Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ZiIIi3Rcp8JPm8xSxq0iTx_TT_U.roa
File: ZiIIi3Rcp8JPm8xSxq0iTx_TT_U.roa (raw, json)
Hash identifier: C8RCZ6MHvgZkinIGeIaEOFg4ub9l69zofqxV2yY5ANQ=
Subject key identifier: 66:22:08:8B:74:5C:A7:C2:4F:9B:CC:52:C6:AD:22:4F:1F:D3:4F:F5
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018F7196E66DC2C024AA231A054CA7407067
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ZiIIi3Rcp8JPm8xSxq0iTx_TT_U.roa
Signing time: Mon 13 May 2024 10:54:25 +0000
ROA not before: Mon 13 May 2024 10:54:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198351
IP address blocks: 2a12:bec4:1020::/48 maxlen: 48
2a12:bec4:1021::/48 maxlen: 48
2a12:bec4:1022::/48 maxlen: 48
2a12:bec4:1023::/48 maxlen: 48
2a12:bec4:1024::/48 maxlen: 48
2a12:bec4:1025::/48 maxlen: 48
2a12:bec4:1026::/48 maxlen: 48
2a12:bec4:1027::/48 maxlen: 48
2a12:bec4:1028::/48 maxlen: 48
2a12:bec4:1029::/48 maxlen: 48
2a12:bec4:102a::/48 maxlen: 48
2a12:bec4:102b::/48 maxlen: 48
2a12:bec4:102c::/48 maxlen: 48
2a12:bec4:102d::/48 maxlen: 48
2a12:bec4:102e::/48 maxlen: 48
2a12:bec4:102f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 00:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:71:96:e6:6d:c2:c0:24:aa:23:1a:05:4c:a7:40:70:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: May 13 10:54:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6622088b745ca7c24f9bcc52c6ad224f1fd34ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:11:d5:74:e4:12:3e:f3:f9:55:9d:e7:c6:54:
ab:bd:29:11:23:ee:b3:a7:f5:35:24:7a:ba:f7:ac:
c6:f7:03:56:19:49:1d:41:ef:94:b9:d2:00:05:60:
27:90:ed:0e:49:34:2e:7e:60:35:c3:7e:7e:71:e2:
9b:d8:05:20:7b:d3:26:06:a7:18:ca:ae:35:86:eb:
c8:ad:90:37:11:0f:94:fd:eb:23:2d:da:2c:b0:08:
15:72:58:fb:c7:f4:a3:a0:ed:6b:39:4d:b3:47:99:
4d:7c:59:3d:b0:3f:63:21:3c:c0:c4:e2:b9:f6:0b:
87:32:9f:5b:68:72:76:5a:a9:cd:0c:9e:d8:e9:17:
ec:b3:b3:85:f1:f5:5e:64:6f:04:44:33:24:55:39:
4b:a0:0e:65:ee:9f:12:1e:7d:2f:9d:c5:76:21:5d:
dc:04:88:5a:81:fc:c8:00:57:a8:1f:f9:8d:46:5a:
00:90:f3:99:47:66:37:8e:ef:28:58:82:7e:68:f1:
bc:f3:c0:d2:0a:3a:3f:14:93:f7:86:d1:0b:77:0e:
96:4c:e4:a4:3f:50:e9:ab:af:29:e2:70:59:ed:fb:
12:84:1d:f0:99:bf:9e:d0:6c:1c:d7:88:fa:ba:34:
dd:a4:7b:0d:8c:9b:90:70:16:7b:0d:f3:36:b1:8a:
52:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:22:08:8B:74:5C:A7:C2:4F:9B:CC:52:C6:AD:22:4F:1F:D3:4F:F5
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ZiIIi3Rcp8JPm8xSxq0iTx_TT_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1020::/44
Signature Algorithm: sha256WithRSAEncryption
bc:35:a5:b7:63:94:42:68:65:d1:57:7e:8c:f0:fa:47:9d:ef:
c5:aa:55:2c:ef:16:75:e6:45:07:cc:ec:b3:ad:db:72:ad:b6:
04:ae:c6:cd:99:be:a6:07:fa:76:e6:c9:62:3f:3c:e1:bc:28:
d0:c8:ed:76:c4:7d:ea:de:57:fa:21:de:60:c7:ab:46:96:40:
4a:27:a6:74:a8:00:40:e0:08:8c:1a:35:72:38:45:c5:84:03:
5e:d9:95:7d:14:c2:1b:2b:06:31:a2:73:b4:dd:3e:a1:88:1c:
31:31:63:d2:aa:15:70:7e:ad:a9:eb:6d:e9:46:94:1b:8f:b2:
0d:41:6c:8e:e8:7a:e4:e4:c3:c9:db:35:54:8c:0f:eb:77:98:
e1:54:9e:c1:cf:c6:fa:f1:e4:2d:ca:c5:1a:b3:0e:1c:93:54:
11:30:39:9b:15:b2:d4:59:e8:b7:8b:ba:02:ec:07:f6:6b:fd:
04:0d:72:16:25:f5:06:b4:bb:62:99:71:ca:f0:b0:34:e8:08:
e2:e9:f7:ce:95:61:8f:c3:87:e7:b1:85:30:55:e2:5d:e2:ae:
81:a2:39:82:9f:bd:39:ca:35:34:68:a4:ee:7a:3c:6f:b9:d7:
7b:4f:82:7c:4a:f2:1a:c1:9a:31:63:03:62:2b:89:c1:80:82:
8d:64:18:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:01:16 2024 by rpki-client on console-ams.rpki-client.org