Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/LVVaKTxPOiNfDDrxrvAu96I_30Q.roa
File: LVVaKTxPOiNfDDrxrvAu96I_30Q.roa (raw, json)
Hash identifier: XWsCy6Zp6WHEEkEv5UW/6Msk00SUs50u1EAlSX85GKs=
Subject key identifier: 2D:55:5A:29:3C:4F:3A:23:5F:0C:3A:F1:AE:F0:2E:F7:A2:3F:DF:44
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8DE630002556AAD2C94AA7E88BE4B
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/LVVaKTxPOiNfDDrxrvAu96I_30Q.roa
Signing time: Mon 01 Jan 2024 20:30:53 +0000
ROA not before: Mon 01 Jan 2024 20:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198079
IP address blocks: 2a0c:9a40:83b0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 06:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:de:63:00:02:55:6a:ad:2c:94:aa:7e:88:be:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d555a293c4f3a235f0c3af1aef02ef7a23fdf44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9e:b4:ec:c8:d7:4d:1d:8f:8a:94:fd:a6:01:
64:dd:1a:63:a5:d8:5f:cb:74:3c:eb:2e:6c:89:5a:
23:52:3e:eb:61:9a:c7:13:dd:56:ea:91:a3:ff:65:
97:6a:f4:b3:b3:81:a0:4d:25:63:68:39:09:b4:48:
53:1a:3d:92:93:cb:a9:0f:15:1c:66:5e:cd:e9:20:
20:e6:d8:60:8f:36:2a:61:28:91:45:d3:7e:a5:ea:
43:dd:2a:08:1c:6c:cf:c7:2f:90:d3:e5:46:c0:bc:
7c:b4:d8:df:9e:51:fe:ed:4a:77:4f:a6:8b:56:5e:
ee:2a:e4:7e:7a:95:10:51:68:48:a0:9a:4c:c3:eb:
24:11:9b:45:89:cf:33:4c:4c:03:0a:7b:89:70:71:
be:6f:cc:f3:4c:81:d1:55:6c:d0:cf:84:84:27:57:
f6:01:1d:35:46:66:42:d3:20:df:79:83:57:05:43:
1e:3e:37:ae:dd:44:e0:4d:6e:74:2c:51:ed:0d:db:
37:14:2a:62:4f:0c:4b:f0:90:6a:eb:24:1d:12:40:
e6:58:01:31:9f:96:ca:8b:ad:f8:7c:ed:e6:ed:e4:
8e:57:8f:d9:bd:82:d4:6b:c2:0b:22:4e:cc:7f:5d:
e2:ed:7b:5b:c0:4b:f1:0d:e4:fa:11:23:6a:1c:ed:
ab:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:55:5A:29:3C:4F:3A:23:5F:0C:3A:F1:AE:F0:2E:F7:A2:3F:DF:44
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/LVVaKTxPOiNfDDrxrvAu96I_30Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:83b0::/48
Signature Algorithm: sha256WithRSAEncryption
6c:c4:82:7e:69:94:b1:1d:95:fd:45:cc:9c:18:1f:b9:5c:3b:
5d:2b:0b:18:b6:76:d9:50:3d:14:27:be:5c:00:70:49:0c:0d:
db:9e:da:17:e2:18:b7:36:2d:0a:92:3d:63:1e:fe:30:a7:db:
43:57:32:05:8b:9d:8b:e0:05:11:62:d3:4a:1a:34:b7:00:2f:
c9:82:1c:0e:a0:77:24:d4:74:62:c6:ce:69:c3:84:51:07:13:
48:35:d5:b3:52:8f:b7:89:ec:c7:ba:f5:60:63:2f:77:55:b8:
2b:6b:fd:a7:61:11:7d:c6:9f:31:b1:05:85:21:f5:0f:4a:d7:
2e:a5:a8:93:bc:58:60:50:1a:9e:e2:04:2f:fd:e0:58:0f:07:
d5:7d:2f:f7:f5:b3:5f:44:ed:a0:54:9b:18:db:57:05:d4:b1:
4f:af:25:7b:d8:c2:48:2d:bc:48:4c:76:80:ce:88:7b:8d:65:
24:ff:16:2d:33:12:d6:ca:8d:a8:2b:8d:cc:bf:ab:6b:61:4c:
c2:ab:ce:b8:a8:41:68:bf:f6:ea:ed:cc:30:80:3e:0b:7e:62:
69:47:12:e4:ec:58:4b:60:3b:3d:5f:c9:bb:55:a2:31:62:2b:
fe:f6:7f:ed:c1:b4:1b:70:ad:73:57:66:d0:b2:31:04:d4:70:
7c:6a:74:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 11:09:02 2024 by rpki-client on console-ams.rpki-client.org