Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8eddf2-7d7c-44a3-b0fd-110b768bf4c0/1/djwolaPjpW-QAh_ugCt_H9Gb0Es.roa
File: djwolaPjpW-QAh_ugCt_H9Gb0Es.roa (raw, json)
Hash identifier: qEO6q19K0+ONXhDZglLg4z8CtLYW8BZHeiuR45M1mSc=
Subject key identifier: 76:3C:28:95:A3:E3:A5:6F:90:02:1F:EE:80:2B:7F:1F:D1:9B:D0:4B
Certificate issuer: /CN=9a26657e6b25449425b748645e7420c76ac2b3a4
Certificate serial: 01904A6077C2053B306F0F0B4DA8E8745474
Authority key identifier: 9A:26:65:7E:6B:25:44:94:25:B7:48:64:5E:74:20:C7:6A:C2:B3:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/miZlfmslRJQlt0hkXnQgx2rCs6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8eddf2-7d7c-44a3-b0fd-110b768bf4c0/1/djwolaPjpW-QAh_ugCt_H9Gb0Es.roa
Signing time: Mon 24 Jun 2024 13:12:34 +0000
ROA not before: Mon 24 Jun 2024 13:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42375
IP address blocks: 2a07:d940::/29 maxlen: 29
2a11:3840::/29 maxlen: 29
2a11:52c0::/29 maxlen: 29
2a11:7780::/29 maxlen: 29
2a11:78c0::/29 maxlen: 29
2a11:8d80::/29 maxlen: 29
2a11:8ec0::/29 maxlen: 29
2a11:fe00::/29 maxlen: 29
2a12:3400::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8eddf2-7d7c-44a3-b0fd-110b768bf4c0/1/miZlfmslRJQlt0hkXnQgx2rCs6Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/8eddf2-7d7c-44a3-b0fd-110b768bf4c0/1/miZlfmslRJQlt0hkXnQgx2rCs6Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/miZlfmslRJQlt0hkXnQgx2rCs6Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:60:77:c2:05:3b:30:6f:0f:0b:4d:a8:e8:74:54:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a26657e6b25449425b748645e7420c76ac2b3a4
Validity
Not Before: Jun 24 13:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=763c2895a3e3a56f90021fee802b7f1fd19bd04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ec:a9:38:e9:08:eb:75:a3:ea:44:48:ba:15:
5f:39:70:96:da:d4:88:24:64:c4:5c:e0:7e:32:9d:
08:a0:72:95:8b:04:36:8c:a9:09:7e:ec:31:93:e2:
99:d7:1c:d3:82:ce:b9:7e:93:e4:5e:7c:94:f5:32:
e4:fe:1d:c0:9a:20:c6:95:16:0b:79:b6:a0:29:3e:
c8:a2:91:4e:c5:8a:17:4d:ca:ec:ec:53:e5:f5:f1:
c1:25:53:9f:c2:4f:24:20:23:ec:7b:10:a5:42:6e:
c2:81:90:2d:9c:b4:54:93:56:81:a3:53:de:d2:8b:
64:04:94:10:76:f5:05:42:5a:e1:50:02:1a:8e:60:
92:39:e9:3a:96:cb:85:fd:ef:3f:5b:5e:44:6e:da:
30:23:6f:c2:e8:96:fc:aa:f5:81:95:3f:67:ba:8c:
9a:2f:56:a1:03:be:85:3a:b2:7b:dd:46:4f:56:09:
dc:4b:71:14:4d:22:7b:01:ac:fe:c3:74:09:64:d6:
9f:e8:79:a9:8c:1c:74:ea:d1:42:a4:34:12:a9:f3:
9f:76:b1:52:81:b7:4c:b4:5b:59:49:92:d6:d0:9f:
88:d5:3e:dd:f9:3e:dc:db:72:e5:7a:95:c4:64:50:
5d:88:54:99:45:2d:75:67:1e:2d:1d:f6:39:73:c2:
4d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3C:28:95:A3:E3:A5:6F:90:02:1F:EE:80:2B:7F:1F:D1:9B:D0:4B
X509v3 Authority Key Identifier:
keyid:9A:26:65:7E:6B:25:44:94:25:B7:48:64:5E:74:20:C7:6A:C2:B3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miZlfmslRJQlt0hkXnQgx2rCs6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8eddf2-7d7c-44a3-b0fd-110b768bf4c0/1/djwolaPjpW-QAh_ugCt_H9Gb0Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8eddf2-7d7c-44a3-b0fd-110b768bf4c0/1/miZlfmslRJQlt0hkXnQgx2rCs6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:d940::/29
2a11:3840::/29
2a11:52c0::/29
2a11:7780::/29
2a11:78c0::/29
2a11:8d80::/29
2a11:8ec0::/29
2a11:fe00::/29
2a12:3400::/29
Signature Algorithm: sha256WithRSAEncryption
52:16:a6:88:c6:f6:a7:95:70:ce:e3:1d:d7:85:c5:c9:7f:d2:
9c:41:5c:e9:35:a8:21:03:78:d9:da:bd:e0:6e:da:ea:8f:d6:
e3:eb:86:2c:88:26:a8:57:98:0a:19:a2:51:90:52:c7:1a:1c:
6c:04:a3:cb:ad:1a:6d:21:85:6a:89:a0:46:7f:d0:5f:85:3f:
6f:63:5a:80:32:52:14:46:cb:85:a8:0f:9e:f7:4e:db:50:4f:
2c:e5:6b:ec:b2:cd:11:de:ca:84:35:4c:08:8b:8b:a4:16:91:
bc:f7:d3:9c:15:45:58:93:1a:4d:d9:eb:93:1c:13:ee:e3:8a:
e6:41:6d:df:fc:8d:3d:2d:f3:fa:fa:3b:ea:19:c3:2c:67:29:
ea:ea:8c:53:fc:9d:d0:ca:c6:c5:25:88:db:aa:33:fd:99:0a:
6c:9d:b6:38:2b:76:79:3d:29:cf:5b:df:10:cb:55:7e:2a:93:
70:2d:ca:ab:36:4f:08:57:6d:d7:41:dc:7c:27:ce:f1:bc:0d:
81:93:bf:18:49:dc:f6:99:72:db:fe:05:00:60:12:2f:c2:ee:
9b:8d:bd:d4:c8:04:74:33:43:84:15:6b:b1:08:1e:36:03:27:
04:8d:9c:b2:48:8c:c9:5f:d7:ae:da:26:89:9f:1e:e4:8b:8e:
ad:06:22:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:22:48 2024 by rpki-client on console-fra.rpki-client.org