Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/PiOLvjeAguPppY49znhBf1M8_Lw.roa
File: PiOLvjeAguPppY49znhBf1M8_Lw.roa (raw, json)
Hash identifier: O1AW4KFUdmO5X1W6u5qXYJZP8LKulY7D5/Er3Ov60eM=
Subject key identifier: 3E:23:8B:BE:37:80:82:E3:E9:A5:8E:3D:CE:78:41:7F:53:3C:FC:BC
Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial: 018CC8712DDC3EB98E4DC2F1F56D121CAF3C
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/PiOLvjeAguPppY49znhBf1M8_Lw.roa
Signing time: Tue 02 Jan 2024 04:31:49 +0000
ROA not before: Tue 02 Jan 2024 04:31:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51559
IP address blocks: 2a06:c400::/48 maxlen: 48
2a06:c400:b::/48 maxlen: 48
2a06:c400:6::/48 maxlen: 48
2a06:c400:1::/48 maxlen: 48
2a06:c400:4::/48 maxlen: 48
2a06:c400:f::/48 maxlen: 48
2a06:c400:a::/48 maxlen: 48
2a06:c400:5::/48 maxlen: 48
2a06:c400:8::/48 maxlen: 48
2a06:c400:3::/48 maxlen: 48
2a06:c400:e::/48 maxlen: 48
2a06:c400:9::/48 maxlen: 48
2a06:c400:c::/48 maxlen: 48
2a06:c400:7::/48 maxlen: 48
2a06:c400:2::/48 maxlen: 48
2a06:c400:d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 10:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:2d:dc:3e:b9:8e:4d:c2:f1:f5:6d:12:1c:af:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Validity
Not Before: Jan 2 04:31:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e238bbe378082e3e9a58e3dce78417f533cfcbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5a:84:b7:b1:1d:5c:fd:17:8e:73:e1:1e:92:
00:b1:2e:f0:db:34:28:d2:79:56:7e:c9:02:56:df:
48:ca:2a:0b:a6:42:a2:10:74:c4:5b:d1:23:a1:e4:
eb:0f:aa:60:74:c7:e5:91:96:e6:6d:d3:9b:85:3d:
71:1e:4b:ca:a4:03:81:46:18:f1:6f:4a:30:19:79:
e1:cc:b4:17:7e:68:8d:6f:bb:c5:5f:f9:d2:10:f3:
b5:d6:92:a3:7f:b9:c6:f7:44:89:93:a3:0f:32:62:
e7:52:7e:5e:e5:f7:c4:ae:59:15:e2:27:be:bc:3d:
d4:62:78:76:a1:0c:3c:6c:95:2e:87:c7:c2:16:67:
7e:d8:97:fb:20:f4:ce:95:57:fa:31:95:96:66:cc:
82:f4:08:65:52:c8:b2:93:17:7e:0c:ad:03:66:b8:
b8:29:5b:1b:40:1e:5f:14:7f:fb:08:a7:f2:ae:5a:
df:91:98:4e:30:26:46:b1:89:39:ec:be:9f:7f:d4:
9a:de:13:6d:9c:22:63:1e:a0:0c:46:ac:73:35:58:
21:8d:81:52:02:03:33:8a:f4:8f:7b:9e:dd:50:b8:
4f:2f:76:5c:31:a8:8c:c9:54:c3:77:89:52:23:3b:
5a:09:2e:54:db:7f:1d:4e:cf:41:f4:26:4f:b1:04:
72:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:23:8B:BE:37:80:82:E3:E9:A5:8E:3D:CE:78:41:7F:53:3C:FC:BC
X509v3 Authority Key Identifier:
keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/PiOLvjeAguPppY49znhBf1M8_Lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c400::/44
Signature Algorithm: sha256WithRSAEncryption
21:2f:dd:79:e6:21:2a:96:0a:08:f7:74:ed:b4:1f:c4:ab:34:
33:04:55:02:cb:63:fc:f3:2f:7d:22:89:9b:e9:8f:69:41:64:
e9:e7:cb:6a:38:c1:e5:22:94:a5:01:d3:ba:61:1d:f7:02:48:
a1:35:6d:eb:59:9f:3d:45:0a:18:72:6f:32:36:03:32:e9:2e:
3e:ec:9d:b9:07:6a:58:33:48:cb:ca:f3:fe:c5:c6:4e:05:ad:
38:a9:64:0a:cf:9f:a8:41:2a:6d:73:b2:35:ee:4a:99:e6:d1:
e3:4f:40:3a:00:d4:0e:2a:6b:a1:73:1d:40:99:3e:31:26:2a:
cf:24:7b:42:55:b7:15:95:96:a7:18:36:00:39:f5:cf:ac:81:
af:e7:59:12:52:de:e9:5d:8e:29:24:74:d3:79:c5:93:93:66:
90:01:54:c2:e9:9e:1f:12:e9:5b:92:58:c8:b5:5d:ac:1f:be:
8f:31:1f:da:0c:8d:bd:a5:f1:94:9e:82:36:89:f0:03:ce:cd:
55:9c:25:94:1a:c7:75:23:bd:30:8c:e5:86:9f:b3:fb:d9:48:
9c:18:00:0e:b9:2a:a0:c0:e7:98:3e:8a:2e:46:9f:cf:06:2c:
5e:7c:dd:a8:93:15:9b:87:03:f5:45:20:7a:f9:15:04:66:69:
79:2c:3b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 15:49:26 2024 by rpki-client on console-ams.rpki-client.org