Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/1ZYkI9TDQl0BSYwO5H00y4FC3GM.roa
File: 1ZYkI9TDQl0BSYwO5H00y4FC3GM.roa (raw, json)
Hash identifier: qB8FzYnRU58gnneKEZZ0gfw6jF55WnlYBRhgnDADqOw=
Subject key identifier: D5:96:24:23:D4:C3:42:5D:01:49:8C:0E:E4:7D:34:CB:81:42:DC:63
Certificate issuer: /CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Certificate serial: 018F520C6B44F66657789812FDCFEE7D9612
Authority key identifier: 02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/1ZYkI9TDQl0BSYwO5H00y4FC3GM.roa
Signing time: Tue 07 May 2024 07:54:56 +0000
ROA not before: Tue 07 May 2024 07:54:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16322
IP address blocks: 46.167.128.0/19 maxlen: 19
77.77.64.0/18 maxlen: 18
77.77.64.0/19 maxlen: 19
77.77.96.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/AoOoxpomMM2Pb6cK8qU_4BnyzAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/AoOoxpomMM2Pb6cK8qU_4BnyzAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:52:0c:6b:44:f6:66:57:78:98:12:fd:cf:ee:7d:96:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Validity
Not Before: May 7 07:54:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5962423d4c3425d01498c0ee47d34cb8142dc63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:70:0d:4a:da:5f:39:54:98:27:82:1d:8d:b0:
6b:70:88:6e:e4:73:b1:de:33:04:1a:5b:4b:80:ed:
e9:93:19:dc:60:56:05:c3:fb:b0:85:3c:f8:7b:06:
49:72:07:70:9f:88:e3:e1:23:62:c2:5f:79:a6:15:
db:37:58:80:44:84:f8:61:92:69:17:fd:dd:a0:4c:
2d:38:db:6b:88:8b:fa:95:eb:b7:2c:e4:1d:6e:93:
74:92:08:00:75:36:fd:31:61:26:e3:98:8e:4b:da:
63:4c:f4:7b:8a:91:e4:d3:c7:56:b1:9c:9e:38:49:
8f:46:3b:22:4d:41:7b:79:8a:60:d2:52:e7:f4:03:
b6:24:d2:ab:f0:e9:ba:3d:1d:93:e9:27:ce:9c:25:
58:7a:04:aa:20:c5:88:6a:c0:bb:13:0a:dd:81:ea:
71:a5:9a:f1:50:7b:a1:95:8d:a1:9a:1b:9b:84:24:
b4:c9:e8:a2:32:4f:51:4d:b0:51:fc:65:82:77:98:
8b:e5:50:df:15:e9:5b:9d:fd:16:3d:7b:52:51:fa:
c5:f5:53:bd:a8:89:98:f3:ae:bd:fc:f2:cb:09:d9:
f4:a3:65:af:30:78:8c:0d:b9:e2:fb:64:11:82:4c:
f0:b9:60:ed:59:8b:5d:07:79:f6:ca:95:20:32:75:
99:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:96:24:23:D4:C3:42:5D:01:49:8C:0E:E4:7D:34:CB:81:42:DC:63
X509v3 Authority Key Identifier:
keyid:02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/1ZYkI9TDQl0BSYwO5H00y4FC3GM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/AoOoxpomMM2Pb6cK8qU_4BnyzAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.167.128.0/19
77.77.64.0/18
Signature Algorithm: sha256WithRSAEncryption
87:40:cd:84:ce:6f:f8:f2:8b:aa:1a:51:1e:76:eb:6a:64:2e:
79:a3:86:8b:bc:f3:23:3c:b4:e3:56:fc:c5:c8:8c:18:a4:f5:
3a:25:80:10:fd:1a:89:e6:12:b7:b9:4e:1f:da:3d:8e:f1:d8:
04:e1:8e:95:b6:81:e4:e2:20:11:ca:62:07:9c:fd:b0:da:9e:
2c:e2:c3:59:ca:64:98:3d:1e:85:0e:a9:91:c0:2f:a0:17:ad:
5a:44:43:c2:d8:74:e5:5e:7a:5d:b4:80:bf:ea:e7:e9:73:b8:
84:49:18:26:48:57:07:b0:f5:ee:f3:3f:d0:c4:dc:32:31:81:
c9:a8:0e:24:eb:ab:b6:4e:eb:5e:98:79:bf:a8:c3:37:33:af:
54:f4:0f:08:2e:50:b3:e7:ef:b8:1a:98:14:e8:5c:c2:d7:80:
fd:3d:ce:5a:43:54:5f:66:33:c4:e7:56:37:76:31:08:46:aa:
c1:96:68:f3:51:04:8c:a6:7a:5d:90:4b:28:05:9b:4b:45:2c:
6b:fb:09:b8:39:9c:7c:1a:e6:ca:f9:01:a9:2d:3b:2f:6b:83:
54:84:49:a8:e2:4a:74:d9:e7:4a:df:58:7b:cd:d9:cf:d4:8d:
f8:e5:b2:0c:a5:2f:ac:c1:f1:56:de:a8:78:e1:9c:54:16:8c:
82:68:b1:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:52:45 2024 by rpki-client on console-ams.rpki-client.org