Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/X1Ru5lnJNwW5MqKyncOjx0MmTbg.roa
File: X1Ru5lnJNwW5MqKyncOjx0MmTbg.roa (raw, json)
Hash identifier: Z4SnZJmHxHgZjHWiNmODEA8aAK7Zg1TRC9CbBZ6fHC0=
Subject key identifier: 5F:54:6E:E6:59:C9:37:05:B9:32:A2:B2:9D:C3:A3:C7:43:26:4D:B8
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 018CC64B34299576240849E54FB083CF3897
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/X1Ru5lnJNwW5MqKyncOjx0MmTbg.roa
Signing time: Mon 01 Jan 2024 18:31:06 +0000
ROA not before: Mon 01 Jan 2024 18:31:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 2a12:3fc2:3001::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:34:29:95:76:24:08:49:e5:4f:b0:83:cf:38:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Jan 1 18:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f546ee659c93705b932a2b29dc3a3c743264db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:74:f1:4f:8c:34:af:59:67:60:e1:43:d3:a8:
52:78:03:50:49:e1:6c:ca:25:ca:eb:4e:3d:cf:ca:
8b:b3:ea:31:11:cb:0d:73:01:54:94:16:50:4d:fe:
aa:ae:98:e0:5c:31:7d:4f:3f:0e:eb:4c:8b:c9:43:
f8:78:e4:f0:5e:d5:af:3b:b1:1b:9e:d6:a2:84:9c:
ec:0e:c0:4e:2b:92:cd:a1:21:65:97:7a:33:52:96:
60:05:65:60:96:a4:6c:77:71:2a:75:0c:93:63:73:
86:81:8b:b0:e5:d3:d6:17:3e:cd:d9:e2:9b:0f:0d:
da:3a:cd:a7:4b:d3:40:72:f7:a8:3f:21:e5:4f:6c:
20:b6:e8:17:8f:c0:fb:e6:a6:fc:83:8d:9e:c5:ab:
7a:ba:08:58:b0:4a:f9:ad:c0:01:0f:52:f4:5f:20:
0f:f3:46:2e:b3:d2:88:6a:a2:47:21:de:a4:dd:ba:
41:20:0c:68:cf:c5:0d:49:0d:f7:18:b1:6f:b9:14:
00:50:53:11:9d:55:ce:e1:f3:e1:21:14:a9:da:20:
e7:70:08:11:83:cf:92:85:0d:6c:71:52:a1:aa:14:
cd:ac:d7:af:61:73:c3:4d:16:c6:bd:9a:8c:90:9d:
1b:08:58:da:5c:9c:2d:3e:2c:9f:db:b6:c9:19:89:
37:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:54:6E:E6:59:C9:37:05:B9:32:A2:B2:9D:C3:A3:C7:43:26:4D:B8
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/X1Ru5lnJNwW5MqKyncOjx0MmTbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:3001::/48
Signature Algorithm: sha256WithRSAEncryption
3f:0b:6c:c3:49:5b:07:e3:81:1f:06:01:47:67:82:0a:ea:ec:
68:68:bd:9b:92:b1:b6:68:d4:74:9b:cf:ad:0c:18:a2:f0:2c:
b9:2c:38:67:21:ea:22:89:3b:cb:e0:a3:07:96:d6:f0:03:3d:
8f:a9:5d:31:78:26:ed:b5:ad:95:b2:8b:1b:5c:64:0d:77:65:
c7:62:c1:a6:e6:1a:ee:6b:cc:a4:f0:8f:57:14:0c:f7:4a:e7:
fe:83:22:ca:be:84:c6:57:3f:86:84:39:8a:ac:cd:56:1f:0a:
0a:a9:b5:27:51:31:29:65:3d:88:3e:dd:e7:7c:91:96:72:06:
00:4d:84:9d:9d:50:c7:6b:06:f6:64:6e:17:24:29:7f:8b:8d:
1c:f3:59:82:3f:a3:67:11:1d:05:21:a3:b2:d1:40:fd:12:43:
e8:66:62:d5:38:77:8e:e6:69:cd:4a:70:77:56:13:b2:5c:a8:
a4:0f:4b:38:04:a7:8b:48:d9:c4:68:0d:3b:7d:a0:a0:ce:58:
13:54:b1:65:c8:e5:70:bd:2d:e6:4e:b7:e6:c9:84:43:b2:f6:
32:4e:32:dd:92:c8:84:06:14:b2:dc:31:ea:51:4a:9b:08:f9:
63:27:3b:2a:90:47:5b:c2:b2:8c:6e:c4:2f:6c:bd:ad:d5:0d:
ee:e8:51:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:33:56 2024 by rpki-client on console-fra.rpki-client.org