Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/_a2TAbUgO0EypJOQGXZ3vHDvdZg.roa
File: _a2TAbUgO0EypJOQGXZ3vHDvdZg.roa (raw, json)
Hash identifier: bEBO7LhQ6wTZaXZGdxSnNWqxuLgb8HMU9XECX7Fyhx4=
Subject key identifier: FD:AD:93:01:B5:20:3B:41:32:A4:93:90:19:76:77:BC:70:EF:75:98
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8D1381CF43F894510CCB0D3BE0505
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/_a2TAbUgO0EypJOQGXZ3vHDvdZg.roa
Signing time: Mon 01 Jan 2024 20:30:50 +0000
ROA not before: Mon 01 Jan 2024 20:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 2a0c:9a40:82b0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d1:38:1c:f4:3f:89:45:10:cc:b0:d3:be:05:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdad9301b5203b4132a49390197677bc70ef7598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8c:fb:a0:d0:1c:d2:50:d8:84:be:87:e8:3e:
54:43:e7:44:7b:8a:63:8f:28:91:3e:22:ac:ec:e2:
87:f8:b0:2b:64:98:1e:fb:93:39:5c:63:a8:e7:55:
0a:c2:64:82:58:eb:1d:e8:a5:74:d4:0a:df:cf:8c:
fd:20:3a:ee:a7:5f:a2:f5:d0:9d:a2:06:8a:e2:7f:
14:df:4b:68:39:9f:f1:fb:17:7b:f0:92:9c:f2:2f:
44:1c:1f:58:e2:9c:71:ce:8b:8b:c3:2c:cd:21:7b:
bd:87:1d:08:3b:9a:65:92:29:58:2c:81:7a:83:a4:
ce:96:30:4a:81:9b:9a:12:41:1e:63:8f:4e:74:cc:
6a:34:1a:8d:bf:a7:cb:b5:c1:9c:31:07:25:a2:13:
06:81:a6:23:83:30:a1:e0:8d:6a:e0:a3:ca:f5:21:
15:1e:e3:90:0c:f6:8d:5b:29:a3:62:a7:15:7c:80:
10:d7:6d:95:0c:bb:ef:64:20:01:7b:3b:0f:09:73:
09:b9:4a:0b:b6:7a:93:25:1b:75:37:19:6b:44:51:
6f:d9:34:87:90:75:8a:92:2c:9f:b6:b7:5a:8b:f6:
13:b3:f2:46:32:96:f0:a0:ef:3d:dd:67:ce:cf:13:
d4:80:e6:e2:02:74:5e:28:d6:bf:4b:44:cb:25:8e:
eb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AD:93:01:B5:20:3B:41:32:A4:93:90:19:76:77:BC:70:EF:75:98
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/_a2TAbUgO0EypJOQGXZ3vHDvdZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:82b0::/48
Signature Algorithm: sha256WithRSAEncryption
6e:c1:79:e9:84:94:57:9d:f8:ab:fb:56:ee:1b:be:a8:d6:fc:
2f:d5:ed:28:00:d4:7d:3e:d2:c8:ac:9f:79:63:bb:ac:22:9d:
9a:61:81:a2:0f:f3:5a:d2:6d:8b:d9:94:33:bd:a9:51:b1:fa:
61:5a:8c:07:42:07:6f:b6:56:a3:19:6d:f0:4a:2d:6a:39:4b:
ee:b7:c8:98:e2:ec:33:7a:46:45:23:92:ce:69:5b:c7:98:1b:
f2:f2:c7:33:98:60:84:a7:b1:7e:4b:52:36:21:9c:1e:e5:5f:
50:53:4c:21:19:d3:35:b1:3d:e7:59:16:f4:2b:77:62:1e:84:
21:3b:78:65:69:50:b3:6b:1c:45:f5:16:2c:6f:1c:af:e7:25:
34:be:32:33:8b:18:90:50:cd:f8:dd:f5:45:66:50:1c:3d:19:
19:00:a8:84:39:f0:99:0f:92:c3:cd:49:d2:18:43:80:bb:53:
80:db:49:89:6a:32:ee:56:cc:92:19:60:bc:0f:c7:70:97:ac:
30:c1:f6:2e:0c:7f:c2:f4:55:25:38:cb:f3:32:7f:95:c9:f2:
d4:15:77:41:4f:14:a1:34:d5:2f:3d:4b:a5:f9:c8:74:a8:93:
06:d9:ee:86:c1:5c:18:1f:67:80:ff:fa:d3:da:09:2b:05:c3:
b1:c9:05:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:17:24 2024 by rpki-client on console-fra.rpki-client.org