Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/Pm_z3REyQkP_ICGaQCDoZfaFcpE.roa
File: Pm_z3REyQkP_ICGaQCDoZfaFcpE.roa (raw, json)
Hash identifier: QX4XTcCCvIbRCmyuQ9vuyXsnvOLtAZwluvFz2Nz6IGI=
Subject key identifier: 3E:6F:F3:DD:11:32:42:43:FF:20:21:9A:40:20:E8:65:F6:85:72:91
Certificate issuer: /CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Certificate serial: 018E61D7044D92805B2A6B5D88A39E711781
Authority key identifier: 53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/Pm_z3REyQkP_ICGaQCDoZfaFcpE.roa
Signing time: Thu 21 Mar 2024 16:27:45 +0000
ROA not before: Thu 21 Mar 2024 16:27:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211810
IP address blocks: 2a06:8184:ff00::/40 maxlen: 40
2a06:8184:ff00::/45 maxlen: 48
2a06:8184:ff00::/48 maxlen: 48
2a06:8184:ff01::/48 maxlen: 48
2a06:8184:ff02::/48 maxlen: 48
2a06:8184:ff03::/48 maxlen: 48
2a06:8184:ff04::/48 maxlen: 48
2a06:8184:ff05::/48 maxlen: 48
2a06:8184:ff06::/48 maxlen: 48
2a06:8184:ff07::/48 maxlen: 48
2a06:8184:ff08::/48 maxlen: 48
2a06:8184:ff14::/48 maxlen: 48
2a06:8185:aa00::/40 maxlen: 40
2a06:8185:aa00::/48 maxlen: 48
2a06:8185:aa01::/48 maxlen: 48
2a06:8185:aa02::/48 maxlen: 48
2a06:8185:aa03::/48 maxlen: 48
2a06:8185:aa04::/48 maxlen: 48
2a06:8185:aa05::/48 maxlen: 48
2a06:8185:aa06::/48 maxlen: 48
2a06:8185:aa07::/48 maxlen: 48
2a06:8185:aa08::/48 maxlen: 48
2a06:8185:aa09::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/U_R6clx2jU3nj7MbtA_hbroZ8g0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/U_R6clx2jU3nj7MbtA_hbroZ8g0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:61:d7:04:4d:92:80:5b:2a:6b:5d:88:a3:9e:71:17:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Validity
Not Before: Mar 21 16:27:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e6ff3dd11324243ff20219a4020e865f6857291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:eb:41:8f:6e:39:ec:fd:d6:f4:72:9c:e7:5b:
a2:1c:79:ca:10:0c:bf:af:dc:f7:c3:fa:07:62:44:
ca:7f:c4:e9:c0:35:c5:89:d8:0b:49:7b:ca:85:17:
10:63:87:c8:32:8f:8f:0f:21:6c:b3:ee:92:de:66:
3d:3f:85:75:fb:c1:9e:a3:ac:e9:8d:9e:04:e3:4b:
53:3d:46:b3:4f:03:94:fa:85:89:d2:fe:4d:30:e2:
89:25:23:73:78:72:1d:da:7a:e1:39:97:d7:08:ac:
f7:ec:2c:0d:30:cb:54:3a:99:56:d5:7e:9b:f8:6b:
a5:ed:04:63:78:94:57:b2:cd:d4:4f:64:13:ae:3d:
89:5f:29:bb:20:0c:21:ea:28:03:da:f1:76:03:a0:
5f:90:0b:54:01:9b:7b:fa:4e:d7:ea:4b:ce:57:0b:
19:df:8a:93:11:82:81:9f:ff:d3:2a:f7:92:d2:d5:
91:11:36:3b:b5:9e:c8:b2:e5:f3:f2:8d:45:70:11:
90:0a:d3:75:51:77:e3:d9:60:dc:12:c4:38:c9:a9:
39:8f:61:9a:d4:ef:96:8c:7b:22:d8:b1:4e:e9:1d:
83:61:5b:28:27:a6:69:c8:6a:00:d8:98:a6:64:c0:
2f:18:e0:a2:2b:9c:23:c7:f1:ad:90:d3:37:9b:cf:
6a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6F:F3:DD:11:32:42:43:FF:20:21:9A:40:20:E8:65:F6:85:72:91
X509v3 Authority Key Identifier:
keyid:53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/Pm_z3REyQkP_ICGaQCDoZfaFcpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/U_R6clx2jU3nj7MbtA_hbroZ8g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:8184:ff00::/40
2a06:8185:aa00::/40
Signature Algorithm: sha256WithRSAEncryption
3a:5c:40:5e:35:bb:2a:4b:9c:c0:3f:82:91:13:4e:d1:18:67:
d2:b7:67:60:67:4e:1d:c2:2e:13:7d:c5:4d:1a:07:3c:c3:8c:
d4:25:cf:c9:26:cb:e3:24:14:b3:88:7b:e0:fd:af:91:17:65:
41:7d:02:33:e6:05:2d:49:de:f8:75:4f:42:cc:83:c4:7e:a4:
43:b3:80:84:eb:5f:19:a9:97:62:13:d7:25:dc:b0:29:75:9d:
09:fe:15:1e:c4:6a:e6:6f:56:9d:22:07:06:87:3f:37:3c:03:
a3:1c:21:8a:92:2a:48:f4:4e:3b:b6:b7:a8:92:59:ff:d9:e1:
01:ba:cb:fe:4a:4e:d1:5e:3e:4e:6f:6c:f8:d9:98:64:40:47:
88:47:a5:17:dd:5f:c5:bc:d0:fd:8e:e8:42:e6:61:98:39:eb:
2f:f2:e5:62:f6:12:22:25:68:43:8f:dc:be:7a:ae:c7:09:ea:
bc:e8:a8:9f:29:d3:1a:05:1c:71:b0:e8:de:09:bf:d3:fe:fb:
fe:13:c4:98:03:82:8f:6a:4c:3f:7c:97:c4:89:66:38:6d:b4:
ae:a1:d0:c7:bc:77:4b:0f:d0:d4:d8:4b:8a:37:0b:0c:02:41:
ce:f1:df:11:e2:a5:34:c4:8e:8b:7c:0e:60:c2:31:94:db:6b:
98:d5:22:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:29:19 2024 by rpki-client on console-fra.rpki-client.org