Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/59oavJoWGSqqZBL9yvl5eaKv0Pw.roa
File: 59oavJoWGSqqZBL9yvl5eaKv0Pw.roa (raw, json)
Hash identifier: bb17+Ns+yGjmtbI64ax1hLABsTigQp8gCUqfWQJ3JEE=
Subject key identifier: E7:DA:1A:BC:9A:16:19:2A:AA:64:12:FD:CA:F9:79:79:A2:AF:D0:FC
Certificate issuer: /CN=e81393bdff601462a55591d26acb3d8c923ff26d
Certificate serial: 01927AB5DE54E4ED8326945E8D4DA278CEE8
Authority key identifier: E8:13:93:BD:FF:60:14:62:A5:55:91:D2:6A:CB:3D:8C:92:3F:F2:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6BOTvf9gFGKlVZHSass9jJI_8m0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/59oavJoWGSqqZBL9yvl5eaKv0Pw.roa
Signing time: Fri 11 Oct 2024 08:33:12 +0000
ROA not before: Fri 11 Oct 2024 08:33:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213373
IP address blocks: 2.56.10.0/24 maxlen: 24
149.3.170.0/24 maxlen: 24
2a10:5fc0::/32 maxlen: 32
2a10:5fc1::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/6BOTvf9gFGKlVZHSass9jJI_8m0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/6BOTvf9gFGKlVZHSass9jJI_8m0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6BOTvf9gFGKlVZHSass9jJI_8m0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7a:b5:de:54:e4:ed:83:26:94:5e:8d:4d:a2:78:ce:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e81393bdff601462a55591d26acb3d8c923ff26d
Validity
Not Before: Oct 11 08:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7da1abc9a16192aaa6412fdcaf97979a2afd0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5b:fd:5c:3d:5c:bf:44:ea:b6:1a:91:c8:17:
81:89:99:01:10:94:91:ea:c0:aa:7b:6b:54:04:6a:
f4:64:81:a7:b9:06:87:73:89:63:8f:0e:dc:3a:61:
18:0c:e1:80:2c:e1:89:bc:f8:85:93:bb:e8:6d:9f:
15:62:81:08:32:92:7f:51:67:57:ce:d6:75:fc:6a:
21:6c:00:8e:59:e8:fd:d9:dd:7b:1e:01:06:e9:8a:
ad:f1:94:09:74:f6:7b:36:54:5f:d4:9f:15:2e:10:
a2:88:8b:05:27:84:9b:67:72:36:98:3d:c3:49:e5:
7a:ac:50:6a:86:68:3c:aa:4f:69:4b:c9:75:fc:7d:
72:78:04:2e:6d:b3:eb:33:56:29:de:89:db:7d:d0:
14:27:11:ff:1e:27:70:f3:64:36:47:19:0e:84:a8:
7a:13:92:f7:e1:7f:8e:59:77:35:3c:09:8c:4f:0a:
e9:d8:59:f1:af:44:63:bd:87:92:e8:4a:56:e8:da:
c7:1d:a9:00:de:59:a1:5d:eb:22:11:38:7e:4e:23:
e4:15:af:85:21:8c:78:3b:67:9f:f1:f5:4a:20:58:
d5:b2:23:a1:b2:81:60:6b:dd:f8:28:0d:25:4f:2c:
8d:ca:13:7d:f6:51:9f:77:07:2c:08:c4:4f:62:cc:
51:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DA:1A:BC:9A:16:19:2A:AA:64:12:FD:CA:F9:79:79:A2:AF:D0:FC
X509v3 Authority Key Identifier:
keyid:E8:13:93:BD:FF:60:14:62:A5:55:91:D2:6A:CB:3D:8C:92:3F:F2:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6BOTvf9gFGKlVZHSass9jJI_8m0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/59oavJoWGSqqZBL9yvl5eaKv0Pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/6BOTvf9gFGKlVZHSass9jJI_8m0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.10.0/24
149.3.170.0/24
IPv6:
2a10:5fc0::/31
Signature Algorithm: sha256WithRSAEncryption
0f:85:7d:20:cb:7b:48:9e:a2:20:4a:1f:67:ef:0d:36:86:6a:
b8:c2:dc:17:8e:0c:0e:7a:e3:1b:d8:d7:e2:f4:6e:50:9d:5a:
7f:98:de:7f:ca:12:0f:97:e1:24:41:c4:b0:3b:6c:d5:82:89:
06:14:f3:72:b2:8d:ed:63:6e:0a:ab:b5:ac:9c:69:3f:75:91:
36:00:4d:b8:06:7f:00:54:98:3a:30:a8:c6:fc:b5:da:20:0a:
9c:15:f1:93:8c:6a:ad:e7:4c:77:65:90:7a:df:b6:09:4e:66:
36:77:2e:c2:ba:ba:e1:85:3b:c7:32:bd:2e:97:bb:8e:61:86:
88:4a:3a:9e:f2:b3:56:d1:a6:a2:7c:92:aa:b1:6b:c6:8b:8e:
1b:e2:41:7b:11:e5:5e:f6:b9:bb:b5:4e:75:e9:6a:9d:3a:bf:
66:d3:d0:b0:d6:c7:99:cf:8e:cc:fd:7d:af:cd:f2:35:a1:cf:
5e:98:bf:ff:81:bd:ea:63:af:91:24:1c:7c:6b:f7:f3:77:8a:
3b:e2:42:b6:66:4c:4f:cf:3d:b1:83:4d:08:6f:23:ad:2e:3b:
cc:5b:66:71:f6:e3:d0:bd:51:10:a9:56:44:33:98:5b:6d:7c:
d1:0f:7d:73:9b:6d:d8:ab:ff:79:34:f3:55:11:02:cb:dc:26:
82:cc:36:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:46:35 2024 by rpki-client on console-ams.rpki-client.org