Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JGouoWr88Xe6dmDOZ0leJNzjTkI.roa
File: JGouoWr88Xe6dmDOZ0leJNzjTkI.roa (raw, json)
Hash identifier: Nj9arwfdeYrVuJ7jQFCxOVGp2r7zQhQicmfiTJFTL0k=
Subject key identifier: 24:6A:2E:A1:6A:FC:F1:77:BA:76:60:CE:67:49:5E:24:DC:E3:4E:42
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8E6FA7C5AAAD39BD66092F781A6D1
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JGouoWr88Xe6dmDOZ0leJNzjTkI.roa
Signing time: Mon 01 Jan 2024 20:30:55 +0000
ROA not before: Mon 01 Jan 2024 20:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204438
IP address blocks: 2a0c:9a40:8113::/48 maxlen: 48
2a0c:9a40:8106::/48 maxlen: 48
2a0c:9a40:8101::/48 maxlen: 48
2a0c:9a40:8114::/48 maxlen: 48
2a0c:9a40:811a::/48 maxlen: 48
2a0c:9a40:8112::/48 maxlen: 48
2a0c:9a40:8115::/48 maxlen: 48
2a0c:9a40:8110::/44 maxlen: 48
2a0c:9a40:8110::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:e6:fa:7c:5a:aa:d3:9b:d6:60:92:f7:81:a6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=246a2ea16afcf177ba7660ce67495e24dce34e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ef:23:02:60:2c:75:d3:0b:b4:87:a2:cc:ea:
fc:58:4d:38:78:77:e8:0c:b0:ad:4a:c9:d8:7b:7e:
41:6e:5f:e8:1f:9e:5f:5d:a9:6b:30:39:0c:99:42:
e9:16:0a:fc:07:fd:1b:1b:8d:a3:4f:df:b0:54:50:
12:4c:e9:d1:bf:a9:77:b9:d6:58:8b:93:30:27:ae:
f4:a4:d1:bf:47:45:cb:2d:1f:6e:18:0c:cf:c3:50:
10:18:d3:46:54:82:db:1e:22:b3:c1:94:ec:5b:f8:
a9:d3:84:51:65:98:97:42:38:fa:18:c3:d4:8d:02:
7c:6b:07:79:1d:da:61:af:6c:33:54:1e:92:c2:80:
7a:0f:08:e3:ce:a8:41:ab:ed:b8:d8:bc:c0:10:b2:
0c:40:20:26:7c:13:de:70:a8:84:11:89:8e:37:21:
f1:99:dd:55:4b:16:a3:64:de:35:5a:81:2b:ef:a8:
65:68:20:e5:b2:bf:00:6b:1e:6d:5d:c9:b5:eb:06:
bd:68:9a:4e:b4:b2:9a:b6:7c:2d:c2:23:ed:d1:2c:
a6:e4:d6:23:c2:c5:5a:99:74:fd:79:e8:f0:e7:59:
63:63:97:d8:9f:38:1e:73:c0:a7:8b:fc:9e:73:69:
17:f4:b3:40:d2:10:8e:97:04:67:02:44:a7:62:0d:
08:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6A:2E:A1:6A:FC:F1:77:BA:76:60:CE:67:49:5E:24:DC:E3:4E:42
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JGouoWr88Xe6dmDOZ0leJNzjTkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8101::/48
2a0c:9a40:8106::/48
2a0c:9a40:8110::/44
Signature Algorithm: sha256WithRSAEncryption
0e:cd:26:d0:86:64:56:07:c0:97:5d:3b:aa:ce:0e:21:c2:63:
ad:b2:93:fa:07:fa:97:58:a5:d4:6c:cc:c1:dd:f6:08:b0:54:
2f:b9:62:8d:fd:5e:51:96:31:f8:e1:6b:03:0d:9e:32:84:e6:
ee:20:08:25:72:ce:2a:3b:d8:24:9b:ff:a1:91:38:49:e1:b5:
52:db:1f:fa:52:4a:ee:a6:09:16:09:97:f4:7e:8b:ec:f3:64:
eb:9f:69:e6:d1:7b:f7:7a:98:be:4e:f0:6b:4f:37:9c:29:91:
e7:a2:82:79:5d:bd:12:c8:d6:1c:b3:49:4e:d5:1a:f6:18:9b:
07:c3:fa:2c:b0:3c:06:b6:df:b0:32:95:3d:8c:3d:2d:c9:8d:
81:5b:01:72:5a:95:a3:a1:53:ba:2f:4b:39:1a:8c:c9:a1:30:
9f:c0:34:08:24:fd:e1:1b:fc:aa:49:32:1a:b7:fe:26:0d:08:
75:76:5d:68:e3:f7:08:f3:04:ab:7e:4c:a3:9b:01:ed:b8:ba:
9a:86:88:40:97:6e:ce:e7:36:45:f5:7b:b4:db:3c:d0:13:dc:
d9:4a:3b:11:08:c8:4b:38:3c:15:a8:61:4c:ce:5b:79:94:f5:
41:08:c2:dd:3c:9d:21:a1:59:6c:84:5f:5b:c7:00:16:fb:63:
60:59:47:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 22:41:16 2024 by rpki-client on console-fra.rpki-client.org