Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/9SW1LBA4_lm0TyuFAFh0QgMJRPw.roa
File: 9SW1LBA4_lm0TyuFAFh0QgMJRPw.roa (raw, json)
Hash identifier: e6g+8b3yjAuT7QkJ5sCLdeRIZETpqC0ThWV+uZTVcV4=
Subject key identifier: F5:25:B5:2C:10:38:FE:59:B4:4F:2B:85:00:58:74:42:03:09:44:FC
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8D4C5DADB4C45129BAD42E38F3A1B
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/9SW1LBA4_lm0TyuFAFh0QgMJRPw.roa
Signing time: Mon 01 Jan 2024 20:30:50 +0000
ROA not before: Mon 01 Jan 2024 20:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41108
IP address blocks: 2a0c:9a40:8081::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d4:c5:da:db:4c:45:12:9b:ad:42:e3:8f:3a:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f525b52c1038fe59b44f2b8500587442030944fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:de:b6:69:0b:72:9d:5f:19:05:7f:d1:6d:c9:
ac:25:65:33:e0:68:3f:39:10:96:f4:2e:ac:d0:4d:
48:b7:bd:2f:71:be:8c:6d:c1:a7:71:25:21:1d:19:
90:69:66:61:e2:73:46:2b:4a:84:cc:83:00:78:36:
3e:d3:93:c5:5c:6a:af:a5:41:f4:b1:fd:e4:43:ac:
89:b0:45:38:2c:aa:c5:e2:7f:e0:27:58:61:b3:fb:
f8:c6:9b:30:85:b1:44:86:f1:94:21:2a:d8:bf:83:
4b:5d:af:34:ba:7d:39:d9:21:bf:47:c3:fc:18:2f:
15:f0:f0:2e:5a:b1:ff:4a:13:f1:4c:c1:07:8d:6d:
5c:c4:cf:51:3b:10:7a:d5:84:8f:c8:72:ce:eb:ac:
0d:9f:67:66:4a:72:3a:51:b5:9c:62:0e:c6:67:0d:
b9:2a:c1:c1:47:00:d1:19:12:57:66:f4:bb:d3:6d:
27:9b:1f:75:fe:ea:ef:88:ec:ba:16:fd:55:85:47:
db:bb:52:9a:03:59:e7:af:49:47:a9:26:e8:47:68:
62:9e:9f:39:3b:cd:da:ad:b0:52:21:bb:1e:81:a3:
56:10:27:0b:ae:18:41:4a:53:8d:1e:43:a5:07:46:
1d:00:63:99:1a:42:7a:c3:50:0a:ae:a7:a9:13:b5:
4b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:25:B5:2C:10:38:FE:59:B4:4F:2B:85:00:58:74:42:03:09:44:FC
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/9SW1LBA4_lm0TyuFAFh0QgMJRPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8081::/48
Signature Algorithm: sha256WithRSAEncryption
2d:2d:e9:7b:0a:ca:c5:67:35:e7:19:6f:99:f8:92:45:6d:b0:
bc:0c:e7:d8:ed:84:98:ff:de:5c:2b:43:ab:6a:dc:4f:2f:2b:
3c:d6:9c:33:1f:93:cb:f7:48:41:5a:dd:cf:8c:7b:c3:ad:d4:
69:30:56:ea:de:f7:84:4f:b0:0e:42:9d:8f:90:b7:43:00:18:
13:5a:ec:80:ec:91:b8:b0:c6:be:a4:71:e9:bb:2a:a1:27:af:
f9:bf:fa:5d:1e:07:d4:77:ef:d7:61:09:27:a2:be:d2:29:56:
07:42:8c:07:85:2b:0e:4f:31:07:83:38:58:95:56:3f:8f:e1:
3b:4e:07:07:d0:74:f9:36:9d:38:6c:cd:46:a4:67:81:12:35:
ab:83:be:33:9e:61:48:d3:be:a4:f1:90:fd:be:2a:5c:e2:f1:
a2:3a:bc:2d:cd:95:a8:cd:14:1a:07:15:d5:1e:b1:69:61:2e:
2d:54:dc:b5:60:d6:49:6c:89:ee:6d:c8:fd:6b:87:3c:14:3d:
99:a2:7d:74:35:4d:6a:8e:62:a8:4e:0b:72:cc:78:59:96:2a:
f3:80:9e:ba:9b:7c:a6:b9:5f:6d:7b:b1:9e:53:62:63:ef:24:
82:8f:10:f6:db:72:57:06:61:46:38:b0:68:3a:d7:de:c9:8b:
db:a5:b4:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 04:45:39 2024 by rpki-client on console-ams.rpki-client.org