Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/c7DXKDa2GaX7KJhbJ4oNB2JOGXA.roa
File: c7DXKDa2GaX7KJhbJ4oNB2JOGXA.roa (raw, json)
Hash identifier: HmN5dE8A2TKH0X4cnZPWXqmCqw43bcP86q2j49cAm0c=
Subject key identifier: 73:B0:D7:28:36:B6:19:A5:FB:28:98:5B:27:8A:0D:07:62:4E:19:70
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC8030BBC36E1DEF8D3779D42787849D0
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/c7DXKDa2GaX7KJhbJ4oNB2JOGXA.roa
Signing time: Tue 02 Jan 2024 02:31:31 +0000
ROA not before: Tue 02 Jan 2024 02:31:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 2a01:280:200::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:0b:bc:36:e1:de:f8:d3:77:9d:42:78:78:49:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73b0d72836b619a5fb28985b278a0d07624e1970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3d:32:41:09:26:4b:df:8b:70:91:9e:4b:89:
58:da:09:98:1c:d3:33:cf:8c:0c:8a:b7:03:78:d2:
f5:8b:ff:62:3e:3f:75:67:44:af:d3:25:bc:bb:17:
44:bb:e2:b6:d0:e2:c8:5d:6f:ff:4f:cc:80:05:16:
82:58:eb:6c:6c:df:e0:79:19:ac:a8:74:5e:a6:9c:
44:d9:59:d2:86:c8:e5:ff:63:b9:01:ff:c9:99:4a:
1c:f4:80:87:f1:1a:f4:04:88:e9:3c:8e:29:d7:32:
5d:15:d1:22:64:7d:d2:55:ec:2e:a7:9f:90:15:d1:
9f:18:7f:d4:93:88:ca:a8:22:66:d0:bc:58:5f:d4:
dc:ba:6a:73:ba:36:1a:e3:b7:91:7c:a1:ed:1c:c6:
00:3c:5e:41:ad:98:6b:74:11:07:f6:76:38:da:d5:
b4:2b:bd:25:b9:26:8a:35:6c:0e:d5:50:2d:8b:69:
28:cf:87:c1:35:22:29:9a:67:9a:e6:87:30:4f:84:
7d:87:73:d4:83:ed:2f:41:fc:48:f1:ee:9c:7f:b4:
63:e8:95:26:ed:bd:b0:3d:76:c2:5a:8e:c6:a6:6c:
63:ac:49:d2:29:ac:dd:73:42:32:9e:31:20:05:54:
a2:ca:2f:cf:28:8c:92:40:21:3e:ab:42:53:12:8b:
84:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B0:D7:28:36:B6:19:A5:FB:28:98:5B:27:8A:0D:07:62:4E:19:70
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/c7DXKDa2GaX7KJhbJ4oNB2JOGXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:280:200::/40
Signature Algorithm: sha256WithRSAEncryption
95:85:ce:9d:3b:7b:34:07:c8:ad:2b:af:28:cd:dd:bc:f2:c3:
1a:e0:11:6d:c9:15:c5:fb:1e:c1:ad:ee:19:18:1b:83:a8:85:
19:80:2f:e3:5c:81:b3:52:e2:64:51:eb:3a:9c:7c:54:48:04:
ab:2e:09:9d:dd:f9:a7:6c:50:0f:0f:08:3c:b9:07:c4:20:11:
0e:cd:af:21:38:ed:d6:eb:18:e0:14:fd:48:af:0e:2d:b8:7e:
09:94:8d:86:11:5a:32:d1:6b:0c:e4:5a:0b:60:26:cc:fe:98:
ba:a6:bb:2e:f0:35:4a:21:69:90:b7:1d:d3:09:f7:43:e6:20:
29:96:a0:7e:c8:0a:9d:45:86:4d:8e:f6:e7:5a:8e:3e:95:cb:
ed:cb:bd:72:44:bf:3e:d6:e9:89:fa:12:06:bf:26:a7:58:1e:
ef:57:da:6a:b1:f8:43:f5:44:55:66:bd:bb:c9:91:0d:cc:c6:
56:a6:d8:56:d0:0a:91:a3:d0:48:34:ac:0b:33:20:73:04:26:
36:ea:3f:12:96:37:c3:98:56:f1:99:30:21:6d:fa:58:b2:d2:
90:d4:97:f5:1a:7d:48:92:6e:81:ad:c3:bb:8a:85:8d:34:6e:
b6:6d:39:71:9b:64:a4:d6:5e:f2:c8:aa:f0:7d:f8:46:71:74:
81:75:67:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:46:39 2024 by rpki-client on console-ams.rpki-client.org