Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/b5attZYucHnA6mwIkJjs9konThg.roa
File: b5attZYucHnA6mwIkJjs9konThg.roa (raw, json)
Hash identifier: kTl4n+Z+L2CtxXXgS/D5gH6Ph39ACWeVcSBO8ySCKpY=
Subject key identifier: 6F:96:AD:B5:96:2E:70:79:C0:EA:6C:08:90:98:EC:F6:4A:27:4E:18
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018FD86EBFDEB532C0640EA97ADFBE752E14
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/b5attZYucHnA6mwIkJjs9konThg.roa
Signing time: Sun 02 Jun 2024 10:11:27 +0000
ROA not before: Sun 02 Jun 2024 10:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215788
IP address blocks: 2a0c:9a40:8600::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d8:6e:bf:de:b5:32:c0:64:0e:a9:7a:df:be:75:2e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jun 2 10:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f96adb5962e7079c0ea6c089098ecf64a274e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f7:3b:3f:83:45:74:0e:34:46:87:cf:9c:fd:
51:f7:c7:b8:dc:e4:4d:b2:30:30:27:0a:5a:53:d6:
17:64:1c:0f:ff:a4:cf:ef:33:2a:62:24:42:1a:e2:
97:2d:b5:d0:56:1b:4b:ad:70:06:b9:a5:b3:d2:e7:
8a:e5:8a:59:0b:cc:37:44:09:43:4e:63:6b:27:d8:
96:66:9d:53:c4:36:6f:1a:d4:d2:4c:c0:86:15:88:
37:7b:25:18:35:c3:64:fd:fa:24:f2:b7:8a:bc:29:
44:6c:0b:10:ba:a2:f1:ba:af:d1:31:dd:04:6d:45:
5c:a9:16:b4:ab:59:1a:f5:d8:74:11:b3:71:fb:65:
90:12:7e:8c:9a:8c:65:9b:1e:f7:4c:d3:1f:45:de:
8f:60:bf:1d:23:ed:af:56:be:d7:ab:6b:bb:41:11:
8a:a3:ac:86:bb:18:f8:d6:9d:6b:c3:30:55:b9:f2:
08:81:df:60:56:b2:1b:55:4a:db:92:d4:42:d3:60:
3e:3b:9e:c6:ce:eb:1e:cf:ea:46:c6:b8:e5:ae:71:
47:52:eb:0e:2c:44:28:2d:48:f1:0f:da:ae:0c:c1:
5b:2c:a9:ea:55:c2:da:0d:d9:38:03:29:c1:ea:43:
8d:73:87:57:14:54:43:10:f7:66:d1:d1:99:92:5f:
17:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:96:AD:B5:96:2E:70:79:C0:EA:6C:08:90:98:EC:F6:4A:27:4E:18
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/b5attZYucHnA6mwIkJjs9konThg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8600::/44
Signature Algorithm: sha256WithRSAEncryption
68:0a:de:00:9b:36:49:85:70:67:63:c4:f5:bf:0a:cf:a6:6b:
2f:10:93:b7:50:5d:51:ba:b5:43:56:10:49:17:31:17:06:d6:
f5:21:cd:c5:67:95:e4:ad:5a:79:60:cc:e0:6e:7c:e1:3b:c0:
e9:0e:c4:06:7e:87:c7:32:45:a2:48:2e:e9:fc:39:b8:b2:b6:
9d:aa:98:9e:cc:18:97:cd:37:b4:5c:aa:67:6b:eb:9d:5f:94:
b6:1e:ce:2a:a4:0f:99:17:54:68:67:02:ba:96:9e:3d:87:6b:
e5:f0:f8:f2:53:dc:ab:9b:2f:74:63:48:bb:f8:f8:0d:f7:58:
fb:be:20:07:26:fb:79:27:78:07:8d:6b:1a:76:68:9a:bd:24:
18:f9:24:ac:f8:b6:2a:58:d9:9f:c5:8e:15:d6:49:74:0c:e2:
a2:a2:69:4b:e9:54:b3:6c:bc:15:fe:7c:5d:61:3d:c2:50:8e:
ff:7d:63:60:5c:6a:0a:f0:3e:5e:31:4f:82:7d:00:44:80:5b:
17:60:b4:48:57:a0:3e:c6:e7:fd:2c:1a:e2:f5:a0:2e:01:97:
28:49:ed:51:4c:fe:fd:63:ff:a4:9f:14:93:8b:25:e8:e3:ab:
dd:82:20:a0:bd:dc:ac:d9:25:e1:11:d5:7e:4e:0e:74:6b:53:
82:70:ad:33
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY/Ybr/etTLAZA6pet++dS4UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjQwNjAyMTAxMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Zjk2YWRiNTk2MmU3MDc5YzBlYTZjMDg5MDk4ZWNmNjRhMjc0ZTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfc7P4NFdA40RofPnP1R98e43ORN
sjAwJwpaU9YXZBwP/6TP7zMqYiRCGuKXLbXQVhtLrXAGuaWz0ueK5YpZC8w3RAlD
TmNrJ9iWZp1TxDZvGtTSTMCGFYg3eyUYNcNk/fok8reKvClEbAsQuqLxuq/RMd0E
bUVcqRa0q1ka9dh0EbNx+2WQEn6Mmoxlmx73TNMfRd6PYL8dI+2vVr7Xq2u7QRGK
o6yGuxj41p1rwzBVufIIgd9gVrIbVUrbktRC02A+O57Gzusez+pGxrjlrnFHUusO
LEQoLUjxD9quDMFbLKnqVcLaDdk4AynB6kONc4dXFFRDEPdm0dGZkl8XHwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFG+WrbWWLnB5wOpsCJCY7PZKJ04YMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvYjVhdHRaWXVjSG5BNm13SWtKanM5a29uVGhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgyaQIYA
MA0GCSqGSIb3DQEBCwUAA4IBAQBoCt4AmzZJhXBnY8T1vwrPpmsvEJO3UF1RurVD
VhBJFzEXBtb1Ic3FZ5XkrVp5YMzgbnzhO8DpDsQGfofHMkWiSC7p/Dm4sradqpie
zBiXzTe0XKpna+udX5S2Hs4qpA+ZF1RoZwK6lp49h2vl8PjyU9yrmy90Y0i7+PgN
91j7viAHJvt5J3gHjWsadmiavSQY+SSs+LYqWNmfxY4V1kl0DOKiomlL6VSzbLwV
/nxdYT3CUI7/fWNgXGoK8D5eMU+CfQBEgFsXYLRIV6A+xuf9LBri9aAuAZcoSe1R
TP79Y/+knxSTiyXo46vdgiCgvdys2SXhEdV+Tg50a1OCcK0z
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:59:22 2024 by rpki-client on console-ams.rpki-client.org