Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/4altraI-OW4DHR4SpRpWOqmZWMI.roa
File: 4altraI-OW4DHR4SpRpWOqmZWMI.roa (raw, json)
Hash identifier: uAiBdk3XOhXNntItqPAjghVK139NO7vmiNX99JqAapo=
Subject key identifier: E1:A9:6D:AD:A2:3E:39:6E:03:1D:1E:12:A5:1A:56:3A:A9:99:58:C2
Certificate issuer: /CN=74b42a6de4e01fc31250d1bbe322281046ee61aa
Certificate serial: 018CC56EC9F2FC27955921F9D848EF20B553
Authority key identifier: 74:B4:2A:6D:E4:E0:1F:C3:12:50:D1:BB:E3:22:28:10:46:EE:61:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/4altraI-OW4DHR4SpRpWOqmZWMI.roa
Signing time: Mon 01 Jan 2024 14:30:21 +0000
ROA not before: Mon 01 Jan 2024 14:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50399
IP address blocks: 2a10:dac0:100::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/dLQqbeTgH8MSUNG74yIoEEbuYao.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/dLQqbeTgH8MSUNG74yIoEEbuYao.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 20:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:c9:f2:fc:27:95:59:21:f9:d8:48:ef:20:b5:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b42a6de4e01fc31250d1bbe322281046ee61aa
Validity
Not Before: Jan 1 14:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1a96dada23e396e031d1e12a51a563aa99958c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ff:d1:b1:ed:7a:55:d2:a3:c2:ef:8f:02:75:
b8:66:7a:7f:c5:4b:74:ea:0c:46:8c:fd:cc:62:e2:
ec:62:86:9f:5a:71:2f:56:7c:1c:7f:1f:b4:4a:6e:
15:cc:c4:d6:46:d9:25:1f:f3:fc:f8:dc:6e:be:3b:
71:d0:ee:2d:a0:38:b6:6d:25:c1:70:3b:29:9e:a4:
7a:98:84:3f:4b:1b:d1:a3:1b:5f:a4:9a:15:47:63:
b3:f5:f9:b9:e4:90:56:7b:c5:38:e1:4c:c7:ab:40:
93:97:f3:0b:fd:98:5b:09:bf:f9:38:a6:e5:a2:01:
bf:1c:b7:6c:d7:fc:c4:be:42:76:91:5a:a8:9c:27:
fa:ee:ff:05:72:d0:bd:87:52:7b:23:21:80:9f:51:
72:9c:c5:b9:11:f0:09:39:68:d5:1c:73:21:02:e5:
b8:27:e4:be:91:a4:9c:54:22:9f:59:29:fc:f9:88:
e2:f8:f9:b3:19:88:3d:cd:94:4c:0e:49:ed:ea:11:
b1:6a:c4:b1:e1:d7:09:fe:e5:10:7b:42:a4:cb:f0:
a5:f9:2e:fa:34:be:a7:28:3f:09:f2:3b:03:1c:ae:
cd:6d:3d:50:00:14:ce:4d:0c:ab:d0:c7:b1:8a:d0:
39:41:61:07:67:06:94:0f:bf:40:cb:60:71:11:31:
df:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A9:6D:AD:A2:3E:39:6E:03:1D:1E:12:A5:1A:56:3A:A9:99:58:C2
X509v3 Authority Key Identifier:
keyid:74:B4:2A:6D:E4:E0:1F:C3:12:50:D1:BB:E3:22:28:10:46:EE:61:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/4altraI-OW4DHR4SpRpWOqmZWMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/dLQqbeTgH8MSUNG74yIoEEbuYao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:dac0:100::/48
Signature Algorithm: sha256WithRSAEncryption
76:05:17:c9:dd:c0:62:7e:83:0a:97:ed:44:b1:3c:fa:64:14:
89:a2:45:db:92:1d:24:d8:4f:f4:ad:53:f7:53:34:2b:af:f3:
95:4e:8d:b7:7d:8d:d5:6a:ae:6c:c8:71:9f:50:9e:f6:1d:91:
04:83:f7:f7:b3:eb:34:9a:d0:2e:ec:cd:05:42:bc:1e:73:bb:
66:3b:7f:6c:34:56:16:8f:ac:64:8b:c4:d8:8b:3d:dc:e3:bb:
59:d4:0e:07:75:21:da:9d:15:c1:1e:bc:65:10:d1:3b:24:0b:
01:41:67:f0:a1:e9:65:a4:70:ff:b4:c7:41:de:87:e5:de:a6:
e7:4c:d1:07:d5:e0:ea:2a:43:85:50:27:94:17:e1:49:f4:70:
5f:6b:8e:96:0c:08:e2:45:45:e7:ec:02:1a:4f:63:d3:d2:24:
6d:a1:f9:5e:57:4e:9c:0b:7a:1c:4a:11:c7:44:b7:2c:13:02:
c7:b9:e6:40:3f:10:7b:6e:af:f9:1d:37:ae:15:5c:99:e9:00:
23:59:38:fa:61:8c:c6:07:a4:a2:88:be:db:35:90:34:8f:f7:
3d:cb:0e:2f:23:1b:aa:cf:cc:4e:fb:a0:2c:be:33:29:51:0e:
f4:96:9e:f7:f7:62:64:2e:c5:e5:07:91:37:d1:3c:8f:8a:7d:
e5:d9:90:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 22:56:32 2024 by rpki-client on console-fra.rpki-client.org