Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/1bad7e-cf5c-4d1c-864a-4937601c8fea/1/PLL05LTEzSjnZxlEd4vX6e0xi-g.roa
File: PLL05LTEzSjnZxlEd4vX6e0xi-g.roa (raw, json)
Hash identifier: nIt43NQTAXv9N9xrYHr8oIHRNp6Y0Q4JajoxyWh/Kz4=
Subject key identifier: 3C:B2:F4:E4:B4:C4:CD:28:E7:67:19:44:77:8B:D7:E9:ED:31:8B:E8
Certificate issuer: /CN=546de326de9522bd296bed482385c9769258d8f1
Certificate serial: 018CC3B679E5F1485BE9DF435B5A09968889
Authority key identifier: 54:6D:E3:26:DE:95:22:BD:29:6B:ED:48:23:85:C9:76:92:58:D8:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VG3jJt6VIr0pa-1II4XJdpJY2PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/1bad7e-cf5c-4d1c-864a-4937601c8fea/1/PLL05LTEzSjnZxlEd4vX6e0xi-g.roa
Signing time: Mon 01 Jan 2024 06:29:25 +0000
ROA not before: Mon 01 Jan 2024 06:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8614
IP address blocks: 193.239.64.0/24 maxlen: 24
193.239.67.0/24 maxlen: 24
193.239.66.0/24 maxlen: 24
193.239.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/1bad7e-cf5c-4d1c-864a-4937601c8fea/1/VG3jJt6VIr0pa-1II4XJdpJY2PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/1bad7e-cf5c-4d1c-864a-4937601c8fea/1/VG3jJt6VIr0pa-1II4XJdpJY2PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VG3jJt6VIr0pa-1II4XJdpJY2PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:79:e5:f1:48:5b:e9:df:43:5b:5a:09:96:88:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546de326de9522bd296bed482385c9769258d8f1
Validity
Not Before: Jan 1 06:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cb2f4e4b4c4cd28e7671944778bd7e9ed318be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:7b:da:75:74:49:f2:8d:9e:0e:e1:43:9c:
a0:58:17:35:9e:a4:67:b7:88:c6:1d:d7:16:be:d0:
cd:1c:e0:60:ce:27:9b:35:c1:a4:b1:21:91:6a:1b:
d6:a0:af:8a:7c:c9:cd:97:a6:ab:ba:de:0a:da:f3:
e4:ef:88:10:0f:8c:19:18:23:52:2f:92:df:8a:08:
24:9e:90:96:ba:2f:a7:99:8d:87:f5:24:c7:40:05:
a9:a6:15:6e:44:5e:52:0b:83:f5:5d:dc:a8:d9:7f:
70:46:7e:f8:e6:51:55:8c:04:b0:f6:f4:8a:c5:d2:
3d:dc:fb:c9:09:92:7f:41:0f:e6:f2:59:ce:b7:ab:
6d:60:5a:6b:e2:5b:31:96:2d:b5:46:0b:9b:91:e4:
e3:e6:6e:72:88:4a:ec:8e:88:05:03:98:cd:dd:d7:
21:5c:f5:aa:cd:de:85:9d:3d:df:c8:e0:1a:09:00:
7d:7c:40:60:b9:1a:57:5d:a2:06:ec:73:8a:93:1e:
e2:1e:67:b4:2a:60:5a:d1:d2:9b:37:a3:d4:3d:0a:
65:e4:c2:36:11:9a:d0:10:28:22:9e:1d:72:cf:b3:
2a:03:10:f3:93:a3:a8:a0:ec:63:23:10:a0:e0:52:
bc:67:30:78:c0:cf:ae:f2:1b:a0:36:3a:de:70:de:
e0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B2:F4:E4:B4:C4:CD:28:E7:67:19:44:77:8B:D7:E9:ED:31:8B:E8
X509v3 Authority Key Identifier:
keyid:54:6D:E3:26:DE:95:22:BD:29:6B:ED:48:23:85:C9:76:92:58:D8:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VG3jJt6VIr0pa-1II4XJdpJY2PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/1bad7e-cf5c-4d1c-864a-4937601c8fea/1/PLL05LTEzSjnZxlEd4vX6e0xi-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/1bad7e-cf5c-4d1c-864a-4937601c8fea/1/VG3jJt6VIr0pa-1II4XJdpJY2PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.64.0/22
Signature Algorithm: sha256WithRSAEncryption
06:11:1a:b6:c3:eb:d1:fd:6d:2a:34:d9:9a:2a:d3:98:08:14:
60:c6:f2:d0:bf:45:c8:84:1c:53:82:81:ad:27:50:bb:98:03:
c7:6b:70:ad:91:a7:40:e4:0d:3f:95:04:27:92:ab:00:2f:f5:
41:24:19:2e:24:2f:1b:1d:c7:23:30:70:6f:71:98:09:48:8f:
2a:9f:7f:a8:f6:6e:dd:ea:7d:de:2b:2b:4d:9b:95:9c:07:c3:
2b:f4:e7:ea:f4:23:a4:af:50:7d:c8:64:a2:f1:bf:4b:d4:ff:
d8:5f:ae:98:90:7b:67:31:51:fe:d1:fe:46:25:85:55:25:3f:
3b:da:8d:06:78:1a:fa:f9:52:a5:e2:36:34:ca:f7:92:9c:04:
d6:2d:46:ab:58:19:d9:98:22:88:31:c9:7d:27:8f:20:43:67:
42:11:db:9c:52:0b:56:d3:a5:34:f0:25:0a:d0:26:d0:82:fe:
29:60:27:a2:6e:5b:69:6f:39:82:d6:95:c6:d3:67:6e:25:ee:
bf:3f:14:3e:01:71:f8:0c:29:7f:2e:3e:6e:65:26:8a:2c:77:
e3:89:7c:49:a4:74:95:5f:60:65:54:cd:b5:43:cc:cc:15:43:
86:14:66:10:f0:7b:e5:81:4a:21:7d:a8:e2:64:52:1b:e5:08:
21:c0:af:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:31:15 2024 by rpki-client on console-fra.rpki-client.org