Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/RocrrMh5-NL1eYejCueH4Q55Jiw.roa
File: RocrrMh5-NL1eYejCueH4Q55Jiw.roa (raw, json)
Hash identifier: M9EDsWBaRwKWRlxLxiYewxFuVna3KTDI0FjN/cx8jS4=
Subject key identifier: 46:87:2B:AC:C8:79:F8:D2:F5:79:87:A3:0A:E7:87:E1:0E:79:26:2C
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0191C1DD2B27848A88BB419382AAA326CCCD
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/RocrrMh5-NL1eYejCueH4Q55Jiw.roa
Signing time: Thu 05 Sep 2024 11:06:22 +0000
ROA not before: Thu 05 Sep 2024 11:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216305
IP address blocks: 2a0c:9a40:8490::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c1:dd:2b:27:84:8a:88:bb:41:93:82:aa:a3:26:cc:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 5 11:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46872bacc879f8d2f57987a30ae787e10e79262c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d8:eb:70:11:57:4e:dd:e7:93:6c:09:4d:01:
2a:6c:ff:90:a1:60:3a:86:c4:56:c8:1d:a1:61:ea:
64:6b:17:55:29:ae:c8:46:64:0a:24:4c:3a:91:cb:
4c:3c:37:12:c8:59:42:54:7a:e6:a3:88:b0:32:31:
99:3b:bb:1c:31:b8:e5:58:4a:15:ea:18:54:0d:0d:
bc:31:cc:7d:f0:69:a9:11:9c:01:75:88:2b:d9:33:
90:3c:db:64:b2:ff:61:c8:b8:e7:ab:d4:36:72:f5:
d7:4a:7d:23:a7:dd:f8:fb:1a:0e:7e:ba:ee:cb:f7:
49:5f:89:78:f7:ae:3f:cb:3e:3c:31:73:1a:65:d4:
72:f5:94:21:66:37:90:48:97:6d:fe:35:92:82:90:
c3:d3:c8:bf:64:41:40:05:0c:de:40:49:02:e0:d2:
42:e9:64:d4:8b:af:b8:3a:d5:c7:98:d3:0d:31:a7:
dd:a5:2f:a7:36:26:61:79:b8:a4:78:8c:b7:8a:79:
52:25:34:4f:5d:85:d1:c2:57:44:03:b7:71:e7:40:
83:fd:ed:58:1b:9e:5b:b4:1e:38:a8:34:9d:ba:f1:
fd:c9:64:16:8b:d9:d7:68:e3:f0:11:40:b1:26:4f:
a9:d8:19:1a:23:a6:c0:1a:e3:9d:69:27:c4:e9:a7:
b2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:87:2B:AC:C8:79:F8:D2:F5:79:87:A3:0A:E7:87:E1:0E:79:26:2C
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/RocrrMh5-NL1eYejCueH4Q55Jiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8490::/48
Signature Algorithm: sha256WithRSAEncryption
2b:75:ce:9a:99:bb:d1:14:3e:7d:fc:09:0d:6b:15:2f:39:f7:
f8:50:e8:65:d1:9f:bb:98:86:53:f4:12:e8:27:96:83:09:c7:
66:fa:f0:1f:c9:f3:95:84:7d:fb:cb:bf:e3:ac:44:ea:50:37:
67:15:68:4c:4e:88:99:04:ef:42:0e:3e:d0:d4:88:39:71:53:
e5:a8:cb:0d:0e:db:22:c0:4d:b7:50:85:94:33:77:04:f0:d3:
8a:24:ea:bb:d2:52:0a:93:42:76:cb:40:6a:dc:f3:1b:34:88:
84:81:fa:ac:52:4d:3c:88:49:e8:37:37:00:14:7d:8a:41:b5:
bd:c0:88:07:eb:7d:7c:3d:c2:9b:a2:0d:82:15:33:ad:58:92:
d1:e8:ca:74:a8:9a:68:5c:47:e2:1f:32:5b:ec:bc:30:d2:1c:
09:ee:bb:53:37:95:d5:21:58:03:15:c6:ed:36:fd:d8:fe:3a:
5e:ae:37:3c:6e:ba:55:37:80:8b:5c:47:cc:1f:15:f0:7c:98:
bb:c2:1a:53:b7:93:9c:b0:2e:a1:8d:cc:c8:93:01:8a:2d:88:
fc:a4:b6:cd:91:ab:29:b3:44:24:16:6e:08:33:56:eb:ff:4e:
37:5c:b5:7a:61:e0:2f:c2:92:fa:05:67:e7:04:60:d2:bb:31:
35:db:fb:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:17:24 2024 by rpki-client on console-fra.rpki-client.org