Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ulzx26ECDP_6YMZa7XKMQMl8Alk.roa
File: Ulzx26ECDP_6YMZa7XKMQMl8Alk.roa (raw, json)
Hash identifier: s9sIwtWdL3molBFhqEIlD5kY6U1tZRqoJJ1w9vrTPq4=
Subject key identifier: 52:5C:F1:DB:A1:02:0C:FF:FA:60:C6:5A:ED:72:8C:40:C9:7C:02:59
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019001B060E65B7EBB4773EDD7882B5F36FB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ulzx26ECDP_6YMZa7XKMQMl8Alk.roa
Signing time: Mon 10 Jun 2024 10:27:34 +0000
ROA not before: Mon 10 Jun 2024 10:27:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396362
IP address blocks: 2a0e:1a82::/32 maxlen: 32
2a0f:1e80:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:b0:60:e6:5b:7e:bb:47:73:ed:d7:88:2b:5f:36:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 10 10:27:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=525cf1dba1020cfffa60c65aed728c40c97c0259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8d:8a:ad:5b:6c:f5:03:29:8b:c3:22:52:2f:
89:39:10:8b:11:2b:03:29:8e:08:16:cd:e1:dc:0e:
63:26:f3:1f:1b:b6:d3:39:af:73:6a:2b:17:c9:99:
30:f6:72:09:43:dc:c8:d6:e6:2a:65:1c:0d:d4:5d:
40:3b:1c:ba:ab:6f:6a:cc:5e:5b:eb:b9:dd:30:bf:
59:1f:d8:9e:b8:f1:b5:95:d8:05:9b:27:0b:9c:7f:
e0:1f:fb:50:18:cb:22:cd:ab:2c:09:2e:f8:c5:44:
c6:14:02:88:bf:ff:fe:95:4b:7d:10:39:b3:fd:6f:
1d:ff:26:a7:28:e8:2a:79:c2:86:ff:b6:61:df:52:
8a:62:1e:ce:47:da:83:e2:a1:77:c2:83:8b:16:c9:
e9:c6:a9:82:02:ec:72:32:df:bb:56:9c:c0:98:96:
af:a2:d5:d9:f1:b0:b0:2f:fe:10:8c:a8:a2:47:86:
fd:5e:2e:fd:0e:60:5c:42:69:6a:8b:04:7c:91:83:
3f:0e:69:a4:dc:48:64:b1:94:ed:ee:65:a6:f3:2d:
d6:e3:22:5a:3d:ea:4b:0a:c0:55:9b:95:36:f4:cf:
c1:8b:83:fa:95:73:cf:bd:71:67:c1:d4:a4:71:5a:
49:9a:e9:32:a9:11:1d:e7:fb:2c:66:3e:d6:99:99:
29:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5C:F1:DB:A1:02:0C:FF:FA:60:C6:5A:ED:72:8C:40:C9:7C:02:59
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ulzx26ECDP_6YMZa7XKMQMl8Alk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1a82::/32
2a0f:1e80:1::/48
Signature Algorithm: sha256WithRSAEncryption
17:f8:db:b1:01:27:05:8a:d3:91:05:ca:7b:8f:5f:bf:7a:bc:
6e:18:01:95:55:47:00:14:be:27:c0:de:16:29:0c:c9:ab:18:
5c:ec:e5:ca:94:b8:37:e3:35:c7:f4:62:49:fd:1d:f5:c4:77:
a7:1e:84:a8:7b:5e:86:27:8d:04:27:c0:fd:18:3d:38:57:ee:
53:ed:e5:57:a2:4a:a4:8d:ba:76:8d:33:93:8f:6a:e4:18:da:
b0:4f:16:a2:9b:fd:07:47:64:81:b4:dd:6c:81:78:de:9b:34:
cd:29:8f:1a:b4:ab:44:1c:cb:3c:05:d0:20:59:8f:b7:91:9c:
b3:01:53:db:98:aa:88:db:42:15:a9:64:9c:0a:f0:a2:d5:d3:
e8:d3:b2:df:f0:35:a3:40:cc:fb:6e:6a:03:91:dd:68:51:8c:
03:f4:5b:6b:62:7c:de:8e:c2:c4:e3:94:3c:78:59:05:eb:9a:
f6:ea:14:23:01:a3:7f:a6:c5:c4:a1:0e:70:3f:73:b3:3f:8b:
92:b4:26:8d:b9:80:3d:61:7b:88:87:c6:a3:60:10:ab:e9:d6:
9c:f4:21:c5:b6:75:6c:c4:3c:12:32:24:9a:9c:9a:2d:65:6c:
48:6f:80:1a:46:98:cf:2e:ae:32:e3:c7:a3:ae:81:df:9e:22:
c9:a2:1d:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:45:40 2024 by rpki-client on console-fra.rpki-client.org