Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/zx7iXx5Paa8xSmK0SBGa8fHEMnU.roa
File: zx7iXx5Paa8xSmK0SBGa8fHEMnU.roa (raw, json)
Hash identifier: 9ObvcFLPelDdxYdrtT+11HAfCWov9fZzpXGtozlpywI=
Subject key identifier: CF:1E:E2:5F:1E:4F:69:AF:31:4A:62:B4:48:11:9A:F1:F1:C4:32:75
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018CC34897D9E950E30127F2C4696A97BF46
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/zx7iXx5Paa8xSmK0SBGa8fHEMnU.roa
Signing time: Mon 01 Jan 2024 04:29:23 +0000
ROA not before: Mon 01 Jan 2024 04:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211035
IP address blocks: 2a0d:2580:db18::/48 maxlen: 48
2a0d:2580:db13::/48 maxlen: 48
2a0d:2580:db03::/48 maxlen: 48
2a0d:2580:db1e::/48 maxlen: 48
2a0d:2580:db19::/48 maxlen: 48
2a0d:2580:db1c::/48 maxlen: 48
2a0d:2580:db12::/48 maxlen: 48
2a0d:2580:db02::/48 maxlen: 48
2a0d:2580:db1d::/48 maxlen: 48
2a0d:2580:db10::/48 maxlen: 48
2a0d:2580:db1b::/48 maxlen: 48
2a0d:2580:db11::/48 maxlen: 48
2a0d:2580:db01::/48 maxlen: 48
2a0d:2580:db1f::/48 maxlen: 48
2a0d:2580:db1a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:97:d9:e9:50:e3:01:27:f2:c4:69:6a:97:bf:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 04:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf1ee25f1e4f69af314a62b448119af1f1c43275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:0d:cc:c0:5b:2e:8c:07:be:ce:d6:6a:f3:
61:ca:aa:78:ba:c4:4a:b2:4b:91:61:e7:e0:80:55:
6a:27:f7:0d:91:e0:b6:ba:2a:c6:c5:5d:90:f4:29:
1c:72:69:0a:6d:42:7d:79:81:0b:f6:a0:3b:6b:11:
28:96:7c:b5:d9:ae:13:8d:5f:30:56:bf:51:cd:61:
20:1d:1c:82:dc:5b:46:ef:b9:fa:c2:d1:13:c0:86:
66:8f:7b:fc:98:2b:3c:94:21:42:97:00:d5:5d:a0:
7e:ea:0b:3a:56:af:d2:44:f7:b1:d2:ec:43:49:07:
27:df:d4:0a:1e:ba:00:31:89:6a:2a:d8:f1:d2:a5:
29:df:a3:d3:51:f0:2d:23:8b:96:27:a8:50:13:40:
e3:19:91:94:24:07:2c:55:6e:27:ac:d0:bb:5c:a9:
bf:16:e2:9f:0b:c6:59:c9:61:87:d4:8f:f2:99:21:
a3:aa:db:e9:5d:a8:b0:61:bb:2f:b5:e7:f8:e3:2c:
c1:d9:30:88:6e:dc:15:46:f0:1b:01:aa:84:2e:9e:
47:38:56:2d:33:53:19:c9:31:c4:ea:e6:12:3f:87:
1c:6a:0d:ac:7a:f3:c4:68:80:ef:84:8b:4a:49:a1:
10:48:76:e3:55:84:ff:b0:71:71:8e:c3:ea:49:fb:
d6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1E:E2:5F:1E:4F:69:AF:31:4A:62:B4:48:11:9A:F1:F1:C4:32:75
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/zx7iXx5Paa8xSmK0SBGa8fHEMnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2580:db01::-2a0d:2580:db03:ffff:ffff:ffff:ffff:ffff
2a0d:2580:db10::/46
2a0d:2580:db18::/45
Signature Algorithm: sha256WithRSAEncryption
9a:21:97:4c:42:0b:94:82:e8:8c:75:12:13:9e:96:1f:8c:2f:
d2:18:5e:8a:97:1e:eb:4f:c2:c4:f4:86:4d:07:75:d3:e2:fa:
21:49:19:f6:03:be:1f:92:34:1a:c8:b0:34:c1:82:83:1d:28:
ab:87:fa:b1:22:53:f9:81:b9:a4:29:01:ff:90:f1:cc:44:95:
22:3b:22:5c:45:ee:b0:c7:98:a7:98:b9:03:44:85:93:e5:28:
58:f3:24:c3:2d:9f:52:c3:04:e1:3c:26:c8:d9:9a:81:11:42:
04:2b:5b:06:6a:27:5e:1f:31:95:fd:e6:d1:f9:68:32:9c:12:
50:84:e0:2d:7f:a5:9b:e5:b6:40:2c:47:09:f2:86:e2:6a:e0:
1b:ae:63:0f:dc:cb:18:96:aa:80:48:97:23:7c:3b:52:9e:91:
eb:66:b4:78:d9:88:98:14:69:a6:12:ea:54:dc:9a:d4:d4:77:
b5:ea:fb:96:5f:92:e1:f5:31:4a:46:13:63:8d:31:fb:9c:59:
21:20:85:38:3f:2b:0f:78:14:2c:26:0e:80:68:23:a7:47:15:
1a:c0:32:49:93:ef:e1:3c:9f:9f:3b:44:2d:a4:79:5d:8a:90:
77:8a:6a:e9:60:fc:c8:34:a6:46:52:72:58:44:34:6e:e6:11:
a7:83:ba:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:40:04 2024 by rpki-client on console-ams.rpki-client.org