Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FIlvL6Dnsul-cFh4D5RMV2l8W5U.roa
File: FIlvL6Dnsul-cFh4D5RMV2l8W5U.roa (raw, json)
Hash identifier: nA3/Fih5lg2pGUtW9uNEYYcfw937QPkWJJ7MkeErsQE=
Subject key identifier: 14:89:6F:2F:A0:E7:B2:E9:7E:70:58:78:0F:94:4C:57:69:7C:5B:95
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0190437318C073C6D5C72D9C860E6B7C3E9A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FIlvL6Dnsul-cFh4D5RMV2l8W5U.roa
Signing time: Sun 23 Jun 2024 04:55:34 +0000
ROA not before: Sun 23 Jun 2024 04:55:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60262
IP address blocks: 2a06:6ec0::/29 maxlen: 29
2a0e:6c40::/29 maxlen: 29
2a0e:8780::/29 maxlen: 29
2a0e:a280::/29 maxlen: 29
2a0e:a3c0::/29 maxlen: 29
2a0e:a580::/29 maxlen: 29
2a0e:bac0::/29 maxlen: 29
2a0e:be80::/29 maxlen: 29
2a0e:c180::/29 maxlen: 29
2a0e:c740::/29 maxlen: 29
2a0e:ee80::/29 maxlen: 29
2a0f:a40::/29 maxlen: 29
2a0f:fc0::/29 maxlen: 29
2a0f:32c0::/29 maxlen: 29
2a0f:3340::/29 maxlen: 29
2a0f:33c0::/29 maxlen: 29
2a0f:3440::/29 maxlen: 29
2a0f:34c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:43:73:18:c0:73:c6:d5:c7:2d:9c:86:0e:6b:7c:3e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 23 04:55:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14896f2fa0e7b2e97e7058780f944c57697c5b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3a:eb:82:93:9e:d1:a2:67:5c:2e:d8:a6:f9:
54:9f:11:13:c5:9e:b4:46:cd:cf:b5:43:f9:de:a2:
e0:0a:f0:33:7e:ec:67:4e:89:e7:71:9b:9d:f0:b2:
9e:de:1b:ce:90:f2:b1:96:34:e9:95:4c:85:be:57:
a3:8b:63:ca:d2:63:e9:28:20:f3:76:db:06:99:12:
d9:e4:d9:a9:08:b6:a2:5e:36:6a:a1:a0:84:c5:c9:
ff:5c:75:cb:67:ed:34:2e:01:a6:58:ba:0c:6b:93:
e3:76:72:86:0b:a2:d3:ec:a7:73:75:be:54:71:25:
a7:7f:19:34:52:21:71:4b:d8:1e:e9:65:f3:25:9c:
a3:62:56:22:b0:15:88:d8:3f:0d:d6:d8:4a:f3:43:
53:f1:8e:a9:98:df:f1:fa:6a:f4:2e:b4:cf:e3:d3:
ba:9a:4a:c3:38:3f:17:82:a3:73:25:76:e1:fd:af:
89:df:4a:6e:46:8b:71:e4:a1:6a:ca:27:01:27:84:
77:fd:a2:dd:69:c1:24:9b:c3:62:82:f3:57:26:74:
ff:3a:6a:c8:ab:96:91:1d:56:63:2c:d1:88:f4:41:
4b:56:a7:e1:10:21:3d:e5:8e:bd:79:45:76:e4:58:
69:78:a8:f0:4f:a0:78:dc:53:1a:39:f6:40:6c:83:
b4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:89:6F:2F:A0:E7:B2:E9:7E:70:58:78:0F:94:4C:57:69:7C:5B:95
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FIlvL6Dnsul-cFh4D5RMV2l8W5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:6ec0::/29
2a0e:6c40::/29
2a0e:8780::/29
2a0e:a280::/29
2a0e:a3c0::/29
2a0e:a580::/29
2a0e:bac0::/29
2a0e:be80::/29
