Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9657a5-8ce2-405e-ac8c-dd2accacfccc/1/oK-E66YcVkte06xj_n0KgdERRdc.roa
File: oK-E66YcVkte06xj_n0KgdERRdc.roa (raw, json)
Hash identifier: SIF8HOSRM/PIxIBDxl6Qokbbqagzu4mHy7cTuzlsAa4=
Subject key identifier: A0:AF:84:EB:A6:1C:56:4B:5E:D3:AC:63:FE:7D:0A:81:D1:11:45:D7
Certificate issuer: /CN=b162156f59cfc79396e64f3342de64de3f88ee18
Certificate serial: 018D51E727352340193877F5BAB84FC9E92C
Authority key identifier: B1:62:15:6F:59:CF:C7:93:96:E6:4F:33:42:DE:64:DE:3F:88:EE:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sWIVb1nPx5OW5k8zQt5k3j-I7hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9657a5-8ce2-405e-ac8c-dd2accacfccc/1/oK-E66YcVkte06xj_n0KgdERRdc.roa
Signing time: Sun 28 Jan 2024 21:08:39 +0000
ROA not before: Sun 28 Jan 2024 21:08:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215948
IP address blocks: 2001:67c:5ac::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9657a5-8ce2-405e-ac8c-dd2accacfccc/1/sWIVb1nPx5OW5k8zQt5k3j-I7hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9657a5-8ce2-405e-ac8c-dd2accacfccc/1/sWIVb1nPx5OW5k8zQt5k3j-I7hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sWIVb1nPx5OW5k8zQt5k3j-I7hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 03:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:51:e7:27:35:23:40:19:38:77:f5:ba:b8:4f:c9:e9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b162156f59cfc79396e64f3342de64de3f88ee18
Validity
Not Before: Jan 28 21:08:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0af84eba61c564b5ed3ac63fe7d0a81d11145d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f4:ad:aa:97:45:e5:ec:be:b8:76:58:b1:97:
4f:ff:f9:26:71:d5:55:62:b9:ed:fa:51:a3:f0:27:
4f:4c:a9:b1:e5:be:f3:67:a3:30:57:dc:fe:21:e1:
ad:af:8f:64:b3:49:18:82:9e:2f:63:5c:01:b5:5d:
32:ce:cd:f4:78:af:4b:77:8a:fe:2c:89:b4:85:60:
d0:b0:d3:37:9d:5b:cc:0b:ae:ac:ff:55:e8:2a:6f:
c9:52:d7:83:34:12:20:db:b7:c7:3e:5b:52:9c:8f:
c8:6d:e4:50:0b:6e:d9:a1:02:6e:0c:e4:47:75:e5:
28:6f:b8:5b:c1:2f:ac:cd:ec:f1:c9:5d:88:71:8a:
82:6f:c1:2f:ea:18:35:3c:65:62:a4:75:5d:5d:53:
52:9e:88:77:16:b0:e8:9c:47:f4:44:f7:9b:50:fe:
29:df:f3:e2:5f:ed:68:f6:95:af:0b:fd:01:11:03:
91:55:6d:85:bd:9b:97:7c:bf:e2:e7:6c:86:d2:c7:
e7:1b:0f:48:e9:10:08:a0:bb:61:2f:74:12:d9:55:
e2:91:e8:84:7e:ef:b6:e5:9a:02:d7:d6:f9:a6:13:
3b:5c:59:14:4b:94:c6:c8:34:7c:a0:2d:29:dd:85:
59:8f:05:d1:ce:82:fe:6f:8c:6e:00:60:ca:7f:ec:
a8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:AF:84:EB:A6:1C:56:4B:5E:D3:AC:63:FE:7D:0A:81:D1:11:45:D7
X509v3 Authority Key Identifier:
keyid:B1:62:15:6F:59:CF:C7:93:96:E6:4F:33:42:DE:64:DE:3F:88:EE:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sWIVb1nPx5OW5k8zQt5k3j-I7hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9657a5-8ce2-405e-ac8c-dd2accacfccc/1/oK-E66YcVkte06xj_n0KgdERRdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9657a5-8ce2-405e-ac8c-dd2accacfccc/1/sWIVb1nPx5OW5k8zQt5k3j-I7hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:5ac::/48
Signature Algorithm: sha256WithRSAEncryption
96:b6:fb:a9:85:ab:49:ed:fa:27:75:7e:94:be:0f:4e:c2:22:
91:7b:31:c9:15:f8:d9:de:6a:cd:93:23:2c:c4:f0:bc:05:98:
cf:6e:3a:5e:69:81:63:6e:94:60:32:30:1c:94:51:51:e0:09:
04:a3:55:13:8d:0b:8d:21:e4:aa:5b:10:87:28:b4:37:ed:8f:
f1:ee:99:3a:de:06:df:49:3f:6d:c3:06:31:a1:74:67:85:63:
71:4e:08:dd:29:e0:6d:51:fd:04:cd:62:94:e4:58:c0:4f:2d:
2d:c6:16:09:60:5b:40:dc:3b:6b:ff:ab:81:bb:51:7f:e1:f2:
07:1d:35:22:c1:77:1d:71:e6:62:36:3e:57:66:23:59:43:8d:
05:4b:1d:85:0a:4c:68:da:cc:00:1d:01:49:6b:d6:30:df:74:
40:8f:22:b5:2a:14:2c:8e:54:56:cf:e6:0c:85:f8:a6:4c:c4:
0a:f1:9c:be:d0:3b:15:9e:c3:cc:39:d4:34:8f:5b:7e:c8:be:
ac:0b:c6:78:bf:42:df:0f:ce:95:ff:d3:34:dc:25:31:6a:3b:
9d:2e:0e:2a:b5:1f:69:a3:42:b9:94:e0:d6:fc:8a:76:ee:62:
c5:95:bf:b2:5d:5d:03:34:03:cd:18:e7:2d:d6:34:1e:fd:7b:
a1:8b:d0:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 09:49:14 2024 by rpki-client on console-fra.rpki-client.org