Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wMaNTce_ZmF2MOy4ftrFXURsJt4.roa
File: wMaNTce_ZmF2MOy4ftrFXURsJt4.roa (raw, json)
Hash identifier: KOXcwwo0m7yROlz4z0vbDPjpxR0DwugGxYFoQrNCkQM=
Subject key identifier: C0:C6:8D:4D:C7:BF:66:61:76:30:EC:B8:7E:DA:C5:5D:44:6C:26:DE
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01920A3E0347B96F83F25DE5B048D0230D86
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wMaNTce_ZmF2MOy4ftrFXURsJt4.roa
Signing time: Thu 19 Sep 2024 12:24:48 +0000
ROA not before: Thu 19 Sep 2024 12:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205544
IP address blocks: 2a09:17c0:b19a::/48 maxlen: 48
2a09:17c7:fc3a::/48 maxlen: 48
2a0f:1200:d9::/48 maxlen: 48
2a0f:1207:fe5a::/48 maxlen: 48
2a0f:e1c0:3::/48 maxlen: 48
2a0f:e1c0:37a::/48 maxlen: 48
2a0f:e200:5::/48 maxlen: 48
2a0f:e200:25f::/48 maxlen: 48
2a0f:e207:fd38::/48 maxlen: 48
2a0f:e440::/29 maxlen: 29
2a0f:e6c0:11c::/48 maxlen: 48
2a0f:e6c0:3af::/48 maxlen: 48
2a0f:e6c6:99::/48 maxlen: 48
2a0f:e7c7:fcd8::/48 maxlen: 48
2a0f:ea40:8::/48 maxlen: 48
2a0f:ea47:fc1d::/48 maxlen: 48
2a0f:ea47:ff49::/48 maxlen: 48
2a12:ecc0:3::/48 maxlen: 48
2a12:ecc0:4::/48 maxlen: 48
2a12:ecc0:66::/48 maxlen: 48
2a12:ecc0:188::/48 maxlen: 48
2a12:ecc0:316::/48 maxlen: 48
2a12:ecc0:34a::/48 maxlen: 48
2a13:18c6:44::/48 maxlen: 48
2a13:18c6:99::/48 maxlen: 48
2a13:8c82:2::/48 maxlen: 48
2a13:8c86:100::/48 maxlen: 48
2a13:8c86:140::/48 maxlen: 48
2a13:c700:1::/48 maxlen: 48
2a13:c900:22::/48 maxlen: 48
2a13:c900:66::/48 maxlen: 48
2a13:c900:110::/48 maxlen: 48
2a13:e102:2::/48 maxlen: 48
2a13:e107:77::/48 maxlen: 48
2a13:e107:29b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:3e:03:47:b9:6f:83:f2:5d:e5:b0:48:d0:23:0d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 19 12:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0c68d4dc7bf66617630ecb87edac55d446c26de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:77:dc:1c:f9:d7:f9:0d:f4:ca:bd:54:e7:79:
e4:4f:1e:cc:54:3f:c0:0e:e4:44:35:8f:e7:cd:a4:
8e:76:11:66:cc:23:e0:50:51:75:f1:98:86:7f:63:
16:4b:88:7d:10:d8:ba:bf:ee:3e:33:91:40:33:63:
b6:2e:e9:bd:e8:a9:1d:42:b7:a2:f5:5a:be:46:70:
1b:73:d9:cd:07:c5:82:a4:af:ec:e0:82:47:23:f0:
21:2e:cf:89:c4:21:c1:15:61:e7:a5:65:e2:c1:b9:
b4:d8:69:6d:03:1a:85:3b:dd:5b:04:28:cf:33:2d:
