Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/oggCctqQ9vi-pmpRacJS6Ms3ygY.roa
File: oggCctqQ9vi-pmpRacJS6Ms3ygY.roa (raw, json)
Hash identifier: FXMSqU9MqSqcfOEfwKQB6c3fWkiOs+2U81NmwTONzk4=
Subject key identifier: A2:08:02:72:DA:90:F6:F8:BE:A6:6A:51:69:C2:52:E8:CB:37:CA:06
Certificate issuer: /CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Certificate serial: 01926AB1C70EB994A31E3285D6182D4BEC74
Authority key identifier: A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/oggCctqQ9vi-pmpRacJS6Ms3ygY.roa
Signing time: Tue 08 Oct 2024 05:54:48 +0000
ROA not before: Tue 08 Oct 2024 05:54:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50414
IP address blocks: 212.46.55.0/24 maxlen: 24
2a12:bc0::/48 maxlen: 48
2a12:bc0:1::/48 maxlen: 48
2a12:bc0:2::/48 maxlen: 48
2a12:bc0:3::/48 maxlen: 48
2a12:bc0:4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qbX_0k0utdXB4c_niwA8S6taLxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qbX_0k0utdXB4c_niwA8S6taLxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6a:b1:c7:0e:b9:94:a3:1e:32:85:d6:18:2d:4b:ec:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Validity
Not Before: Oct 8 05:54:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2080272da90f6f8bea66a5169c252e8cb37ca06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:df:65:c1:e0:95:11:6a:b5:77:ea:48:7b:5b:
82:ec:1e:8b:44:22:5f:10:60:93:5f:3e:10:42:55:
60:a2:d9:2d:eb:50:d5:84:a2:bb:b3:04:b1:ad:bd:
4d:17:c2:ff:c3:e1:d0:e1:b2:86:ca:61:e7:d8:25:
9d:38:5f:e6:f5:d0:67:ec:01:6e:b8:84:3f:20:db:
11:0f:02:3f:cf:b9:4f:a2:5c:5f:f0:66:f1:ef:4f:
44:50:47:3d:d5:1c:dd:f0:74:e1:89:10:95:7f:2f:
7b:e9:db:3a:76:a8:85:94:ff:0c:48:29:ba:14:8c:
64:43:8b:83:03:6b:30:5c:c5:cf:6d:b5:ae:ee:ef:
01:2a:d8:73:15:b7:2a:37:d9:4e:73:0c:93:25:53:
ed:27:7a:3a:52:73:ab:b7:13:ac:a5:76:32:e7:73:
95:6d:51:47:c7:d0:65:be:54:ef:51:de:05:4f:a6:
2a:de:35:1c:fe:cd:7d:87:12:5e:b5:c6:03:4f:53:
6f:2b:8d:3c:ef:36:4f:8f:7c:0b:d6:3b:83:21:ad:
a7:9c:88:86:f0:60:59:04:97:96:7a:09:a8:2b:db:
b8:50:74:6f:a7:e6:41:c7:20:e3:31:ab:15:27:c3:
39:19:9e:8d:b1:94:8b:f6:2b:28:57:32:bb:a6:25:
88:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:08:02:72:DA:90:F6:F8:BE:A6:6A:51:69:C2:52:E8:CB:37:CA:06
X509v3 Authority Key Identifier:
keyid:A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/oggCctqQ9vi-pmpRacJS6Ms3ygY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qbX_0k0utdXB4c_niwA8S6taLxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.55.0/24
IPv6:
2a12:bc0::-2a12:bc0:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
87:97:48:b5:fb:2d:51:7d:69:ac:7b:36:03:d4:c0:e7:48:35:
a9:94:e2:63:a2:46:d8:8f:19:6c:1c:fe:aa:0b:9c:96:67:5a:
39:2a:41:70:e7:e1:f8:10:64:0c:2d:c5:27:ec:9d:b8:24:67:
74:8a:b2:1c:64:13:4d:df:28:97:b2:44:2f:38:05:fb:b7:91:
3d:b8:4b:88:06:4b:92:f1:8d:4a:86:76:37:71:5b:0c:57:7e:
93:3b:af:e2:27:d1:ea:51:6e:30:a2:45:79:68:f2:5c:cc:fe:
36:0c:7f:5e:29:ba:63:a7:d3:12:bc:37:2b:2e:0f:cc:cc:e7:
9b:db:e6:99:c9:94:6e:b9:72:f7:f6:c8:e7:94:63:10:a1:46:
f4:e4:a7:20:03:35:10:8e:98:2b:58:25:0a:4b:ca:b4:d8:e6:
8f:4a:3b:a4:80:1a:46:94:5b:3d:8a:c2:17:ed:b0:f8:db:08:
84:4f:9c:8a:d1:34:0d:4b:eb:b4:89:61:83:4a:d8:10:f3:4b:
c2:6d:c5:20:00:e8:1c:c3:bb:46:dd:c1:19:cb:86:62:db:39:
d0:52:aa:e0:f3:eb:f0:c4:68:cd:a3:f2:7c:47:58:e5:57:db:
17:a0:79:91:af:a7:2e:2d:63:05:be:30:0d:48:b0:05:46:f7:
9b:96:0c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:35:00 2024 by rpki-client on console-ams.rpki-client.org