Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ATwPZAwOpq0JIBwQhCFBABqP7uc.roa
File: ATwPZAwOpq0JIBwQhCFBABqP7uc.roa (raw, json)
Hash identifier: D2eLErzZhHANRdFqef70DAz0grHqe+sESrDwp1YPBjU=
Subject key identifier: 01:3C:0F:64:0C:0E:A6:AD:09:20:1C:10:84:21:41:00:1A:8F:EE:E7
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0190CFC5B564A43B7AAB7BE37D6B83B34B86
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ATwPZAwOpq0JIBwQhCFBABqP7uc.roa
Signing time: Sat 20 Jul 2024 10:52:39 +0000
ROA not before: Sat 20 Jul 2024 10:52:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214496
IP address blocks: 2a0c:9a40:8af0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cf:c5:b5:64:a4:3b:7a:ab:7b:e3:7d:6b:83:b3:4b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jul 20 10:52:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=013c0f640c0ea6ad09201c10842141001a8feee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:92:f5:d0:bf:6c:1f:ac:8f:80:64:db:c3:e5:
34:e1:b1:a3:06:cb:9c:24:a4:63:b6:a1:eb:61:67:
24:75:09:3b:7d:db:11:0c:5e:59:d1:82:69:25:5b:
cc:89:eb:7d:c8:28:f8:78:68:c4:0d:a4:6a:e8:66:
99:78:01:d1:aa:ef:0f:fb:79:18:d1:fc:e5:9c:6c:
1c:2b:fe:02:4d:35:04:5f:71:59:e4:f3:2b:c3:48:
0e:7a:0d:28:23:c9:15:56:5a:93:0a:91:38:e0:28:
41:0d:db:65:3b:84:79:f9:52:8f:2f:dd:e5:6c:cc:
57:56:66:cd:17:2a:24:1c:16:4c:e3:10:26:7d:87:
89:ea:1b:5a:09:a1:5b:71:70:f0:f0:a5:44:d3:a6:
76:55:29:98:0d:07:2c:13:03:8a:eb:13:41:ab:df:
64:69:6d:50:02:21:73:b0:55:8c:f6:af:b7:b4:90:
98:f3:91:ea:4a:9a:e5:1b:7d:f9:31:7e:d0:00:5d:
74:cc:8f:d1:40:58:42:ff:47:a8:66:58:70:1b:1c:
24:1c:08:8c:e7:7e:e3:26:89:c0:2f:8f:88:58:46:
50:c0:60:c5:af:be:69:28:8b:7d:85:75:50:46:a6:
5b:58:2f:2f:d7:be:58:95:67:c0:95:57:11:99:4d:
6d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3C:0F:64:0C:0E:A6:AD:09:20:1C:10:84:21:41:00:1A:8F:EE:E7
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ATwPZAwOpq0JIBwQhCFBABqP7uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8af0::/48
Signature Algorithm: sha256WithRSAEncryption
86:20:a5:14:e6:dc:da:1d:8a:48:3f:8d:b9:a2:33:51:75:fd:
02:54:76:08:59:73:69:db:fd:4a:6b:7f:5c:33:d2:0c:51:2d:
bc:c1:8c:26:38:59:b9:c9:51:bf:c1:d9:8a:a7:de:e0:69:20:
aa:8a:bd:13:d6:b7:b2:15:8e:2a:10:b5:4e:61:32:db:fa:53:
9d:60:24:0e:91:f3:03:e2:8e:c2:00:ed:9b:c0:57:98:b8:38:
b9:81:c1:b9:fd:ad:52:b0:6c:eb:f7:d6:1e:0f:bd:4d:f4:b1:
11:00:24:04:df:2c:80:bf:fe:86:46:6d:b0:55:60:92:a3:24:
41:7b:e2:ba:61:8a:1a:4d:6b:23:ab:5f:39:c8:22:cc:ef:70:
ba:a2:4a:15:1b:bb:b5:72:fd:07:42:b6:83:4f:89:fe:ee:23:
51:7a:d3:c9:c3:c7:19:1e:78:91:61:1f:1c:2a:c1:f2:e6:ee:
4c:b8:8e:f8:d1:3a:cc:85:7c:c9:c5:cb:d3:68:c3:b7:01:af:
c7:c4:dd:cf:d7:c7:47:92:3e:05:b2:e8:24:53:59:8d:f6:5b:
e5:ae:aa:6e:44:72:1f:10:4b:a6:65:79:5e:dc:19:fa:0b:93:
9e:ad:6c:82:64:d3:15:d7:54:3e:bb:9d:fb:28:2b:51:41:11:
8b:8c:38:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:59:21 2024 by rpki-client on console-ams.rpki-client.org