f2:c0:c7:d2:4b:58:c3:9f:62:87:86:42:7c:ad:94:
fb:88:e6:a1:3f:29:0b:94:2b:16:74:89:f5:aa:ef:
b6:0e:f5:0e:9f:f0:15:8b:39:09:7d:e3:d5:0b:6d:
2b:25:c1:8e:30:d5:97:29:bd:ad:b1:f3:1a:a0:d4:
50:a9:ee:10:c8:4f:cf:45:35:50:8d:e4:04:e7:bb:
7d:d3:f2:96:a1:c0:1f:21:16:59:91:9d:d0:5f:78:
a4:ac:ce:d6:64:ed:52:14:c7:8d:38:99:ca:cc:52:
5a:55:cf:f7:53:4c:2f:44:4f:e8:da:4f:00:78:32:
2d:47:54:26:a5:dc:d6:f5:88:f5:e5:7b:af:e6:2d:
5e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:C6:8D:4D:C7:BF:66:61:76:30:EC:B8:7E:DA:C5:5D:44:6C:26:DE
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wMaNTce_ZmF2MOy4ftrFXURsJt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:17c0:b19a::/48
2a09:17c7:fc3a::/48
2a0f:1200:d9::/48
2a0f:1207:fe5a::/48
2a0f:e1c0:3::/48
2a0f:e1c0:37a::/48
2a0f:e200:5::/48
2a0f:e200:25f::/48
2a0f:e207:fd38::/48
2a0f:e440::/29
2a0f:e6c0:11c::/48
2a0f:e6c0:3af::/48
2a0f:e6c6:99::/48
2a0f:e7c7:fcd8::/48
2a0f:ea40:8::/48
2a0f:ea47:fc1d::/48
2a0f:ea47:ff49::/48
2a12:ecc0:3::-2a12:ecc0:4:ffff:ffff:ffff:ffff:ffff
2a12:ecc0:66::/48
2a12:ecc0:188::/48
2a12:ecc0:316::/48
2a12:ecc0:34a::/48
2a13:18c6:44::/48
2a13:18c6:99::/48
2a13:8c82:2::/48
2a13:8c86:100::/48
2a13:8c86:140::/48
2a13:c700:1::/48
2a13:c900:22::/48
2a13:c900:66::/48
2a13:c900:110::/48
2a13:e102:2::/48
2a13:e107:77::/48
2a13:e107:29b::/48
Signature Algorithm: sha256WithRSAEncryption
47:87:91:a3:22:7f:da:e6:e2:1d:45:a0:d9:eb:12:9a:73:76:
90:f4:40:c4:c5:4d:c2:00:0a:cc:2a:83:da:80:4c:d1:8e:90:
1a:e9:fb:2d:80:71:ef:ed:9b:5d:e3:ed:1c:65:81:d2:b4:7e:
14:22:b3:b2:87:07:d4:f0:33:a7:60:bb:85:8a:87:48:44:41:
c0:da:dd:5f:fd:9e:e1:e0:3d:72:69:60:ab:5f:75:f0:12:bd:
4e:54:f5:c3:3f:af:cb:b2:e9:2e:d3:76:fc:99:b5:37:fe:ee:
67:ba:c9:28:b7:9e:cb:8f:55:63:ff:86:ce:3b:55:5a:dd:dd:
23:9b:9f:6c:a9:75:db:50:51:e1:14:42:99:c9:b8:3a:6b:b3:
51:81:33:be:1a:a0:a1:c3:34:a0:42:61:60:8d:bb:5b:02:74:
83:8e:93:eb:59:61:d7:d2:43:f4:8c:2f:fd:0f:c5:8e:bb:94:
59:41:5d:0d:2c:ea:73:12:40:ec:e2:c5:97:93:33:09:aa:15:
6e:03:de:d0:88:14:7f:52:b4:69:48:35:4e:49:b6:8c:31:a0:
6d:e4:03:9a:21:be:9a:42:69:ac:03:64:f3:c0:11:57:0c:77:
c3:11:16:fe:9a:f6:39:ec:fc:f6:32:13:35:02:87:f6:52:2d:
28:0c:9b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:57:09 2024 by rpki-client on console-ams.rpki-client.org