192.196.0/24 maxlen: 24
2001:ac0:c800::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:d6:d1:e7:eb:ca:bd:54:be:3a:5a:6c:60:da:ca:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Validity
Not Before: Oct 21 11:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db3ba2588455b0218831764ff9552244aac9b01c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:04:72:9f:4b:a4:7e:09:7c:76:e0:c8:de:ed:
71:ee:e3:83:83:b6:9f:08:47:85:ae:37:d7:d8:92:
6e:77:7f:aa:50:30:3b:b9:b4:68:9d:1a:dc:5c:ff:
a3:d1:37:a1:38:fe:31:49:34:67:62:22:25:e5:45:
eb:5c:86:f1:5a:01:0e:78:16:60:64:74:0b:57:e9:
3f:96:2a:fe:af:7b:cc:5a:55:05:81:a9:40:05:ed:
83:ba:e5:fc:99:3b:58:cb:cd:5d:ce:98:76:b8:41:
77:e2:62:5c:44:1c:45:8f:02:f2:e6:f7:f4:4e:a0:
7a:31:c0:78:72:a8:db:6d:e1:fb:e2:d5:cb:9b:0c:
d6:5c:36:db:f4:3a:36:fc:c1:48:f0:5e:72:7f:44:
40:be:0c:d3:68:90:fc:05:61:35:73:73:af:39:a5:
9f:3b:8e:b1:59:a2:ff:a8:57:f2:74:4b:a8:36:1e:
a8:16:18:63:42:db:ae:48:25:c9:8f:4a:d4:a5:29:
e0:d4:bf:00:88:f6:78:32:62:4d:2a:6b:f7:b2:fc:
40:b3:dc:3d:eb:f9:6a:1a:95:19:e4:17:7d:e2:a0:
ea:52:30:96:69:be:11:90:f4:4c:57:10:a0:7a:45:
5d:53:35:7c:2b:d2:63:48:57:31:52:ed:83:4f:1e:
ef:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3B:A2:58:84:55:B0:21:88:31:76:4F:F9:55:22:44:AA:C9:B0:1C
X509v3 Authority Key Identifier:
keyid:B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/2zuiWIRVsCGIMXZP-VUiRKrJsBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.59.192.0/19
213.192.196.0/24
IPv6:
2001:ac0:c800::/44
Signature Algorithm: sha256WithRSAEncryption
7c:e3:11:13:96:5e:6d:64:3e:19:79:33:c8:03:9b:a2:4c:18:
91:22:71:b5:b7:2d:8b:cd:b4:14:4d:dd:d1:63:7f:57:d1:4a:
60:cb:11:a9:60:6f:36:e9:66:7d:d4:ec:c2:ec:67:82:e6:76:
a1:7b:0e:f1:80:1d:c3:42:90:40:c7:44:99:8a:5e:7d:52:cb:
92:87:70:6f:cb:92:45:9d:c2:28:56:e7:15:3c:ab:a5:b7:b3:
cd:18:e6:fc:2a:1b:2c:f8:16:ce:71:89:9f:43:fb:21:32:93:
99:8b:21:58:89:9b:85:33:60:fd:47:c2:83:eb:2f:2e:a5:58:
94:a4:4a:74:48:e0:7a:83:0c:9a:d2:84:0e:f4:1a:a2:c0:b7:
17:0c:cf:2c:bc:38:02:14:e7:30:48:82:3f:a5:3d:f2:69:ba:
70:11:e9:90:56:13:67:bf:f0:77:c4:12:d7:9e:26:cb:b6:45:
08:4e:c9:99:0b:1c:4e:23:29:27:48:63:86:62:43:2a:d7:d2:
1e:ad:18:b8:8d:06:8a:2f:17:2b:62:f3:56:4e:87:b7:a9:10:
5b:91:eb:11:63:d0:34:92:96:5a:43:80:e4:c6:c1:38:f0:7f:
a8:c6:04:d5:29:26:60:fe:94:19:20:04:31:0d:19:ef:46:ba:
e8:5e:60:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:07:26 2024 by rpki-client on console-ams.rpki-client.org