Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/1/323030313a3637383a6233343a3a2f34382d3438203d3e20323038303531.roa
File: 323030313a3637383a6233343a3a2f34382d3438203d3e20323038303531.roa (raw, json)
Hash identifier: UscZqBeVa62wChbGnDHRsAbV/SU7srPAd1Cujllujfo=
Subject key identifier: 08:23:5C:0B:EE:AD:8F:AD:D4:17:9E:5F:65:08:32:FB:2E:7A:82:12
Certificate issuer: /CN=b692ed2feffd044c6dd7f20d70952648400a7744
Certificate serial: 4258ADA74A3DEA3928558583065FAEEF1E4D8D28
Authority key identifier: B6:92:ED:2F:EF:FD:04:4C:6D:D7:F2:0D:70:95:26:48:40:0A:77:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpLtL-_9BExt1_INcJUmSEAKd0Q.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/1/323030313a3637383a6233343a3a2f34382d3438203d3e20323038303531.roa
Signing time: Sun 07 Jul 2024 19:00:58 +0000
ROA not before: Sun 07 Jul 2024 18:55:58 +0000
ROA not after: Sun 06 Jul 2025 19:00:58 +0000
asID: 208051
IP address blocks: 2001:678:b34::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/1/B692ED2FEFFD044C6DD7F20D70952648400A7744.crl
rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/1/B692ED2FEFFD044C6DD7F20D70952648400A7744.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpLtL-_9BExt1_INcJUmSEAKd0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:58:ad:a7:4a:3d:ea:39:28:55:85:83:06:5f:ae:ef:1e:4d:8d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b692ed2feffd044c6dd7f20d70952648400a7744
Validity
Not Before: Jul 7 18:55:58 2024 GMT
Not After : Jul 6 19:00:58 2025 GMT
Subject: CN=08235C0BEEAD8FADD4179E5F650832FB2E7A8212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:44:9f:4d:9e:74:8a:87:73:c5:f5:1f:6d:1c:
8d:a7:68:5b:8d:56:80:15:21:6f:37:8e:9e:aa:39:
d9:76:b6:73:56:ca:05:b5:8a:db:78:99:7a:1e:ca:
a9:ad:9f:61:c3:8a:bc:2e:f7:9b:8d:99:dc:bc:fa:
f2:ba:93:45:6e:19:32:f0:fb:5b:fe:ee:e6:d9:b6:
b5:19:9f:20:d4:00:ab:39:a0:64:eb:80:b5:d1:02:
f9:cf:e3:ef:07:6e:98:f3:aa:40:b9:35:54:6d:96:
49:1e:52:63:de:97:24:4d:b3:fa:27:d3:3d:a6:ec:
e6:83:44:0c:32:2c:43:0b:16:dd:04:15:df:c9:c9:
7f:c8:80:86:95:c9:78:86:d1:7f:d8:7f:d5:33:1a:
2b:39:51:61:22:66:85:a6:87:f5:83:6e:9c:0f:b4:
db:05:88:18:93:9e:79:b6:85:73:5f:08:ca:7c:dd:
b6:3e:23:26:04:9e:07:ee:dc:6e:f0:96:fb:26:f1:
b8:4b:1d:6b:2f:64:d0:dd:ad:58:3c:7a:9a:f5:a6:
d4:3c:44:1f:b6:aa:a4:88:b7:e1:bd:81:16:6e:7f:
55:dc:96:7b:3a:3c:60:a4:5f:d1:68:c1:ca:82:4b:
85:59:cc:ad:34:6b:ea:cb:0f:df:a2:51:f0:6b:d4:
4b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:23:5C:0B:EE:AD:8F:AD:D4:17:9E:5F:65:08:32:FB:2E:7A:82:12
X509v3 Authority Key Identifier:
keyid:B6:92:ED:2F:EF:FD:04:4C:6D:D7:F2:0D:70:95:26:48:40:0A:77:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/1/B692ED2FEFFD044C6DD7F20D70952648400A7744.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpLtL-_9BExt1_INcJUmSEAKd0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/1/323030313a3637383a6233343a3a2f34382d3438203d3e20323038303531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b34::/48
Signature Algorithm: sha256WithRSAEncryption
37:82:d9:b4:8e:21:54:92:f5:76:a2:8a:76:de:16:f5:24:31:
8a:d3:c0:0b:69:c7:28:3f:d0:68:a7:03:9d:01:f7:e1:d0:cd:
30:e4:c7:b7:9f:4a:ef:62:e1:99:ae:c0:30:e8:89:ab:a8:9c:
e8:89:85:a8:4f:25:eb:a7:fa:5b:18:04:f7:e3:60:13:c1:02:
42:b3:91:6a:0c:cf:f8:af:30:f9:b3:80:89:8d:d8:c0:43:a9:
b8:f5:01:2a:d7:8f:13:e4:6c:3b:65:1f:55:ca:11:e8:77:98:
7d:2d:bf:b9:89:d0:cc:60:77:0d:ea:a1:38:3f:5f:ac:bd:93:
08:6f:84:16:92:37:b9:c3:50:45:ac:b2:a1:2a:6f:be:62:14:
54:19:d1:bc:70:c9:58:94:64:69:9a:48:f2:55:09:82:ab:d9:
25:ff:39:24:08:7b:3c:7a:b9:15:75:fd:70:20:5d:32:13:21:
cf:94:30:d5:1a:ca:4c:47:52:d7:c7:e1:39:b6:ee:02:88:3e:
d4:46:d7:4c:96:e8:e6:8a:cc:b0:35:bd:93:cb:cc:47:b5:6a:
bb:33:30:d4:11:50:04:b1:ef:53:39:1e:d3:d8:55:36:1d:ba:
e4:97:c6:ed:23:e7:5a:c4:fd:72:e6:c1:89:89:41:77:31:64:
3c:8a:80:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 10:55:43 2024 by rpki-client on console-ams.rpki-client.org