Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ZYBYmnx-zL7Urj21PqdVUMoCJkc.roa
File: ZYBYmnx-zL7Urj21PqdVUMoCJkc.roa (raw, json)
Hash identifier: dXNfzOe6WH3EtHIBjmHXPqT2idloUXYUKTZizZFC+BY=
Subject key identifier: 65:80:58:9A:7C:7E:CC:BE:D4:AE:3D:B5:3E:A7:55:50:CA:02:26:47
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 018CC56EC4E7CB2AABDF33ED0B5D28E5829E
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ZYBYmnx-zL7Urj21PqdVUMoCJkc.roa
Signing time: Mon 01 Jan 2024 14:30:20 +0000
ROA not before: Mon 01 Jan 2024 14:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15517
IP address blocks: 62.65.128.0/19 maxlen: 19
62.65.137.0/24 maxlen: 24
94.78.0.0/18 maxlen: 18
2a01:330::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:c4:e7:cb:2a:ab:df:33:ed:0b:5d:28:e5:82:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Jan 1 14:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6580589a7c7eccbed4ae3db53ea75550ca022647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:93:9d:99:06:7a:76:c1:32:cd:16:f1:aa:ce:
a6:71:0a:88:38:3e:79:e3:2c:19:34:4d:02:37:33:
7c:fe:68:37:43:10:f1:06:57:7c:34:50:ab:70:53:
da:cf:8b:7c:74:7b:6c:00:69:0f:e7:6d:d1:b8:c8:
45:7f:d4:7a:46:67:52:78:fb:0b:13:10:f5:86:0e:
f5:8b:2b:2b:58:50:76:b3:05:ef:eb:be:bc:2d:6b:
5a:c2:8d:2d:79:c9:53:69:06:f3:8b:7f:9d:1b:91:
86:55:02:77:b0:24:d5:c4:73:e8:93:4f:4d:7a:5f:
2e:b6:55:aa:bf:90:f6:ad:16:d4:f2:3a:b0:7c:9d:
0f:38:f2:0b:a0:b5:9d:4c:8c:80:df:8d:f2:83:ab:
81:35:46:b5:47:66:73:4e:ec:f9:17:e9:fb:6d:1a:
9a:1d:3d:33:f4:e3:fa:3b:a0:ae:f4:9b:aa:1c:73:
e8:ec:89:f1:f7:6c:dd:00:c2:e2:a3:6a:49:f0:50:
c1:77:0b:c8:1c:c4:ea:94:c2:25:71:04:2c:b1:3f:
d1:68:61:ba:98:c6:a8:36:bb:ef:a8:6f:44:77:67:
26:e1:38:d0:b9:c0:21:0d:ec:c0:39:41:20:7c:83:
7d:b6:5f:2e:7f:6d:79:e0:0a:e5:e0:87:fc:71:12:
11:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:80:58:9A:7C:7E:CC:BE:D4:AE:3D:B5:3E:A7:55:50:CA:02:26:47
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ZYBYmnx-zL7Urj21PqdVUMoCJkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.128.0/19
94.78.0.0/18
IPv6:
2a01:330::/32
Signature Algorithm: sha256WithRSAEncryption
3f:39:74:da:42:ee:92:85:5d:6c:4f:76:07:c7:86:61:aa:38:
4d:71:73:20:80:a6:83:41:46:d9:d2:b4:82:46:bc:26:c1:34:
9d:25:54:92:64:e7:93:32:4e:fb:84:50:b9:29:27:df:e9:25:
7e:b0:23:25:9c:00:e6:c2:72:31:c6:12:88:76:98:8e:0b:e6:
17:6d:6c:71:61:95:48:99:ff:a9:6e:d5:16:72:f3:63:2d:33:
62:0f:62:28:a5:c5:7b:1a:ce:b8:9a:e9:f0:fd:67:86:f0:de:
c2:76:e7:58:19:a6:5e:e3:0c:b7:c1:a7:6f:bb:ae:55:04:5f:
2e:4b:50:5f:46:2d:5c:35:d3:b7:e3:b4:39:fd:ab:fb:52:3e:
84:f6:b3:6d:b1:54:20:da:e7:86:62:2d:7e:21:51:99:ad:5f:
05:b4:0a:05:04:18:3e:f7:77:ff:b4:10:66:6d:e0:72:56:4c:
1c:df:d7:75:c0:83:a5:31:84:5f:94:66:c3:4f:e8:3b:a6:6d:
17:88:8c:8a:69:28:35:77:32:ad:13:67:e3:da:da:96:9f:ab:
a6:f6:29:c7:fa:85:92:e9:92:78:87:a8:89:9b:cc:00:89:f8:
0f:34:7c:ed:88:b3:0d:48:66:8e:53:cb:12:ca:a6:04:1f:98:
4b:29:e7:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:32:33 2024 by rpki-client on console-fra.rpki-client.org