Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/mLqkp52huHgu77s0fgjERZHy0E4.roa
File: mLqkp52huHgu77s0fgjERZHy0E4.roa (raw, json)
Hash identifier: Z2iiQA2ZVIB6RCX/WGfimd6SADlOca40Qi2sxW5VON4=
Subject key identifier: 98:BA:A4:A7:9D:A1:B8:78:2E:EF:BB:34:7E:08:C4:45:91:F2:D0:4E
Certificate issuer: /CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2
Certificate serial: 01934DF3B896AEF416BA9CCD6870D0E33026
Authority key identifier: 29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/mLqkp52huHgu77s0fgjERZHy0E4.roa
Signing time: Thu 21 Nov 2024 09:00:38 +0000
ROA not before: Thu 21 Nov 2024 09:00:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208771
IP address blocks: 2a01:e901:109::/48 maxlen: 48
2a01:e901:119::/48 maxlen: 48
2a01:e901:129::/48 maxlen: 48
2a01:e901:139::/48 maxlen: 48
2a01:e901:149::/48 maxlen: 48
2a01:e901:159::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.mft
rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4d:f3:b8:96:ae:f4:16:ba:9c:cd:68:70:d0:e3:30:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2
Validity
Not Before: Nov 21 09:00:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98baa4a79da1b8782eefbb347e08c44591f2d04e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:64:f7:79:48:86:49:c1:26:b3:f5:f2:2b:
34:a4:be:a4:ab:30:44:84:bf:11:78:23:bf:aa:52:
c6:48:35:5c:90:a2:c1:f0:2f:7d:25:94:c6:11:65:
84:4a:15:9b:db:57:78:51:40:c4:69:32:ed:0c:a2:
cd:1c:1d:60:14:e1:8b:4b:6f:0d:80:8b:41:c9:14:
9f:ba:1b:0f:7c:57:93:45:cc:65:1d:00:1b:47:28:
3f:18:22:bf:6a:cf:38:0f:d6:c4:6c:32:5a:05:c3:
ba:b4:fd:f5:b8:bd:06:34:3b:cf:b2:4d:63:8a:7c:
8f:74:a3:01:70:01:15:0b:e2:d6:18:74:bb:27:b4:
c9:e0:46:ec:85:05:87:18:46:d4:d0:63:7b:fe:d2:
81:80:bf:a3:86:5f:7f:8a:fc:f4:c7:4e:0b:bf:33:
cc:01:3d:b4:28:ab:cb:96:03:55:ec:5f:82:51:19:
4a:32:8d:58:a4:77:98:0e:12:5d:00:98:f6:59:5d:
20:62:c3:fd:44:59:61:11:cb:74:9a:51:ea:a4:c2:
7b:78:85:13:cc:c2:04:d6:25:ec:6c:69:aa:2d:76:
76:53:bc:9c:79:b8:e7:b5:e1:c8:7d:04:db:0d:81:
ba:c1:ff:80:ea:63:ef:19:13:99:70:c2:e6:10:3f:
9f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:BA:A4:A7:9D:A1:B8:78:2E:EF:BB:34:7E:08:C4:45:91:F2:D0:4E
X509v3 Authority Key Identifier:
keyid:29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/mLqkp52huHgu77s0fgjERZHy0E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:e901:109::/48
2a01:e901:119::/48
2a01:e901:129::/48
2a01:e901:139::/48
2a01:e901:149::/48
2a01:e901:159::/48
Signature Algorithm: sha256WithRSAEncryption
0c:6a:a1:fc:84:b3:54:f8:d4:51:46:06:94:d0:de:0a:6e:4e:
51:b5:85:19:e2:62:25:fa:f9:ee:6a:f1:92:ec:df:e0:05:32:
5d:98:37:23:ea:82:32:4d:e2:b3:47:e5:d4:c3:6d:00:42:7c:
fb:4a:92:a1:17:f7:4f:54:fd:54:6e:6d:92:d3:3d:bc:96:01:
fc:c6:ec:f4:89:bf:77:d8:dc:8b:d2:b4:73:a4:20:c1:f1:6f:
43:b6:0e:1c:af:6b:4f:19:85:34:4e:05:e0:1d:cd:5e:33:9d:
c9:2e:a3:9f:2b:07:1e:6e:4f:99:06:c8:69:45:7d:71:53:0e:
b0:d6:55:06:7d:f1:0f:4a:5a:e3:b2:ce:cd:00:d2:dc:d5:7b:
48:9d:43:15:b9:5d:1a:b4:4e:14:af:d5:12:05:f7:95:d3:da:
75:2e:4a:06:9a:31:91:47:11:77:a7:eb:c8:eb:0d:a0:b1:f8:
9f:46:48:fd:26:f6:5a:ab:c4:e5:8c:af:c9:8d:e7:c0:42:9a:
b3:b5:b6:1b:7a:9b:74:12:0a:c7:6f:0d:20:c5:42:60:20:e6:
2f:96:dd:15:ff:f8:7f:9b:4a:ea:21:e7:92:81:03:ee:60:c8:
85:ab:25:fa:8e:95:5d:4c:51:2b:15:bc:c2:a1:47:0c:aa:19:
d4:00:f5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:59:56 2024 by rpki-client on console-fra.rpki-client.org