Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/jIvtIZ0CWivOddOI9j3CPDWt3Kk.roa
File: jIvtIZ0CWivOddOI9j3CPDWt3Kk.roa (raw, json)
Hash identifier: lbdMciSqJjuSOYLfYqmNlQCsoLoSpkkmbELI9DU6oQw=
Subject key identifier: 8C:8B:ED:21:9D:02:5A:2B:CE:75:D3:88:F6:3D:C2:3C:35:AD:DC:A9
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 0191E5C91EF11CEE991821851C57138D25B9
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/jIvtIZ0CWivOddOI9j3CPDWt3Kk.roa
Signing time: Thu 12 Sep 2024 10:30:48 +0000
ROA not before: Thu 12 Sep 2024 10:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60262
IP address blocks: 2a03:cc40::/29 maxlen: 29
2a0c:e500::/29 maxlen: 29
2a10:1d80::/29 maxlen: 29
2a11:1300::/29 maxlen: 29
2a11:1ac0::/29 maxlen: 29
2a11:3140::/29 maxlen: 29
2a11:3c80::/29 maxlen: 29
2a11:5340::/29 maxlen: 29
2a11:5500::/29 maxlen: 29
2a11:7a00::/29 maxlen: 29
2a11:7dc0::/29 maxlen: 29
2a11:8380::/29 maxlen: 29
2a11:ac00::/29 maxlen: 29
2a11:b040::/29 maxlen: 29
2a11:b300::/29 maxlen: 29
2a11:c000::/29 maxlen: 29
2a11:ec80::/29 maxlen: 29
2a12:600::/29 maxlen: 29
2a12:2580::/29 maxlen: 29
2a12:2900::/29 maxlen: 29
2a12:5000::/29 maxlen: 29
2a12:b880::/29 maxlen: 29
2a12:d300::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:c9:1e:f1:1c:ee:99:18:21:85:1c:57:13:8d:25:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Sep 12 10:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c8bed219d025a2bce75d388f63dc23c35addca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7e:ed:ae:99:30:53:77:6b:3c:58:26:86:b6:
37:73:f2:0e:8f:13:71:35:64:fe:f4:3e:7a:7c:c3:
55:1b:1e:10:c4:0f:a3:50:27:d9:15:1a:7f:01:7a:
36:44:e0:97:58:65:3b:52:6f:c8:d5:cc:63:3f:24:
e4:8a:e9:f2:80:50:b9:0c:ea:a5:ae:c7:b7:c7:2c:
69:6e:1d:03:65:60:a4:28:d8:30:da:f6:a2:c4:24:
ab:51:c6:75:30:e9:d9:32:1d:9e:b7:20:e1:bb:90:
d4:85:f5:f8:d1:6f:05:b5:da:3d:30:71:8e:90:df:
f3:19:25:dc:a4:b4:57:be:17:d2:c2:93:60:7a:e0:
b1:1e:9e:25:84:de:c5:6c:d3:81:13:7d:49:ca:c7:
d9:75:30:ff:c5:b1:44:0d:b5:ee:4a:57:6c:97:b1:
6c:aa:f9:83:c9:c4:20:c4:7b:fd:c3:55:4f:f4:17:
3e:4c:c7:c0:50:eb:5d:d1:15:ba:91:dc:a3:7d:73:
22:51:7d:a6:84:ab:83:28:d9:46:5a:07:e9:9d:ce:
49:fc:b3:0d:ff:87:e0:e2:48:d5:ed:55:6a:ed:27:
69:a0:70:31:06:ad:17:15:f5:bc:47:15:78:3b:52:
cb:d3:8b:b8:64:59:05:14:81:c7:f0:aa:bd:a5:39:
8b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8B:ED:21:9D:02:5A:2B:CE:75:D3:88:F6:3D:C2:3C:35:AD:DC:A9
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/jIvtIZ0CWivOddOI9j3CPDWt3Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:cc40::/29
2a0c:e500::/29
2a10:1d80::/29
2a11:1300::/29
2a11:1ac0::/29
2a11:3140::/29
2a11:3c80::/29
2a11:5340::/29
2a11:5500::/29
2a11:7a00::/29
2a11:7dc0::/29
2a11:8380::/29
2a11:ac00::/29
2a11:b040::/29
2a11:b300::/29
2a11:c000::/29
2a11:ec80::/29
2a12:600::/29
2a12:2580::/29
2a12:2900::/29
2a12:5000::/29
2a12:b880::/29
2a12:d300::/29
Signature Algorithm: sha256WithRSAEncryption
ab:d8:51:fb:51:87:99:d9:f5:9b:16:28:1a:d3:8f:49:39:5e:
36:94:0d:41:e8:39:39:22:29:f9:54:21:52:d1:ce:0c:6c:4e:
e7:e3:d8:5d:fc:01:4e:10:c0:18:1e:92:24:33:ca:62:b7:8f:
64:a0:f4:c6:64:b6:0e:0b:9d:02:4b:4d:02:f0:72:29:c2:22:
fc:f0:57:9b:b9:bc:22:ff:33:55:b6:95:bd:db:5d:40:1c:f2:
e7:54:e0:95:e8:71:29:36:69:d6:0e:f7:4b:3d:4d:8d:f0:d8:
8b:f9:de:47:b2:bb:e7:ae:0c:27:55:45:b9:c9:6f:40:e4:5f:
e1:62:41:a8:a5:6f:fb:0b:75:55:c6:3f:f6:c2:61:10:99:c8:
56:93:e7:b2:71:47:29:28:bb:25:54:af:41:a3:f9:e1:c1:32:
55:c8:44:90:37:6c:3d:16:26:12:42:23:73:0f:62:a1:7e:6f:
32:4d:48:23:5d:79:f6:99:78:f9:8d:39:e8:33:c4:77:b2:bf:
58:a8:34:2e:a9:8a:c9:96:4e:a4:99:b0:3b:6b:a3:b7:02:67:
d8:b2:62:b8:6e:ae:10:47:23:92:4f:e3:a8:b1:f2:44:bf:61:
ad:9a:ea:7a:af:3c:7f:6c:0e:30:a0:4d:61:b8:4b:d1:90:0b:
6d:34:7d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 05:17:38 2024 by rpki-client on console-fra.rpki-client.org