Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SVyrnVBcWBkskSlt9tTE11w6rkk.roa
File: SVyrnVBcWBkskSlt9tTE11w6rkk.roa (raw, json)
Hash identifier: dGsXPCaXhycIpAXglrNlpywCmfJJ1/9qwjMluJyWT04=
Subject key identifier: 49:5C:AB:9D:50:5C:58:19:2C:91:29:6D:F6:D4:C4:D7:5C:3A:AE:49
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8E86A3E3A80381C2EC8A4A92C8474
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SVyrnVBcWBkskSlt9tTE11w6rkk.roa
Signing time: Mon 01 Jan 2024 20:30:56 +0000
ROA not before: Mon 01 Jan 2024 20:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206824
IP address blocks: 2a0c:9a40:8090::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:e8:6a:3e:3a:80:38:1c:2e:c8:a4:a9:2c:84:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=495cab9d505c58192c91296df6d4c4d75c3aae49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:45:51:b9:74:40:fa:2a:ee:c7:9a:23:d3:ab:
ea:b3:d7:73:58:43:d2:d8:5b:40:a3:bc:9a:e6:90:
3f:da:37:92:0e:6a:9d:1b:5d:bc:c8:18:f3:ab:a9:
88:57:cf:8d:e6:80:04:f8:ac:5f:44:03:3d:67:05:
db:7a:2a:8f:5a:86:3f:42:ab:d9:f2:a9:01:7e:b1:
cb:8c:2b:b8:fa:bf:ff:0e:35:6a:a3:1a:a2:ce:05:
27:6b:e4:52:fc:88:7a:e1:06:a8:77:2d:99:27:1e:
8a:e2:ee:6c:cd:fc:0b:c9:a8:fe:98:bc:cc:95:99:
8d:c4:38:3d:a5:24:84:bf:fd:71:ce:17:5a:b1:fa:
cd:e5:2f:b7:37:e8:30:1c:1b:3a:8e:0e:34:32:a1:
68:17:72:01:72:f1:c2:d4:ac:c1:59:ac:0b:85:95:
8e:87:a7:ac:5c:99:7d:2a:92:34:e1:5c:e8:fe:f0:
03:0e:cc:f2:bb:8a:8c:84:8c:fd:60:ab:5a:98:14:
df:a7:4b:86:0e:44:44:b1:38:a7:04:d8:f2:61:2a:
bc:a9:2c:c5:6d:2e:cc:e0:38:a1:ef:b5:e9:db:d3:
5c:8c:40:ab:f2:56:75:91:69:e2:fe:00:af:e8:d2:
5d:ee:9c:4f:c4:18:6a:19:a9:66:8f:db:74:f6:86:
0c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:5C:AB:9D:50:5C:58:19:2C:91:29:6D:F6:D4:C4:D7:5C:3A:AE:49
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SVyrnVBcWBkskSlt9tTE11w6rkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8090::/44
Signature Algorithm: sha256WithRSAEncryption
be:0d:1e:73:3a:9d:b3:5c:82:9d:40:7b:68:2d:a5:71:08:b6:
46:61:4d:79:2b:84:f0:dc:e1:05:0b:fd:e9:ed:98:ce:40:07:
0d:5b:56:4c:29:d3:6f:13:06:3d:16:92:89:ca:52:22:86:8b:
7f:01:bc:e3:84:d4:a7:62:3c:5b:b9:74:30:44:21:49:f3:6c:
d8:0e:94:37:d4:73:77:85:7a:dc:38:b6:5a:ee:08:65:87:f1:
d4:7d:69:fd:ef:84:4b:05:cf:69:be:c5:3d:18:21:d0:2c:9a:
ec:6f:9f:a0:8a:f6:2f:70:0d:71:5f:3d:2a:50:d4:a4:d8:a2:
2e:33:05:4f:dc:80:91:0a:57:df:5f:d5:95:70:91:5d:07:5a:
3e:d4:5c:ef:94:18:f1:40:67:24:1b:2f:98:1c:6a:21:b8:aa:
78:04:ac:f0:5c:b3:69:9f:ca:74:8e:14:68:c9:08:99:98:4c:
a2:fc:0b:de:e0:b2:0e:45:fc:3b:f4:95:e4:b8:36:c6:cf:a0:
4e:ea:3a:99:e4:1a:34:54:c4:c3:6e:d9:d8:06:b5:70:d0:ed:
41:f8:69:69:84:99:00:d6:eb:2a:61:3f:b7:f4:86:23:7a:c1:
9b:c2:4e:29:76:0c:ad:f5:ad:b2:eb:97:a6:c7:14:9a:3d:f2:
1d:98:91:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:59:22 2024 by rpki-client on console-ams.rpki-client.org