Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dSt3dfajWJABh0iSHL0bwlTT1jI.roa
File: dSt3dfajWJABh0iSHL0bwlTT1jI.roa (raw, json)
Hash identifier: tPOFRlUt33m578JvPf4zPKDG+Kel7v0/m1tBodoSdfA=
Subject key identifier: 75:2B:77:75:F6:A3:58:90:01:87:48:92:1C:BD:1B:C2:54:D3:D6:32
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8E387A9F548E2023647F34708416A
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dSt3dfajWJABh0iSHL0bwlTT1jI.roa
Signing time: Mon 01 Jan 2024 20:30:54 +0000
ROA not before: Mon 01 Jan 2024 20:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201106
IP address blocks: 2a0c:9a40:808d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:e3:87:a9:f5:48:e2:02:36:47:f3:47:08:41:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=752b7775f6a35890018748921cbd1bc254d3d632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3f:92:68:e2:17:e5:30:e6:ba:8d:12:23:4b:
95:1d:c3:93:4e:7f:c3:5a:fb:c1:d7:ae:9b:75:c9:
ad:df:e7:05:d6:b6:0d:97:e3:0e:2c:0e:1e:74:1e:
62:97:b4:12:b3:15:0a:d5:55:c7:65:21:19:c3:48:
9e:7c:3f:b9:4e:1e:20:1b:e4:c7:0c:b6:23:a2:16:
a3:4d:2b:55:df:39:8c:e9:44:ff:c1:2b:be:dd:a0:
6a:e3:3b:2c:72:34:79:25:13:0f:1f:76:6f:4c:c2:
20:2a:1c:eb:f6:15:d3:19:70:b6:1d:c4:54:87:8d:
d5:de:b2:3c:0e:f7:93:54:1a:40:ed:bf:9b:dc:5c:
6f:3d:bd:fe:34:11:49:49:0a:92:6c:86:ae:a0:9c:
41:d2:0e:3e:bb:08:ca:6a:3b:66:f7:85:d2:f9:44:
b9:66:be:e6:72:d4:10:35:57:bd:78:c8:e1:08:a7:
96:ba:19:79:3a:f5:63:38:5e:2b:0f:30:33:95:a4:
e8:17:c5:8c:f4:b5:04:75:73:f4:7c:30:f8:db:6f:
f6:c0:3f:81:51:e0:03:f8:23:bf:ec:99:62:7c:aa:
2e:a2:e6:5f:cc:a1:59:ed:2b:cb:e5:3c:37:38:73:
98:b0:31:61:2c:93:01:65:b9:be:2f:c4:af:c9:3b:
d6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2B:77:75:F6:A3:58:90:01:87:48:92:1C:BD:1B:C2:54:D3:D6:32
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dSt3dfajWJABh0iSHL0bwlTT1jI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:808d::/48
Signature Algorithm: sha256WithRSAEncryption
01:2b:9c:5e:aa:1f:12:15:80:f3:f6:85:98:81:20:92:53:0e:
c1:1c:9a:c7:3a:71:a0:f7:72:d1:34:d6:e6:35:92:16:bd:6d:
d1:73:18:8a:0c:ed:c2:b8:7b:33:8e:b3:cf:c8:93:a2:d1:a6:
86:93:39:58:47:be:0d:6b:c7:02:ca:6d:10:84:8c:6c:5c:5d:
18:77:3a:ec:bf:e9:f2:83:7b:93:ed:da:2a:90:e2:62:2f:ed:
08:cc:88:3d:3b:6f:1a:e4:43:d3:f6:28:3d:83:51:36:d0:cb:
f2:ea:e1:d0:2a:27:79:72:cd:0a:a0:79:41:85:d3:f2:57:67:
ca:55:16:2d:11:dc:1a:56:16:04:5c:3a:cf:48:93:77:52:ef:
0c:dd:14:33:94:f0:81:d3:9e:02:62:72:2f:6f:99:cb:ef:15:
98:67:b8:1b:63:84:65:34:92:bb:3d:ec:a1:c8:72:c5:78:81:
74:93:67:38:9a:13:87:dd:e5:db:0b:7c:1f:14:57:db:d8:90:
12:f1:44:54:e3:d7:71:95:d1:90:cf:42:d0:6f:22:53:e4:78:
c1:35:7c:44:f1:dd:12:64:e4:b4:90:36:3c:5e:60:3f:45:19:
11:0b:10:15:77:80:a8:53:9c:9b:ed:8c:12:f5:76:35:2a:f3:
ba:0e:c7:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 08:54:42 2024 by rpki-client on console-ams.rpki-client.org