Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/OgI4INc6MMsig7q-HMAjkDOmFyo.roa
File: OgI4INc6MMsig7q-HMAjkDOmFyo.roa (raw, json)
Hash identifier: 5+v55jvCkfEPMhNkvCFk+EKDwPVIX5Xf3BvqqiN2f0g=
Subject key identifier: 3A:02:38:20:D7:3A:30:CB:22:83:BA:BE:1C:C0:23:90:33:A6:17:2A
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 018DB1DA7B15C4F6AED46E9D1DD3A0D9A077
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/OgI4INc6MMsig7q-HMAjkDOmFyo.roa
Signing time: Fri 16 Feb 2024 12:18:22 +0000
ROA not before: Fri 16 Feb 2024 12:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3356
IP address blocks: 2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.mft
rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b1:da:7b:15:c4:f6:ae:d4:6e:9d:1d:d3:a0:d9:a0:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Feb 16 12:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a023820d73a30cb2283babe1cc0239033a6172a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:65:7e:f1:44:7c:64:a9:d4:f2:3e:0a:b0:37:
aa:04:15:b4:c4:08:04:0d:cf:e7:d3:a1:f1:75:73:
e1:f2:aa:93:b5:81:05:c1:79:a1:21:fa:22:c7:ca:
0d:82:be:47:23:aa:73:10:98:da:b6:3c:b3:e4:90:
49:79:c3:9f:f0:f0:45:10:dc:34:ec:73:92:f3:3a:
c3:db:54:11:45:92:b3:32:17:b6:d0:e1:0f:70:28:
5c:e2:bb:79:f8:aa:61:0f:15:cb:1e:f0:9b:9a:90:
6d:19:f3:79:35:a0:71:d6:9f:1c:95:ec:71:3a:e6:
d3:2b:eb:34:1d:d7:d5:97:28:e2:be:e5:f5:92:21:
26:6d:37:3d:eb:60:17:06:3d:f5:c6:a4:94:f2:1a:
21:d8:53:78:cc:4f:2b:df:98:59:28:38:5c:f9:71:
54:88:3c:2d:c0:ee:76:b2:e9:63:3e:5d:40:de:5d:
2f:2a:8b:81:f4:94:d6:a3:ea:4f:98:47:6f:8c:60:
bc:d3:e8:62:8a:5d:3d:66:73:2f:66:f4:3d:76:3a:
0e:f7:8e:b1:29:e0:ab:5f:8d:6e:0a:29:d3:39:5e:
e7:38:eb:1e:85:ea:54:ec:b7:b6:b3:ae:24:82:ec:
d4:4f:28:28:4a:2b:52:e0:aa:6f:82:b2:72:75:b7:
3d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:02:38:20:D7:3A:30:CB:22:83:BA:BE:1C:C0:23:90:33:A6:17:2A
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/OgI4INc6MMsig7q-HMAjkDOmFyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b1:15:ef:6a:de:04:0b:01:82:35:0f:b0:f6:0c:2c:71:e0:89:
8a:64:51:36:b1:df:de:d6:e7:01:3c:c0:60:09:3b:c5:3c:13:
12:98:45:4b:d0:e8:8e:15:8f:1f:8f:51:58:d6:82:5b:a7:d4:
00:ca:6e:60:68:58:80:99:4b:92:a0:b2:f2:ff:a3:8b:eb:29:
fc:4b:53:66:72:60:b9:5b:39:7a:56:3a:0d:60:9f:dc:8d:56:
c9:88:2b:df:06:83:99:98:f4:21:4b:86:1d:d3:d8:17:d2:75:
b9:fa:e2:6e:87:f6:89:58:35:01:b6:c3:f7:cc:74:1e:57:35:
c2:36:0f:18:fd:b6:c3:e5:5a:c1:ce:8a:0c:e9:ec:73:91:b4:
6c:40:39:7d:dd:0c:07:7d:fb:0a:90:ed:0d:24:09:65:c1:27:
69:d0:d8:58:a8:6d:77:a0:88:15:21:ad:65:3a:05:65:00:1a:
cc:5b:47:52:d3:4f:8a:03:b1:92:bb:0a:0f:7a:2a:4c:80:c3:
20:47:c9:31:b6:dd:40:f4:11:b0:c9:b1:f7:2f:a4:8c:6b:b6:
74:59:73:07:99:37:6a:e7:e6:8b:6f:40:eb:5a:52:fb:6b:d2:
b4:dd:75:e7:1b:11:6b:9c:80:b8:20:8f:14:5a:12:28:b6:a7:
7a:35:3a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 13:42:22 2024 by rpki-client on console-ams.rpki-client.org