Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/uAZD86D0uY7_Zl-7Zw_pJ3m-Kqw.roa
File: uAZD86D0uY7_Zl-7Zw_pJ3m-Kqw.roa (raw, json)
Hash identifier: AsIGf/yIGlVgQZXGGboon7HAkNr2xbdpjxx0OOFZFe0=
Subject key identifier: B8:06:43:F3:A0:F4:B9:8E:FF:66:5F:BB:67:0F:E9:27:79:BE:2A:AC
Certificate issuer: /CN=acf7ab3f1a93e714f3074a05d86fcce2206305a8
Certificate serial: 018D275A62E89A1780526E068AB29617A082
Authority key identifier: AC:F7:AB:3F:1A:93:E7:14:F3:07:4A:05:D8:6F:CC:E2:20:63:05:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPerPxqT5xTzB0oF2G_M4iBjBag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/uAZD86D0uY7_Zl-7Zw_pJ3m-Kqw.roa
Signing time: Sat 20 Jan 2024 14:50:51 +0000
ROA not before: Sat 20 Jan 2024 14:50:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199471
IP address blocks: 2a13:fc80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/rPerPxqT5xTzB0oF2G_M4iBjBag.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/rPerPxqT5xTzB0oF2G_M4iBjBag.mft
rsync://rpki.ripe.net/repository/DEFAULT/rPerPxqT5xTzB0oF2G_M4iBjBag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:27:5a:62:e8:9a:17:80:52:6e:06:8a:b2:96:17:a0:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acf7ab3f1a93e714f3074a05d86fcce2206305a8
Validity
Not Before: Jan 20 14:50:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b80643f3a0f4b98eff665fbb670fe92779be2aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:54:55:df:b0:5b:e0:cf:e0:04:c2:e3:95:60:
70:b4:3b:8a:bb:e9:77:8f:a5:35:7e:a4:87:e2:44:
45:71:b0:fd:72:91:72:90:02:8a:70:fa:a1:d6:d9:
06:1d:60:c2:3b:6a:8c:8c:43:3c:75:25:1d:1e:57:
ff:cf:31:4d:b3:b4:12:74:b5:eb:e6:49:92:dc:3c:
8a:a0:ec:03:a1:72:23:4f:f9:a9:84:04:46:77:eb:
e6:bb:c7:07:95:48:48:7e:ca:b4:76:65:2b:df:11:
53:ff:97:38:74:5b:5a:e7:73:78:b5:a4:51:9a:bb:
53:01:c3:35:ac:06:42:15:5b:3d:2c:9e:ed:c4:47:
40:1b:ff:79:bd:fb:f0:93:ee:79:9a:45:f9:82:c0:
bf:f7:50:79:d0:bf:1d:a1:16:8d:08:78:f7:ae:a2:
03:76:1d:9e:31:b0:4d:06:8d:29:22:ad:4d:8c:7e:
ec:f8:89:2e:c8:ac:50:42:19:3e:62:5f:2f:01:85:
01:e8:4b:37:c6:21:21:28:62:8d:8a:3e:39:e4:36:
bc:f0:e6:14:47:a7:60:cb:fb:a3:55:95:18:13:91:
17:43:63:c6:5b:49:02:ca:3b:f2:09:39:d8:77:9b:
bc:d1:0e:d9:f8:00:0c:e3:b6:2d:73:0b:dc:77:8d:
5e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:06:43:F3:A0:F4:B9:8E:FF:66:5F:BB:67:0F:E9:27:79:BE:2A:AC
X509v3 Authority Key Identifier:
keyid:AC:F7:AB:3F:1A:93:E7:14:F3:07:4A:05:D8:6F:CC:E2:20:63:05:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPerPxqT5xTzB0oF2G_M4iBjBag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/uAZD86D0uY7_Zl-7Zw_pJ3m-Kqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/rPerPxqT5xTzB0oF2G_M4iBjBag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:fc80::/32
Signature Algorithm: sha256WithRSAEncryption
40:71:44:00:6c:fb:25:a6:3a:c1:06:fe:51:0a:2b:43:fa:aa:
99:36:2f:0e:d9:eb:4c:c2:d1:82:65:14:47:3c:2f:31:aa:d6:
24:98:13:f5:4c:2c:ed:b9:68:66:12:8d:9b:99:d4:5f:93:a7:
a3:cc:38:f3:be:d8:27:f4:2d:be:08:a0:17:aa:89:69:06:74:
69:51:40:58:d0:34:cc:f5:1b:5d:05:16:af:2c:60:46:10:d0:
27:d5:ce:27:6c:f2:b3:91:85:3d:f8:f6:da:10:5f:dc:c7:b9:
54:c1:0e:6d:89:c1:b0:c3:bf:31:e3:3b:5e:7e:7a:3b:9e:d6:
47:7e:3c:6e:d0:89:f9:63:74:0f:e8:41:fe:4b:77:ee:c2:65:
e1:72:dd:5b:01:90:d0:3a:51:09:a9:ff:08:4a:25:cd:d7:93:
a0:9c:66:9e:31:3c:46:1e:d0:5e:fe:54:00:09:cf:0f:8f:05:
d5:78:74:5b:c6:ca:53:64:05:cd:8a:53:41:3a:b7:7f:c3:06:
22:78:6a:c5:2f:7e:63:bb:3c:4f:e0:c5:5c:c1:21:0c:9a:76:
51:3c:4b:be:a8:16:90:49:3d:7d:b5:b8:23:b7:bd:bd:36:ce:
70:e7:ae:04:e9:6d:02:2e:67:8f:4c:82:7e:a5:dc:85:72:a5:
6f:59:e7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 19:01:50 2024 by rpki-client on console-ams.rpki-client.org