Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/eRPmWNEk8FfWtoE2s4bH6QpwFf0.roa
File: eRPmWNEk8FfWtoE2s4bH6QpwFf0.roa (raw, json)
Hash identifier: MgUAojuKJmYYrYZR5Dg4XT/7wPwmAkO2KtFHa3qk3gI=
Subject key identifier: 79:13:E6:58:D1:24:F0:57:D6:B6:81:36:B3:86:C7:E9:0A:70:15:FD
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 01917C4A7F70C0E07E0C3B18F6B5F4C0AD96
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/eRPmWNEk8FfWtoE2s4bH6QpwFf0.roa
Signing time: Thu 22 Aug 2024 22:52:22 +0000
ROA not before: Thu 22 Aug 2024 22:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216435
IP address blocks: 2a10:500::/32 maxlen: 48
2a10:500::/40 maxlen: 48
2a10:500:100::/40 maxlen: 40
2a10:500:200::/40 maxlen: 40
2a10:500:1000::/40 maxlen: 40
2a10:500:1100::/40 maxlen: 40
2a10:500:1200::/40 maxlen: 40
2a10:500:1300::/40 maxlen: 40
2a10:500:1400::/40 maxlen: 40
2a10:500:1500::/40 maxlen: 40
2a10:500:1600::/40 maxlen: 40
2a10:500:1700::/40 maxlen: 40
2a10:500:1800::/40 maxlen: 40
2a10:500:1900::/40 maxlen: 40
2a10:500:1a00::/40 maxlen: 40
2a10:500:1b00::/40 maxlen: 40
2a10:500:1c00::/40 maxlen: 40
2a10:500:1d00::/40 maxlen: 40
2a10:500:1e00::/40 maxlen: 40
2a10:500:1f00::/40 maxlen: 40
2a10:500:2000::/40 maxlen: 40
2a10:500:2100::/40 maxlen: 40
2a10:500:2200::/40 maxlen: 40
2a10:500:2300::/40 maxlen: 40
2a10:500:2400::/40 maxlen: 40
2a10:500:2500::/40 maxlen: 40
2a10:500:2600::/40 maxlen: 40
2a10:500:3600::/40 maxlen: 40
2a10:500:4800::/40 maxlen: 40
2a10:500:4900::/40 maxlen: 40
2a10:500:4d00::/40 maxlen: 40
2a10:500:5600::/40 maxlen: 40
2a10:500:5c00::/40 maxlen: 40
2a10:500:6000::/40 maxlen: 40
2a10:500:6700::/40 maxlen: 40
2a10:500:7a00::/40 maxlen: 40
2a10:500:7c00::/40 maxlen: 40
2a10:500:7e00::/40 maxlen: 40
2a10:500:8b00::/40 maxlen: 40
2a10:500:8d00::/40 maxlen: 40
2a10:500:8e00::/40 maxlen: 40
2a10:500:9400::/40 maxlen: 40
2a10:500:9500::/40 maxlen: 40
2a10:500:9600::/40 maxlen: 40
2a10:500:9800::/40 maxlen: 40
2a10:500:9e00::/40 maxlen: 40
2a10:500:b100::/40 maxlen: 40
2a10:500:c300::/40 maxlen: 40
2a10:500:ce00::/40 maxlen: 40
2a10:500:de00::/40 maxlen: 40
2a10:500:f000::/40 maxlen: 40
2a10:500:fe00::/40 maxlen: 40
2a10:500:fe01::/48 maxlen: 48
2a10:502::/32 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.mft
rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 01:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7c:4a:7f:70:c0:e0:7e:0c:3b:18:f6:b5:f4:c0:ad:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Aug 22 22:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7913e658d124f057d6b68136b386c7e90a7015fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:82:84:fc:a3:fe:d6:c4:38:36:8b:73:fd:5b:
b6:92:56:1a:42:3d:64:ec:df:7d:83:5c:88:e7:6f:
33:83:f2:59:e2:eb:a9:9c:99:37:91:ee:64:11:4d:
02:19:fd:e1:96:d4:c6:97:4c:63:20:b4:db:41:0d:
35:58:98:23:84:46:2d:c0:03:2e:6a:2b:71:69:5f:
4b:fc:7d:a2:a0:a6:2e:7f:ba:fc:a8:39:5b:cb:29:
ce:80:86:0f:5a:7d:9c:67:f5:7c:a7:d3:f0:46:be:
b0:f0:66:29:22:45:b5:88:74:02:f8:c7:ac:1e:d8:
db:9a:89:65:e8:d5:7f:a1:40:20:4d:36:7b:88:a9:
7d:9b:f2:e4:9a:71:79:a7:2c:09:42:e4:e6:72:ca:
de:4d:39:5f:5c:07:7b:6d:25:2a:9b:13:bb:47:eb:
a9:a8:20:29:87:ee:9e:e5:69:48:83:20:34:d3:84:
98:e3:f5:d4:51:6a:b6:10:ec:be:1f:f5:98:1d:7d:
55:4a:d8:02:ee:51:87:aa:82:60:d3:19:7b:69:af:
6c:91:0a:d5:0c:e3:4c:b4:b5:fb:9e:85:d9:ac:39:
63:d7:39:02:a7:0b:e7:82:62:c2:4c:ef:6a:1b:8d:
65:f6:20:d7:f5:8c:1a:a3:03:cf:f2:f6:6f:7a:90:
b2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:13:E6:58:D1:24:F0:57:D6:B6:81:36:B3:86:C7:E9:0A:70:15:FD
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/eRPmWNEk8FfWtoE2s4bH6QpwFf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500::/32
2a10:502::/32
Signature Algorithm: sha256WithRSAEncryption
a9:48:89:66:37:47:0b:7d:aa:7f:f8:b8:57:91:06:f2:75:7e:
b9:45:82:95:0d:9d:2f:5f:55:06:f4:87:fa:fe:a8:79:e4:b4:
1e:83:82:ef:56:d4:6c:54:9e:8f:74:b4:08:15:2e:df:ee:18:
05:7f:64:e8:d5:53:de:57:51:b6:0b:fb:c7:a5:4d:b7:d3:eb:
83:e6:95:1c:c4:19:36:34:2a:29:5f:d7:c6:3c:77:94:a9:a1:
5c:ba:70:5a:fd:20:2e:3d:b9:a0:b3:11:53:94:81:7c:27:91:
59:6c:16:e7:d7:d5:db:d4:9a:f0:e2:ff:e6:03:d1:4e:52:e0:
24:81:f6:d4:5a:dc:5f:6b:37:d7:05:ed:7a:d3:13:47:1c:50:
1f:ea:bd:5e:9a:82:cd:84:b1:78:72:e4:73:d3:21:00:cb:32:
0c:d7:8a:40:f6:2c:27:96:2e:3c:b0:a0:b4:ea:6f:7b:3d:d3:
c3:3f:9b:7d:7b:68:60:34:67:cb:35:07:04:ab:9f:49:3d:51:
a2:39:94:da:91:ed:8c:f7:bd:01:43:8c:9b:92:df:a6:be:4b:
9d:e3:80:88:22:05:aa:c3:e7:48:fc:25:0c:95:18:70:e2:4b:
2d:ac:33:4e:6b:62:c3:80:69:7e:8e:94:61:aa:21:e6:3e:b5:
3d:87:88:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:03:35 2024 by rpki-client on console-ams.rpki-client.org