2a0e:c180::/29
2a0e:c740::/29
2a0e:ee80::/29
2a0f:a40::/29
2a0f:fc0::/29
2a0f:32c0::/29
2a0f:3340::/29
2a0f:33c0::/29
2a0f:3440::/29
2a0f:34c0::/29
Signature Algorithm: sha256WithRSAEncryption
b6:49:ae:b8:fd:2e:d8:e2:47:6d:2f:7d:cf:15:6c:03:07:a6:
d1:1b:fe:6e:37:bb:70:03:22:2f:c5:ca:2f:70:ae:fc:3c:d7:
34:d7:1a:61:67:cd:13:14:0f:39:6b:10:e2:87:7e:38:1e:33:
9a:56:84:50:1e:68:66:07:eb:1d:96:7a:da:94:34:29:ac:07:
c0:e5:09:12:8b:da:53:02:a7:10:a1:62:91:b7:93:30:90:66:
4b:99:87:3e:3d:13:6f:b9:a0:2e:00:93:3e:db:04:ab:ea:af:
bb:03:13:8f:ce:c5:a6:b8:35:a2:aa:29:a4:03:7f:a7:a7:31:
89:71:8d:95:9c:16:85:fe:7a:5f:ea:26:59:bb:58:f8:a9:15:
76:32:f1:38:37:35:d5:95:06:74:5e:31:cc:1a:df:94:17:f2:
cf:af:a9:b6:ef:67:79:2b:1a:48:a9:e9:42:4b:98:80:c0:65:
82:74:b5:7c:c6:f1:90:b6:6c:0b:02:a7:73:1a:b3:c7:cf:b8:
17:ea:14:07:4d:0f:b7:85:1c:ca:6c:6f:e4:c8:9c:48:3e:bb:
30:06:5f:79:c4:e0:0f:67:07:86:1d:82:df:9a:ad:cc:d4:3f:
7e:57:fd:74:ae:d0:6b:0d:5c:23:24:08:a1:5c:98:e9:03:80:
69:f9:3e:f9
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAZBDcxjAc8bVxy2chg5rfD6aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjQwNjIzMDQ1NTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDg5NmYyZmEwZTdiMmU5N2U3MDU4NzgwZjk0NGM1NzY5N2M1Yjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzrrgpOe0aJnXC7YpvlUnxETxZ60
Rs3PtUP53qLgCvAzfuxnTonncZud8LKe3hvOkPKxljTplUyFvleji2PK0mPpKCDz
dtsGmRLZ5NmpCLaiXjZqoaCExcn/XHXLZ+00LgGmWLoMa5PjdnKGC6LT7Kdzdb5U
cSWnfxk0UiFxS9ge6WXzJZyjYlYisBWI2D8N1thK80NT8Y6pmN/x+mr0LrTP49O6
mkrDOD8XgqNzJXbh/a+J30puRotx5KFqyicBJ4R3/aLdacEkm8NigvNXJnT/OmrI
q5aRHVZjLNGI9EFLVqfhECE95Y69eUV25FhpeKjwT6B43FMaOfZAbIO0qwIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFBSJby+g57LpfnBYeA+UTFdpfFuVMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvRklsdkw2RG5zdWwtY0ZoNEQ1Uk1WMmw4VzVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAIwfgMFAyoG
bsADBQMqDmxAAwUDKg6HgAMFAyoOooADBQMqDqPAAwUDKg6lgAMFAyoOusADBQMq
Dr6AAwUDKg7BgAMFAyoOx0ADBQMqDu6AAwUDKg8KQAMFAyoPD8ADBQMqDzLAAwUD
Kg8zQAMFAyoPM8ADBQMqDzRAAwUDKg80wDANBgkqhkiG9w0BAQsFAAOCAQEAtkmu
uP0u2OJHbS99zxVsAwem0Rv+bje7cAMiL8XKL3Cu/DzXNNcaYWfNExQPOWsQ4od+
OB4zmlaEUB5oZgfrHZZ62pQ0KawHwOUJEovaUwKnEKFikbeTMJBmS5mHPj0Tb7mg
LgCTPtsEq+qvuwMTj87Fprg1oqoppAN/p6cxiXGNlZwWhf56X+omWbtY+KkVdjLx
ODc11ZUGdF4xzBrflBfyz6+ptu9neSsaSKnpQkuYgMBlgnS1fMbxkLZsCwKncxqz
x8+4F+oUB00Pt4Ucymxv5MicSD67MAZfecTgD2cHhh2C35qtzNQ/flf9dK7Qaw1c
IyQIoVyY6QOAafk++Q==
-----END CERTIFICATE-----
Generated at Mon Nov 25 19:45:21 2024 by rpki-client on console-ams.rpki-client.org