Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/Drz6961joNI9S9EqmzOyiutAxbw.roa
File: Drz6961joNI9S9EqmzOyiutAxbw.roa (raw, json)
Hash identifier: qyfCCNDgQF/5xDig0kcMkAaVHiUh75Mapw+2bPkILKo=
Subject key identifier: 0E:BC:FA:F7:AD:63:A0:D2:3D:4B:D1:2A:9B:33:B2:8A:EB:40:C5:BC
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 0191368BEA17B9B5D4292CA656F11D7C60D8
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/Drz6961joNI9S9EqmzOyiutAxbw.roa
Signing time: Fri 09 Aug 2024 09:50:24 +0000
ROA not before: Fri 09 Aug 2024 09:50:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:8f80::/32 maxlen: 32
2a11:8f82::/32 maxlen: 32
2a11:8f84::/32 maxlen: 32
2a11:8f87::/32 maxlen: 32
2a11:f180::/32 maxlen: 32
2a11:f181::/32 maxlen: 32
2a11:f183::/32 maxlen: 32
2a11:f185::/32 maxlen: 32
2a11:fb44::/32 maxlen: 32
2a12:1803::/32 maxlen: 32
2a12:1805::/32 maxlen: 32
2a12:1cc1::/32 maxlen: 32
2a12:1cc5::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:36:8b:ea:17:b9:b5:d4:29:2c:a6:56:f1:1d:7c:60:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Aug 9 09:50:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ebcfaf7ad63a0d23d4bd12a9b33b28aeb40c5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:36:b4:bd:76:ba:13:57:3b:08:1b:8a:46:40:
cc:2a:59:1d:a3:83:52:ff:1d:df:0a:9c:36:e4:cb:
bc:23:7a:7a:e3:57:e3:7e:9e:65:e7:10:78:b9:ef:
87:2c:b0:bb:08:80:d1:24:fe:32:59:dd:ec:7b:bb:
8c:33:c1:e1:cd:71:9c:d7:f0:a9:6f:f0:05:8c:ba:
11:cd:f9:64:dc:f0:3d:fd:50:99:d6:75:3e:5f:41:
58:b6:cf:d8:77:05:33:af:ac:8e:41:5c:cb:0d:53:
9f:4c:7f:22:4c:c1:5f:e7:ba:03:c8:61:40:d4:65:
ef:ae:1d:5f:ad:02:0a:64:68:53:1d:44:de:2e:a9:
26:df:35:8d:e7:4b:6f:53:e0:8a:94:66:9f:85:eb:
4b:1a:5b:11:a8:73:ad:ce:c6:48:b4:a0:fb:56:04:
a9:06:40:7a:f1:85:35:2a:14:31:68:20:fa:d2:58:
5b:bc:55:83:cd:ae:5f:e7:8d:92:ef:42:35:e7:d8:
a2:94:a0:14:86:46:63:da:e8:49:04:fb:53:b6:a3:
ed:85:77:39:ed:00:ea:d9:bf:b9:b3:25:6d:33:4a:
83:f6:52:6a:44:63:89:16:98:21:ba:0b:49:1f:ac:
99:04:14:99:da:53:8e:b3:44:8e:65:81:cf:a1:16:
78:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BC:FA:F7:AD:63:A0:D2:3D:4B:D1:2A:9B:33:B2:8A:EB:40:C5:BC
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/Drz6961joNI9S9EqmzOyiutAxbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8f80::/32
2a11:8f82::/32
2a11:8f84::/32
2a11:8f87::/32
2a11:f180::/31
2a11:f183::/32
2a11:f185::/32
2a11:fb44::/32
2a12:1803::/32
2a12:1805::/32
2a12:1cc1::/32
2a12:1cc5::/32
Signature Algorithm: sha256WithRSAEncryption
05:f1:65:ef:75:7f:57:bb:64:27:13:98:0d:48:81:bd:37:ce:
5f:2c:02:03:e9:17:76:2f:a9:34:63:f1:6b:c1:7a:ed:21:67:
b1:9b:23:33:fa:a9:90:ed:0d:3f:03:3e:a9:36:9f:3d:7c:4e:
ff:42:d5:7d:2c:01:c2:e2:5d:6d:9d:97:07:99:59:0a:f8:20:
3a:1f:9b:ba:b2:e8:b6:47:14:3b:ea:9f:b9:e2:b5:37:8a:a8:
de:d0:b2:0f:4d:c5:b7:12:f6:20:64:28:5e:e6:0b:3c:5c:b0:
e1:e1:65:77:7b:08:27:a8:3b:0c:e5:a4:71:be:27:5a:2b:cb:
f6:5e:29:53:9a:9c:23:1b:b2:80:08:a6:8f:df:78:7f:49:25:
61:d0:b4:c0:cd:e3:85:44:a7:be:bc:4d:89:c1:59:6d:99:5a:
5e:07:cc:84:1d:59:a5:c6:4c:9a:bf:6d:c6:54:93:11:b7:2e:
b8:9b:5d:e9:5c:39:d5:15:25:fd:32:5e:0e:af:c7:26:db:f3:
44:fe:f8:1c:8e:2d:8f:b1:62:41:d0:fe:88:27:02:b3:12:05:
e4:fc:02:a3:36:66:3c:f1:fc:e6:c7:7d:a7:66:2e:48:7c:37:
25:c7:97:ab:1e:6e:5d:ac:94:57:79:85:47:d6:d2:c9:1d:f4:
7b:26:50:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:54:38 2024 by rpki-client on console-fra.rpki-client.org