Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/L_zjKcjRwWK4M9UIh-VrSVRLiUI.roa
File: L_zjKcjRwWK4M9UIh-VrSVRLiUI.roa (raw, json)
Hash identifier: FTUFCJUys0n95M+dY8vq7axfnpwad3qvsXp4+Pm8BWg=
Subject key identifier: 2F:FC:E3:29:C8:D1:C1:62:B8:33:D5:08:87:E5:6B:49:54:4B:89:42
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 018CC348F857DB38BEE9B4E9C3D27BAD7A4C
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/L_zjKcjRwWK4M9UIh-VrSVRLiUI.roa
Signing time: Mon 01 Jan 2024 04:29:48 +0000
ROA not before: Mon 01 Jan 2024 04:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12364
IP address blocks: 195.251.208.0/20 maxlen: 20
83.212.88.0/22 maxlen: 22
2001:648:2810::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f8:57:db:38:be:e9:b4:e9:c3:d2:7b:ad:7a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 04:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ffce329c8d1c162b833d50887e56b49544b8942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:dd:46:f1:f4:4a:74:12:6d:28:70:3a:44:47:
22:4f:b9:c9:21:fd:de:89:6f:50:dd:e8:5c:a4:4b:
5e:82:89:d6:1d:c9:de:ff:26:93:6b:01:0e:30:5d:
4e:5b:8c:86:58:a7:e6:69:91:84:31:3d:f3:b7:2f:
bb:53:27:ff:8d:f5:25:b0:9e:28:bf:fc:2e:65:47:
df:1d:45:e9:60:97:b1:81:62:e6:98:18:f9:9a:b3:
5b:0c:b8:47:0c:97:46:6d:4d:5b:88:c5:d8:c6:cc:
90:c5:de:a6:80:d2:a0:3a:ca:e2:3a:ec:e2:0a:f5:
e1:e8:b0:0c:11:fc:a7:7f:64:6a:48:72:f8:69:ce:
e7:64:67:e1:75:6b:f6:93:8c:50:ce:6b:aa:e8:c7:
75:fa:19:dd:8a:44:8b:8a:5c:b2:2f:0d:b0:34:74:
85:20:44:5a:4b:04:1e:20:48:56:fc:27:f9:ed:71:
4d:4f:55:0b:44:61:f1:b1:bb:8a:b4:40:0c:c7:3e:
50:1e:ee:1f:3f:5b:da:bf:40:09:7b:aa:ef:67:48:
1b:7c:cc:05:f9:44:65:d1:3f:d3:d2:af:fb:c2:84:
1a:7d:55:c0:5a:ad:8c:8d:80:35:a0:08:9d:c3:7c:
5b:ed:81:a4:92:cd:a1:47:fa:55:b7:50:e4:f6:a7:
68:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FC:E3:29:C8:D1:C1:62:B8:33:D5:08:87:E5:6B:49:54:4B:89:42
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/L_zjKcjRwWK4M9UIh-VrSVRLiUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.212.88.0/22
195.251.208.0/20
IPv6:
2001:648:2810::/48
Signature Algorithm: sha256WithRSAEncryption
47:7d:d7:28:0c:33:d7:e0:21:2d:4c:26:7c:68:66:77:0e:0d:
d8:3c:f5:90:9d:24:c3:1b:13:4a:50:c5:4e:cd:8a:cc:51:ac:
35:6c:e1:53:ec:0b:e0:d4:72:d8:64:4c:47:12:1a:0a:9f:f4:
4d:c1:e2:f8:fe:25:63:f0:3d:72:dd:32:e0:72:e9:ce:9a:6b:
df:f2:99:e1:04:b8:21:3f:e7:9a:11:f9:f7:d7:b4:df:df:37:
00:bc:da:cc:a1:3d:a2:78:7e:7a:fa:e2:d7:32:fb:f7:01:aa:
b2:8b:34:c1:42:73:83:31:a0:e3:62:b9:1a:fb:4f:7a:a5:92:
41:99:2d:04:5c:2f:69:04:7a:a2:e4:77:af:39:f9:00:e4:96:
e0:bf:15:a4:b7:7a:99:48:63:bf:6b:d1:1c:b9:0c:d3:2f:9a:
6a:83:3f:a5:e9:d2:c8:d1:0f:a3:86:7d:bb:d5:04:28:25:47:
2e:4a:6d:9f:ef:4b:67:b8:12:2d:f7:9c:5f:19:09:15:e4:9a:
53:eb:21:4d:fc:06:0e:31:d5:d8:05:80:29:24:1e:6c:e3:59:
42:6d:be:49:8c:ac:44:f5:f1:1f:1f:d3:16:82:d0:90:9b:a1:
e6:37:44:fc:49:7a:92:06:c6:9d:53:bb:8d:78:84:36:dd:6f:
e1:18:40:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:34:59 2024 by rpki-client on console-ams.rpki-client.org