Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/058NlUDIWNUWjx1N7Z3K20D2rSM.roa
File: 058NlUDIWNUWjx1N7Z3K20D2rSM.roa (raw, json)
Hash identifier: f+pi3yNQvxDPr9FTG86AGByEvUL7ula3prhtUug7/98=
Subject key identifier: D3:9F:0D:95:40:C8:58:D5:16:8F:1D:4D:ED:9D:CA:DB:40:F6:AD:23
Certificate issuer: /CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Certificate serial: 018D78C89DFFEEF4017C48BDBC31D6A4F36E
Authority key identifier: 1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/058NlUDIWNUWjx1N7Z3K20D2rSM.roa
Signing time: Mon 05 Feb 2024 10:20:30 +0000
ROA not before: Mon 05 Feb 2024 10:20:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43766
IP address blocks: 2a00:5400:f000::/48 maxlen: 48
2a00:5400:f001::/48 maxlen: 48
2a00:5400:f002::/48 maxlen: 48
2a00:5400:f003::/48 maxlen: 48
2a00:5400:f004::/48 maxlen: 48
2a00:5400:f005::/48 maxlen: 48
2a00:5400:f006::/48 maxlen: 48
2a00:5400:f007::/48 maxlen: 48
2a00:5400:f008::/47 maxlen: 47
2a00:5400:f008::/48 maxlen: 48
2a00:5400:f009::/48 maxlen: 48
2a00:5400:f00a::/47 maxlen: 47
2a00:5400:f00a::/48 maxlen: 48
2a00:5400:f00b::/48 maxlen: 48
2a00:5400:f00c::/47 maxlen: 47
2a00:5400:f00c::/48 maxlen: 48
2a00:5400:f00d::/48 maxlen: 48
2a00:5400:f00e::/47 maxlen: 47
2a00:5400:f00e::/48 maxlen: 48
2a00:5400:f00f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:78:c8:9d:ff:ee:f4:01:7c:48:bd:bc:31:d6:a4:f3:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Validity
Not Before: Feb 5 10:20:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d39f0d9540c858d5168f1d4ded9dcadb40f6ad23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:eb:d3:50:5e:2e:d7:5d:10:e2:4c:2c:8f:41:
76:84:ad:97:2f:e1:1d:7c:42:92:18:13:f0:fd:67:
98:ec:3a:db:08:a4:b8:27:5a:6b:cb:df:e8:da:90:
e8:a6:5e:34:54:8f:a2:45:d2:87:1a:83:b1:4a:b4:
69:da:6e:71:98:ab:5d:bd:cb:bc:bf:50:78:64:91:
94:1c:58:fe:2b:ab:39:d7:f4:a8:72:a1:cc:ba:3c:
e1:36:7a:be:bf:86:00:66:57:4d:12:01:7d:71:0e:
ca:e0:b4:b6:64:79:02:45:64:1d:66:5d:0a:e0:c5:
dc:aa:b7:73:0a:a9:1c:89:8b:6c:7d:4d:f2:5f:03:
78:94:bf:80:c7:b5:a1:ed:22:0e:7c:fc:cb:a6:0b:
0c:1a:d2:6b:3e:b7:21:02:88:5a:4f:55:f6:8e:8b:
5d:9b:8f:e3:8c:d2:18:b5:55:48:b8:fe:f3:bf:b8:
e4:fc:a2:af:31:fd:fa:73:12:b0:47:60:ef:27:a8:
29:dd:99:0b:d5:d3:f1:df:31:b1:f7:84:00:ba:90:
dc:25:54:05:b6:d4:56:44:05:83:31:c7:d7:b5:65:
f8:ca:4d:8d:08:ef:24:0e:36:3d:9a:55:e4:1f:4d:
6c:6e:32:61:19:69:4d:b1:df:a5:8c:26:d9:7b:9c:
89:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9F:0D:95:40:C8:58:D5:16:8F:1D:4D:ED:9D:CA:DB:40:F6:AD:23
X509v3 Authority Key Identifier:
keyid:1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/058NlUDIWNUWjx1N7Z3K20D2rSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:5400:f000::/44
Signature Algorithm: sha256WithRSAEncryption
9c:53:52:01:ad:be:26:a6:ce:ad:31:7a:70:82:9e:be:1c:8f:
cd:82:4d:54:60:34:98:4c:a5:0c:22:4c:78:6d:68:94:cc:ec:
8d:c8:21:c2:07:8f:47:75:7b:e7:8a:b4:61:d2:57:ac:36:f9:
4f:71:8d:e4:15:fc:d2:21:4c:5a:e6:ee:c3:71:fb:ee:35:fd:
f6:0e:88:2b:3c:ab:be:d8:08:73:cd:d7:a0:e9:cc:f0:cf:3c:
c1:bc:8b:6c:dc:c1:42:ec:c2:7c:13:1c:8b:a6:7e:0f:17:f4:
9e:7b:b2:ad:fd:23:1b:70:0f:fe:1e:6d:ae:60:8a:af:01:9e:
b5:d3:7b:23:79:20:c0:25:18:7a:59:09:27:ad:c4:1d:52:da:
20:82:86:c7:6c:a7:32:3b:2e:31:09:d2:ce:92:58:15:85:44:
a0:6a:c7:89:c8:e9:d8:bd:09:95:9d:62:5c:a1:1d:30:35:f6:
98:b4:f9:01:de:37:e1:71:3c:26:f7:06:9c:bc:8f:4a:b1:30:
30:11:1e:bb:75:ac:bc:03:57:74:6b:bf:9b:7f:cf:c4:2e:5e:
5e:69:97:5b:a4:a3:6c:5a:91:54:9d:96:26:d9:9a:d8:46:0d:
61:6b:bf:8c:11:3c:68:80:2a:24:6d:73:09:31:38:36:d9:42:
79:bb:d8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:03:33 2024 by rpki-client on console-fra.rpki-client.org