Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/_Rn_LsshASrYtHC5FdZSViwmSuQ.roa
File: _Rn_LsshASrYtHC5FdZSViwmSuQ.roa (raw, json)
Hash identifier: CAOgzYsc//Tc6d//nj3lyR08ayvb2RRA/QdIh8CdmA0=
Subject key identifier: FD:19:FF:2E:CB:21:01:2A:D8:B4:70:B9:15:D6:52:56:2C:26:4A:E4
Certificate issuer: /CN=cd6cba10ab465cf0ee3e76025c67f8554d2d01a5
Certificate serial: 018CC500D3DC7A0272F5DCB6D32988386B60
Authority key identifier: CD:6C:BA:10:AB:46:5C:F0:EE:3E:76:02:5C:67:F8:55:4D:2D:01:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWy6EKtGXPDuPnYCXGf4VU0tAaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/_Rn_LsshASrYtHC5FdZSViwmSuQ.roa
Signing time: Mon 01 Jan 2024 12:30:14 +0000
ROA not before: Mon 01 Jan 2024 12:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206271
IP address blocks: 2001:67c:be4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/zWy6EKtGXPDuPnYCXGf4VU0tAaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/zWy6EKtGXPDuPnYCXGf4VU0tAaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/zWy6EKtGXPDuPnYCXGf4VU0tAaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 12:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:d3:dc:7a:02:72:f5:dc:b6:d3:29:88:38:6b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd6cba10ab465cf0ee3e76025c67f8554d2d01a5
Validity
Not Before: Jan 1 12:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd19ff2ecb21012ad8b470b915d652562c264ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ed:bb:00:48:1b:cc:3c:91:78:45:78:56:08:
fe:e7:7f:7d:c6:07:b6:73:a9:e3:8c:0e:12:d1:0f:
e9:c2:0f:cd:bb:e6:6e:ac:3b:38:95:3d:d5:b4:ba:
59:99:1f:52:b9:18:b4:bf:20:5d:81:da:e7:fd:a4:
39:55:be:fd:cf:f6:16:d1:6c:26:e6:9b:73:35:0a:
64:27:0f:9b:18:22:61:c1:eb:20:da:4a:2a:b9:3f:
e4:91:2a:9b:e3:a1:a3:a4:b8:81:4a:e4:d0:6d:c3:
18:5b:f4:2a:ed:6d:cf:77:8a:9d:42:21:22:37:87:
cf:a2:3f:0e:63:d5:8e:9a:ba:43:32:28:23:d4:d9:
17:81:40:0f:e8:85:ff:8b:d9:73:28:d6:0f:67:69:
7d:9e:66:e2:31:ef:2e:01:40:ce:a1:c9:f5:92:de:
3c:6a:1a:96:8f:d4:80:7d:66:4a:54:27:11:52:f2:
18:fc:2b:fb:a3:fc:e6:7e:29:55:21:a5:33:c9:ae:
33:7b:fe:b8:45:d3:0b:ef:fd:0a:af:87:6e:00:67:
e2:28:73:4c:3f:e4:09:28:e9:7b:46:bb:9c:68:4a:
d7:f6:7c:b1:83:56:fc:e1:14:f9:ec:da:40:ff:49:
c5:46:fe:61:aa:4a:58:ad:e0:31:c1:48:ea:12:20:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:19:FF:2E:CB:21:01:2A:D8:B4:70:B9:15:D6:52:56:2C:26:4A:E4
X509v3 Authority Key Identifier:
keyid:CD:6C:BA:10:AB:46:5C:F0:EE:3E:76:02:5C:67:F8:55:4D:2D:01:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWy6EKtGXPDuPnYCXGf4VU0tAaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/_Rn_LsshASrYtHC5FdZSViwmSuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51dd21-9db1-4224-9aac-56afc3cbdf4e/1/zWy6EKtGXPDuPnYCXGf4VU0tAaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:be4::/48
Signature Algorithm: sha256WithRSAEncryption
5c:54:4c:4d:e3:84:d8:76:07:29:39:4c:5a:a1:49:15:98:21:
98:eb:6f:9b:e8:1c:bc:96:85:7c:ff:a8:59:bb:1c:57:8e:23:
f6:36:aa:72:6a:3b:0d:c8:f6:38:0c:51:92:c2:b8:a6:69:6b:
1e:cc:13:44:5d:a6:09:9e:0f:29:3d:87:4e:68:c4:11:24:f2:
79:5a:69:ec:83:ea:90:db:88:3d:35:fa:d2:09:a2:83:03:ab:
d2:eb:d8:af:1b:0a:ec:14:a7:7d:f9:d7:8a:09:01:ef:0e:c3:
a0:6c:9c:b4:85:87:a5:47:ce:e3:6e:d8:4a:9c:99:0a:0d:63:
66:54:9e:90:70:d3:9b:4c:e8:f7:8c:08:cd:17:05:3c:9d:08:
b7:8b:c2:6e:34:45:f2:cd:c8:1d:02:7e:9d:7e:95:a9:5e:3d:
7e:f0:4a:27:ea:6c:a3:9d:06:ad:59:4c:b0:4a:c8:a3:32:57:
ae:66:e8:82:c6:e9:b5:40:da:08:a9:4a:ee:12:6d:51:a1:78:
71:84:b7:d6:68:2f:32:9e:0c:d5:95:79:f7:47:4d:f6:eb:ac:
80:4e:b3:b6:48:36:81:d1:65:3a:45:fe:a2:8f:04:a1:0a:d4:
92:ef:10:f4:04:cc:d0:0c:c2:01:5b:99:62:14:41:ec:bb:4a:
ed:f8:5b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:14:13 2024 by rpki-client on console-fra.rpki-client.org