Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/PCMZrySC-VCNsPDV5_9jmKIKP1c.roa
File: PCMZrySC-VCNsPDV5_9jmKIKP1c.roa (raw, json)
Hash identifier: 7Txvl8WafhxeR9516i58V1C/FJ2qhO9vUa7fwdK3cQ0=
Subject key identifier: 3C:23:19:AF:24:82:F9:50:8D:B0:F0:D5:E7:FF:63:98:A2:0A:3F:57
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018CC3488C0005A58FDB866C3352051AA696
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/PCMZrySC-VCNsPDV5_9jmKIKP1c.roa
Signing time: Mon 01 Jan 2024 04:29:20 +0000
ROA not before: Mon 01 Jan 2024 04:29:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 945
IP address blocks: 2a0d:2582::/32 maxlen: 32
2a0c:e644::/30 maxlen: 30
2a0d:2685::/32 maxlen: 32
2a0d:2584::/32 maxlen: 32
2a05:1084::/32 maxlen: 32
2a0c:e640::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:8c:00:05:a5:8f:db:86:6c:33:52:05:1a:a6:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 04:29:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c2319af2482f9508db0f0d5e7ff6398a20a3f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:71:24:ea:a4:a8:93:79:10:59:9d:48:04:c4:
ea:3b:7b:14:66:15:15:9a:bd:08:67:c4:1e:1c:1d:
83:83:fb:5a:b6:4a:c6:32:7a:3f:98:0c:6b:32:b9:
ac:43:3e:8b:4f:f2:bb:f7:b3:d5:5a:4e:7c:9f:8f:
a5:42:a5:5f:e0:92:49:8b:fe:2e:b3:c8:9d:12:f3:
f8:5d:42:81:07:69:34:b9:8b:bc:d2:75:f0:ce:55:
e7:63:6e:ab:05:3e:e4:d3:a3:7d:3f:f9:32:94:24:
a7:d7:ab:fd:f1:bf:56:26:66:1a:dd:47:99:43:c7:
c3:34:4f:5c:a5:ba:af:a1:2c:e5:5d:21:a9:91:46:
6d:61:29:d1:b9:6f:2f:f3:cb:cb:35:13:c4:3d:72:
b1:f8:dc:d6:2c:1f:c7:f8:62:68:38:b6:f3:fd:14:
28:1c:08:8e:0b:fc:55:7a:87:a3:da:24:03:d9:6c:
e1:68:37:e2:0a:86:f4:28:ab:74:c5:e0:76:e4:a4:
87:cd:16:d6:8b:50:ee:86:7a:01:64:da:e3:19:68:
ff:ea:59:c4:ce:b5:43:20:fe:0d:eb:01:c4:5c:07:
fb:e1:21:f3:94:36:8f:09:26:05:b2:f9:86:13:d3:
90:0c:c8:28:ab:54:65:0a:8f:b2:47:b0:e6:ee:fd:
4c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:23:19:AF:24:82:F9:50:8D:B0:F0:D5:E7:FF:63:98:A2:0A:3F:57
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/PCMZrySC-VCNsPDV5_9jmKIKP1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1084::/32
2a0c:e640::/32
2a0c:e644::/30
2a0d:2582::/32
2a0d:2584::/32
2a0d:2685::/32
Signature Algorithm: sha256WithRSAEncryption
7a:54:fa:64:fb:ff:14:c8:22:59:92:27:ca:29:23:9f:29:f6:
6f:31:2c:3b:70:80:17:30:73:4d:bc:48:ea:78:03:20:62:d1:
b3:9a:6b:53:d2:6d:3f:21:c8:2d:61:0c:7c:87:9f:ce:75:ff:
0e:f6:3d:c7:75:6e:22:66:9e:e4:d9:99:00:5d:28:16:48:b6:
d6:23:46:c6:e2:47:2b:11:68:88:1f:d7:5d:5a:a0:78:56:b7:
a7:e3:cb:c6:ce:84:42:57:8b:e0:75:c5:5f:b5:9c:78:f3:72:
ba:3a:15:f5:b7:b6:17:d6:ca:ff:a1:75:bb:7f:83:10:1a:69:
87:0a:6b:77:9d:d3:39:0c:a8:51:7c:95:d3:1b:7a:7c:a9:56:
73:56:5e:f2:79:d1:42:9f:24:05:31:e7:31:b2:c4:27:1e:99:
1e:2a:b1:0b:60:73:fa:f5:f9:fa:d7:1a:8e:c1:8e:40:8e:94:
55:0c:75:3a:a7:8f:2b:aa:2d:49:e3:f0:8b:e3:75:50:f3:3b:
5d:0c:d5:95:76:6c:22:3d:e8:30:92:07:87:be:3f:73:02:62:
95:29:77:f6:59:ca:a9:47:0b:c9:57:ed:ed:d3:14:38:6f:0a:
d3:17:8b:81:cf:db:0a:4a:38:db:b0:32:d1:dd:ab:f2:a9:c4:
8c:6d:b5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:34:47 2024 by rpki-client on console-ams.rpki-client.org