Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/7r6ABkmqlrzoW4VTRM-CW6hYxuA.roa
File: 7r6ABkmqlrzoW4VTRM-CW6hYxuA.roa (raw, json)
Hash identifier: FG0OIBH/uyR6TVHSRxR/xOAzJSI/URcNB7oXx1C0fOY=
Subject key identifier: EE:BE:80:06:49:AA:96:BC:E8:5B:85:53:44:CF:82:5B:A8:58:C6:E0
Certificate issuer: /CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Certificate serial: 018CCA2A12FE998D4E96134F21CD41020A30
Authority key identifier: 34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/7r6ABkmqlrzoW4VTRM-CW6hYxuA.roa
Signing time: Tue 02 Jan 2024 12:33:24 +0000
ROA not before: Tue 02 Jan 2024 12:33:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 45.87.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:12:fe:99:8d:4e:96:13:4f:21:cd:41:02:0a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Validity
Not Before: Jan 2 12:33:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eebe800649aa96bce85b855344cf825ba858c6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a0:e5:8a:ad:bb:2c:bc:06:df:ee:3d:81:2f:
26:07:35:00:68:42:3f:ec:ee:dd:c5:e1:7d:1f:8a:
d5:15:a3:c2:05:7c:b3:e4:08:b3:8e:43:7d:62:d5:
a7:f8:63:2c:88:14:38:d9:47:1a:0f:b9:15:32:a6:
8e:8f:b3:84:1d:dd:87:c2:65:5d:6d:3a:30:d5:0e:
c1:85:59:a2:17:53:d2:62:a5:72:76:3b:42:c3:08:
c0:cb:32:a5:27:ef:e0:59:8c:65:59:57:48:04:6e:
85:f1:ad:0a:64:45:45:c6:87:90:1a:82:23:5e:84:
9d:6b:d8:c0:62:84:de:6f:b7:90:cd:b3:f7:5e:55:
cf:0f:c9:fd:82:22:b1:02:6e:47:cd:f9:c8:96:eb:
74:b0:e4:4e:9c:33:46:e4:5f:fc:04:a9:6a:9a:b4:
9d:f1:c7:2c:a4:fe:4d:d1:60:31:bc:65:f3:7f:73:
d8:e6:6f:f2:89:ed:d5:88:36:da:33:dc:7f:5a:e7:
a4:51:91:72:7a:26:0c:b3:b3:7d:af:8f:cf:04:b7:
62:c6:4c:57:68:3a:db:4a:ff:97:f7:57:cf:d9:8e:
49:9c:00:ff:15:54:7e:6b:9d:5b:2d:ac:d5:41:01:
3d:92:b2:71:2d:53:36:f5:ea:27:28:4d:2b:c8:d6:
57:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:BE:80:06:49:AA:96:BC:E8:5B:85:53:44:CF:82:5B:A8:58:C6:E0
X509v3 Authority Key Identifier:
keyid:34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/7r6ABkmqlrzoW4VTRM-CW6hYxuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.61.0/24
Signature Algorithm: sha256WithRSAEncryption
33:00:83:78:49:83:16:63:e9:d4:f8:e2:d4:b7:b4:31:ea:63:
c9:71:80:4b:5f:e2:98:eb:5d:fb:34:b6:6b:44:b3:9e:dd:f7:
0f:60:69:fa:7f:c7:00:6e:73:bc:19:2c:eb:df:4c:fd:79:54:
bf:d2:a6:97:23:30:e5:e9:37:6e:11:db:7d:06:39:fc:67:6e:
31:b9:b2:8b:95:22:47:35:f6:8c:c5:e2:65:90:b1:b8:9c:bd:
55:d8:54:ec:2d:ab:59:21:36:37:17:8c:1b:37:0e:d6:25:c5:
90:6d:7b:ef:0d:13:a7:74:d1:8d:c3:9a:2b:17:83:11:49:6d:
6a:ac:61:2e:95:ae:f6:f5:96:a9:4e:ac:36:3c:66:8e:5a:64:
1f:c5:8c:09:b1:c6:b2:4a:e0:4d:4b:6b:54:d8:f1:76:1d:0b:
44:df:20:8a:7b:3b:84:90:de:8e:4d:5d:e2:29:64:5c:6f:57:
c3:40:38:75:3f:42:ab:bf:ed:dd:b3:44:3b:45:a2:34:19:e9:
95:43:51:79:bf:f8:72:fc:aa:e0:3f:89:7f:5a:7c:c5:ed:ad:
9d:24:ce:c5:e6:a7:33:b4:a4:7d:50:ac:99:aa:b5:e2:cf:2f:
75:7f:cc:46:6d:88:d8:f5:2e:bc:50:04:a6:a2:0a:8f:a1:c0:
c7:de:07:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:48:03 2024 by rpki-client on console-ams.rpki-client.org