Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/YmgrHGDWSmABymrI-ZMvmG-Krjs.roa
File: YmgrHGDWSmABymrI-ZMvmG-Krjs.roa (raw, json)
Hash identifier: 6DsVVaXRlL58YuDIYKv/KpsCKZWGART9o/+I699LudY=
Subject key identifier: 62:68:2B:1C:60:D6:4A:60:01:CA:6A:C8:F9:93:2F:98:6F:8A:AE:3B
Certificate issuer: /CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Certificate serial: 019205FB9D46FF36D403E66513954E401284
Authority key identifier: CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/YmgrHGDWSmABymrI-ZMvmG-Krjs.roa
Signing time: Wed 18 Sep 2024 16:33:48 +0000
ROA not before: Wed 18 Sep 2024 16:33:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60504
IP address blocks: 2a13:82c0::/32 maxlen: 32
2a13:82c1::/32 maxlen: 32
2a13:82c2::/32 maxlen: 32
2a13:82c3::/32 maxlen: 32
2a13:82c4:1::/48 maxlen: 48
2a13:82c4:2::/48 maxlen: 48
2a13:82c4:3::/48 maxlen: 48
2a13:82c4:f800::/40 maxlen: 40
2a13:82c4:f900::/40 maxlen: 48
2a13:82c4:fa00::/40 maxlen: 48
2a13:82c4:fb00::/40 maxlen: 48
2a13:82c7::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/z_XcdutvgU7WAVaP3SyBEO3vjBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/z_XcdutvgU7WAVaP3SyBEO3vjBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:05:fb:9d:46:ff:36:d4:03:e6:65:13:95:4e:40:12:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Validity
Not Before: Sep 18 16:33:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62682b1c60d64a6001ca6ac8f9932f986f8aae3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:34:24:c1:00:1f:8f:7f:c0:07:ce:82:a5:33:
d0:1b:8b:9c:d8:df:0e:e9:03:a3:e9:ec:fd:76:4e:
88:b7:d7:22:50:af:b1:0c:61:04:a0:3c:24:67:7c:
d5:e6:28:d4:31:f7:8c:e4:9d:94:a2:85:17:33:c3:
37:05:a4:22:57:eb:1e:0d:28:8b:c0:ea:21:af:fd:
2b:49:80:5e:ca:08:99:31:f5:a2:18:11:a3:fa:60:
6a:a3:42:65:54:d2:bb:0b:fc:6e:a1:8a:ff:73:94:
e9:1c:62:4a:62:17:be:63:fc:c2:42:d4:08:78:80:
bb:9b:35:30:c9:87:bc:3f:d3:29:8f:e5:4c:3a:18:
c6:83:3b:6c:a4:af:da:d0:22:b6:73:37:29:79:15:
00:da:2c:18:6e:b2:66:b1:d0:bd:c1:23:ff:d0:a5:
1f:46:31:7b:e6:92:eb:d2:69:cb:3e:7b:7e:40:ce:
05:53:ff:9f:76:58:39:58:98:b3:4b:14:0d:d2:a2:
7c:67:2d:cc:ae:e1:02:7d:d6:5d:71:5c:54:53:0c:
63:86:db:70:ed:1f:f7:b4:fa:80:4a:00:07:20:3d:
67:b9:92:7e:cc:11:c2:29:dc:0e:6e:a7:1e:fc:07:
0c:72:e7:3a:b2:3c:4c:37:4d:d3:f9:fc:9e:ae:5a:
4d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:68:2B:1C:60:D6:4A:60:01:CA:6A:C8:F9:93:2F:98:6F:8A:AE:3B
X509v3 Authority Key Identifier:
keyid:CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/YmgrHGDWSmABymrI-ZMvmG-Krjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/z_XcdutvgU7WAVaP3SyBEO3vjBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:82c0::/30
2a13:82c4:1::-2a13:82c4:3:ffff:ffff:ffff:ffff:ffff
2a13:82c4:f800::/38
2a13:82c7::/32
Signature Algorithm: sha256WithRSAEncryption
a8:54:e1:e2:81:10:02:f0:bc:c4:1e:99:cd:67:94:d5:73:7a:
41:11:32:7e:d5:a1:c4:0d:06:d3:d2:e9:31:df:ae:71:e5:91:
25:bb:ff:e8:fb:b3:b4:91:dc:d3:c7:ac:4f:0d:30:28:cf:10:
3b:8e:31:3d:fb:b4:69:ee:4a:ed:42:cb:34:4a:14:9d:38:e8:
9e:39:2c:13:7a:77:9c:24:aa:1e:34:af:32:c6:64:ca:8d:3b:
58:db:b2:f4:23:00:d2:8f:07:91:6d:03:ab:41:d0:d7:bc:47:
7b:de:8b:0c:8e:fc:83:8d:18:f2:f9:17:86:00:7d:e6:dd:3e:
aa:20:20:72:35:09:ad:83:1a:d8:6a:14:6c:1d:42:88:9b:96:
e2:27:a7:6d:29:ea:91:3b:c1:32:7c:a6:65:57:d8:8e:db:e0:
3e:87:41:2b:c1:b3:21:b7:5d:af:7c:39:20:8b:52:10:db:3b:
87:77:74:ab:69:49:59:3c:b0:eb:aa:db:fd:51:1c:1d:27:05:
53:7e:0d:05:95:eb:88:b2:2c:a1:01:6a:86:41:b4:3c:d2:88:
a1:e9:b9:77:23:17:0b:4d:4c:3b:f0:28:93:4c:ef:4d:8f:05:
10:4e:c0:f9:78:06:c1:6d:21:e7:e8:90:8a:c9:b3:d1:77:03:
aa:e5:67:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:12:47 2024 by rpki-client on console-ams.rpki-client.org