Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/1/323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa
File: 323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa (raw, json)
Hash identifier: NZBILZnyNY69uAd2/ebIwT/a0jZddp9ykCbzlhCbuYs=
Subject key identifier: 0F:4C:EE:F6:C1:DB:B1:C2:C6:48:54:E0:98:BB:DB:94:51:ED:4A:06
Certificate issuer: /CN=07a07847df0c2164988fe0ee39e4dd07d85980aa
Certificate serial: 2A7BC605CC1CB868B948C5DA0199EBED6DFA8C81
Authority key identifier: 07:A0:78:47:DF:0C:21:64:98:8F:E0:EE:39:E4:DD:07:D8:59:80:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6B4R98MIWSYj-DuOeTdB9hZgKo.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/1/323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa
Signing time: Sun 07 Jul 2024 19:01:34 +0000
ROA not before: Sun 07 Jul 2024 18:56:34 +0000
ROA not after: Sun 06 Jul 2025 19:01:34 +0000
asID: 202076
IP address blocks: 2001:7f8:137::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/1/07A07847DF0C2164988FE0EE39E4DD07D85980AA.crl
rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/1/07A07847DF0C2164988FE0EE39E4DD07D85980AA.mft
rsync://rpki.ripe.net/repository/DEFAULT/B6B4R98MIWSYj-DuOeTdB9hZgKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:7b:c6:05:cc:1c:b8:68:b9:48:c5:da:01:99:eb:ed:6d:fa:8c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a07847df0c2164988fe0ee39e4dd07d85980aa
Validity
Not Before: Jul 7 18:56:34 2024 GMT
Not After : Jul 6 19:01:34 2025 GMT
Subject: CN=0F4CEEF6C1DBB1C2C64854E098BBDB9451ED4A06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ac:ee:63:47:cb:2b:23:01:3f:c2:f9:d4:e8:
c8:2b:66:ee:be:c4:f1:ad:56:60:28:17:5b:d6:77:
69:bc:4a:60:b9:96:0b:dc:ee:f4:7f:f0:ee:6a:19:
b9:69:9f:0d:6a:e9:74:f3:ea:19:74:7b:af:fe:26:
a7:f4:80:a8:68:e4:b2:f9:17:7d:b3:28:3a:3a:b1:
65:a5:d5:fe:df:a0:2c:3d:f6:46:89:b8:20:02:fc:
5a:71:2b:f6:f6:cb:fb:35:c0:8a:a0:16:e4:d0:5b:
20:84:69:35:54:d4:7a:85:99:4b:ea:e5:1b:f2:80:
98:44:da:16:5f:a3:ac:fa:9d:00:9a:f4:2a:cc:30:
13:a2:11:9c:c5:82:21:c1:e4:ed:94:f5:cd:af:bf:
25:99:89:52:61:32:36:1e:33:8b:df:7c:f5:43:be:
6a:d2:47:bd:92:5d:34:93:9e:c6:81:0c:fa:45:24:
9d:ff:6c:77:96:03:af:5d:86:b9:2b:56:f6:88:b8:
07:0d:67:15:84:ed:f3:d3:02:e3:bb:ea:4a:fb:c5:
03:dc:f1:4f:98:4c:96:db:61:87:32:2b:82:d7:d1:
09:05:a4:8d:7c:0c:11:7d:ae:24:dc:5e:6c:99:c8:
82:47:0e:2e:0d:68:06:a7:9a:21:1e:11:ec:da:e7:
5f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4C:EE:F6:C1:DB:B1:C2:C6:48:54:E0:98:BB:DB:94:51:ED:4A:06
X509v3 Authority Key Identifier:
keyid:07:A0:78:47:DF:0C:21:64:98:8F:E0:EE:39:E4:DD:07:D8:59:80:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/1/07A07847DF0C2164988FE0EE39E4DD07D85980AA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6B4R98MIWSYj-DuOeTdB9hZgKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/1/323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:137::/48
Signature Algorithm: sha256WithRSAEncryption
95:8b:87:71:8b:f5:fb:95:ac:76:65:cc:a2:14:e4:50:32:d2:
ad:d6:4a:b6:2a:23:65:df:db:17:cd:d5:5f:3f:dd:26:9f:01:
30:00:4f:36:71:01:2f:0b:88:6d:f8:8d:d8:c1:6d:c9:0e:79:
b4:66:ec:47:79:86:c6:ff:29:51:f2:5a:56:6c:91:77:66:84:
d2:41:1b:7c:f7:d5:c1:2f:e8:f6:0b:c8:0b:cd:7a:a9:ed:70:
cc:3a:68:af:e3:97:72:6e:d5:c7:6d:1a:2b:cd:61:03:08:c0:
62:91:33:05:b8:03:c0:f9:85:9c:03:db:a4:30:bf:15:ae:a2:
18:d7:83:43:08:b5:b8:d4:03:07:d7:69:59:0f:10:3f:ac:83:
54:1d:68:a9:54:10:77:7b:2f:9c:0f:c8:70:97:6b:3e:d0:45:
07:75:73:11:9a:61:d0:c8:d9:17:ea:f6:8a:04:2c:7f:54:e3:
f1:14:ac:8e:57:b2:23:16:20:4d:c1:38:16:42:d6:5a:08:6e:
13:6f:28:f5:14:33:f2:a3:fd:09:9f:65:cc:fb:46:fb:9b:89:
c7:2c:34:fa:30:36:71:68:02:bd:21:c0:69:51:1c:0f:19:8e:
87:ad:b9:b8:62:be:1e:e0:3f:a7:8f:ad:f9:a8:4c:bc:74:1c:
5e:b2:f5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 21:02:32 2024 by rpki-client on console-fra.rpki-client.org