Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7mrff0Nlz5ApLx-7ZYwisZgPznA.roa
File: 7mrff0Nlz5ApLx-7ZYwisZgPznA.roa (raw, json)
Hash identifier: qYaJmgYL4mnqQXTOven9bNQqZZ7yQujE+VdRpFNxxmw=
Subject key identifier: EE:6A:DF:7F:43:65:CF:90:29:2F:1F:BB:65:8C:22:B1:98:0F:CE:70
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8DCF8D3B2EFBD7200FF8110A94081
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7mrff0Nlz5ApLx-7ZYwisZgPznA.roa
Signing time: Mon 01 Jan 2024 20:30:53 +0000
ROA not before: Mon 01 Jan 2024 20:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197900
IP address blocks: 2a0c:9a40:80d0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:dc:f8:d3:b2:ef:bd:72:00:ff:81:10:a9:40:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee6adf7f4365cf90292f1fbb658c22b1980fce70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:65:8c:2b:7b:af:5c:dd:21:8b:57:3a:2c:6c:
83:82:b7:78:78:da:d9:d4:4f:23:7f:20:e6:ed:e5:
7a:8c:97:57:ac:37:5b:21:c1:74:05:99:f3:cc:b6:
c5:51:fe:a5:58:12:2e:26:08:ae:62:3f:b1:8a:17:
3e:78:9e:11:82:37:03:8c:05:5f:21:47:14:af:8e:
cb:96:39:f9:8c:c7:47:66:ba:da:e8:5b:08:b9:ee:
cb:22:ae:94:6e:a1:26:59:03:97:3f:e9:11:31:92:
1d:00:be:49:7b:1a:88:bd:75:94:82:0e:4a:20:35:
49:09:48:42:09:76:ab:04:81:b5:d0:d1:13:f0:e9:
69:d3:84:7b:06:93:a8:ad:37:9c:6d:6b:9c:1c:d5:
05:6d:57:02:00:0e:8c:48:bf:7e:28:97:3d:50:af:
63:dd:15:28:b4:18:00:f5:28:05:ca:f8:b8:d7:58:
90:a3:41:55:c4:ba:70:7a:74:30:1b:ec:f1:3e:71:
71:c6:ca:74:71:14:e3:59:ff:a0:00:ac:74:36:8b:
43:fa:1b:3f:f0:f7:76:5c:a9:92:01:0b:79:09:04:
38:af:69:b4:6e:7b:e9:a7:2a:9f:c9:10:85:96:b4:
56:3d:35:c0:d4:1e:f8:2e:46:e6:23:e1:f0:5b:61:
6e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:6A:DF:7F:43:65:CF:90:29:2F:1F:BB:65:8C:22:B1:98:0F:CE:70
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7mrff0Nlz5ApLx-7ZYwisZgPznA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:80d0::/48
Signature Algorithm: sha256WithRSAEncryption
46:43:49:7e:05:70:db:df:38:53:ec:3c:43:6a:f9:c3:8b:68:
72:a3:fe:8c:23:6a:03:67:0e:17:32:4a:f0:49:9f:80:31:07:
84:61:e9:c7:2f:05:68:29:43:cd:67:a3:df:8d:b0:6e:1e:32:
ba:3e:c9:8a:ca:84:7a:43:56:3e:af:7d:9b:75:0a:08:cb:c7:
e7:1d:cf:4c:0a:7b:fc:f3:12:85:41:9c:ae:0b:f0:ca:d1:cc:
51:19:1a:1c:4d:73:8d:6c:64:b0:5d:fc:ae:4e:12:8b:0b:35:
4e:0c:2c:5b:a3:37:d4:7a:ff:39:5a:a8:e0:10:72:9a:50:4c:
53:88:ca:99:ea:42:fb:df:ac:93:06:fd:9c:09:d9:97:b7:15:
86:4d:2c:85:d8:89:4a:19:79:ec:cd:76:60:c1:d0:62:98:63:
70:d6:e3:af:4c:cc:13:d8:5d:f6:57:5f:fb:07:e1:8a:58:01:
57:ae:0b:86:f0:61:57:57:2d:f4:55:9e:2c:56:c9:d5:67:26:
1f:4b:9b:93:18:eb:e5:07:f6:01:c4:a5:ab:73:75:a8:94:dc:
08:6a:4f:3b:47:5a:b9:d0:c7:e3:51:14:61:14:f4:45:6c:b9:
df:ff:d0:93:99:55:f0:c4:a5:87:df:5a:29:ea:9f:26:b7:25:
fc:0d:d7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 06:50:10 2024 by rpki-client on console-ams.rpki-client.org