Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/FVfD7pKI9EDphgRb5bcpSDsd1XY.roa
File: FVfD7pKI9EDphgRb5bcpSDsd1XY.roa (raw, json)
Hash identifier: uoWgWsK4IYDhWjqSK4hdD0UD9T2QB60GkBJhMgPBxpU=
Subject key identifier: 15:57:C3:EE:92:88:F4:40:E9:86:04:5B:E5:B7:29:48:3B:1D:D5:76
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 018CC4252647F8094FA4C8304068615AA6B9
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/FVfD7pKI9EDphgRb5bcpSDsd1XY.roa
Signing time: Mon 01 Jan 2024 08:30:18 +0000
ROA not before: Mon 01 Jan 2024 08:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20625
IP address blocks: 2001:67c:1784::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:26:47:f8:09:4f:a4:c8:30:40:68:61:5a:a6:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Jan 1 08:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1557c3ee9288f440e986045be5b729483b1dd576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1c:80:2b:26:52:7e:b3:5c:24:3d:c7:84:78:
28:15:cd:6d:6c:a3:ce:8f:dc:1e:b3:4f:2c:95:36:
45:85:d8:ab:1b:29:73:26:9f:06:71:fe:61:fd:84:
fd:92:8c:39:6b:b4:8f:b6:dc:34:a7:c6:71:26:36:
74:78:f8:8f:17:c2:b4:d8:0d:16:d3:5c:35:89:9c:
ab:ba:84:59:f5:11:0f:cc:94:fa:e1:89:28:f3:31:
f4:1a:ca:be:47:6a:3f:7f:af:48:56:d5:14:7d:9d:
72:b6:b3:1d:2f:6e:ec:fc:ad:75:11:a2:a0:ca:91:
af:ee:3d:63:2c:4e:95:bc:51:3c:31:5c:92:54:6b:
d4:bb:84:fe:f9:e6:ae:c6:89:cd:07:57:d1:bb:17:
bf:0b:1c:b2:29:13:d0:9b:0c:ec:c1:d9:92:41:05:
91:4b:1d:db:ed:0c:ee:7c:53:57:33:96:4b:15:3b:
9e:1e:fd:ad:5d:b6:b9:72:bc:b5:0a:c9:d2:4f:ae:
57:25:c8:b6:35:a4:99:d0:a1:01:e7:e4:e0:ad:c7:
81:f8:95:50:cc:7f:ce:59:de:ae:e9:75:4e:47:e5:
6a:50:9c:7c:41:95:eb:4f:3b:ff:33:2a:6f:d5:27:
ee:b2:bf:a2:e1:df:f3:3c:a7:85:6c:b1:41:fb:d5:
9e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:57:C3:EE:92:88:F4:40:E9:86:04:5B:E5:B7:29:48:3B:1D:D5:76
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/FVfD7pKI9EDphgRb5bcpSDsd1XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1784::/48
Signature Algorithm: sha256WithRSAEncryption
13:f0:d6:c6:ec:af:18:f8:8e:f8:df:fc:85:3e:33:30:38:d5:
9d:3d:eb:07:b5:68:7a:8d:7d:77:55:7e:df:c4:10:8a:9c:a4:
9a:0f:63:80:b0:bf:bf:1f:47:10:a6:32:a9:09:64:33:f4:f3:
a0:95:79:03:6f:22:1d:cb:fb:f0:d7:60:29:a3:62:1a:9b:71:
55:66:1f:ef:de:4c:65:20:20:f6:1f:49:f2:32:1b:04:84:11:
14:4f:36:fb:94:87:14:b6:a3:ba:d2:e0:0f:a9:d8:38:7f:01:
2a:94:60:76:ab:56:bc:03:4a:ce:eb:a5:e4:ea:fa:6f:9e:79:
f3:35:f2:ca:c2:cb:a6:db:49:da:62:b8:77:86:93:9a:73:35:
04:36:57:b8:0c:7c:c9:1e:db:09:46:44:0d:ee:5f:4d:58:1f:
f1:43:6c:dc:82:82:53:6f:31:dc:5e:e4:e3:cc:bf:bb:4d:d2:
63:d0:54:5d:1a:e1:c8:bf:7d:55:76:18:0e:57:b8:fa:83:ff:
ac:69:3a:7c:71:90:9d:b5:82:ed:29:ee:65:81:24:b3:ec:64:
61:cb:83:b0:e0:f5:22:d2:97:ff:96:45:fd:e6:84:b4:ba:b0:
1e:e6:94:d5:8c:08:4d:51:2d:74:e7:91:cc:f3:0f:23:df:5f:
23:68:62:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 10:11:40 2024 by rpki-client on console-fra.rpki-client.org