Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/e--7WexutLHVm0flarTaZJ9GUx8.roa
File: e--7WexutLHVm0flarTaZJ9GUx8.roa (raw, json)
Hash identifier: x7Dow4hyzDN3lab+Fd47Vs84WoNKd00SRHQk13t/34Q=
Subject key identifier: 7B:EF:BB:59:EC:6E:B4:B1:D5:9B:47:E5:6A:B4:DA:64:9F:46:53:1F
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8EBE950A5F762C74EF4AF912E6721
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/e--7WexutLHVm0flarTaZJ9GUx8.roa
Signing time: Mon 01 Jan 2024 20:30:56 +0000
ROA not before: Mon 01 Jan 2024 20:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210283
IP address blocks: 2a0c:9a40:8193::/48 maxlen: 48
2a0c:9a40:819e::/48 maxlen: 48
2a0c:9a40:8199::/48 maxlen: 48
2a0c:9a40:8194::/48 maxlen: 48
2a0c:9a40:8197::/48 maxlen: 48
2a0c:9a40:8192::/48 maxlen: 48
2a0c:9a40:819d::/48 maxlen: 48
2a0c:9a40:819b::/48 maxlen: 48
2a0c:9a40:8196::/48 maxlen: 48
2a0c:9a40:8191::/48 maxlen: 48
2a0c:9a40:819c::/48 maxlen: 48
2a0c:9a40:819f::/48 maxlen: 48
2a0c:9a40:819a::/48 maxlen: 48
2a0c:9a40:8190::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:eb:e9:50:a5:f7:62:c7:4e:f4:af:91:2e:67:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7befbb59ec6eb4b1d59b47e56ab4da649f46531f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:be:19:81:ff:d5:f6:65:7c:9e:6c:0c:30:15:
32:9f:cb:78:e8:a7:f2:17:76:bb:a1:f0:be:15:d3:
37:a6:ef:01:ae:81:e5:1c:3e:3c:80:49:e3:9e:f4:
6b:3e:19:11:15:5f:81:24:41:fc:85:a4:11:b4:9e:
07:eb:7d:a0:de:c9:5f:d4:35:a7:d0:e9:82:62:08:
07:07:b9:91:21:18:04:fc:96:6b:7a:8e:b1:8e:a9:
f1:39:bc:58:d0:b5:da:67:98:d8:b5:c0:d6:ca:b6:
1c:e8:81:f7:8c:92:ff:77:2f:11:e0:54:76:c1:d7:
11:a4:4e:aa:7e:a1:4b:3a:f2:71:c7:f5:7d:b1:3a:
18:04:04:6d:c0:74:ec:f0:e0:2a:93:f5:33:95:94:
40:1f:42:2e:4b:3e:e7:c1:14:cd:6f:3e:70:d3:69:
89:6b:67:aa:60:44:43:94:51:15:80:4a:0b:23:9f:
5f:e9:00:fb:dc:c1:33:24:df:2a:4f:03:e7:66:3d:
2a:aa:37:ba:a3:da:f6:47:63:12:95:f7:f6:f3:e7:
13:a9:a5:c7:62:05:01:7d:31:1d:06:8c:57:3d:29:
0b:79:97:99:17:37:04:3c:04:ef:e0:31:f9:7e:e5:
95:88:2b:5f:f5:ff:26:47:4d:3b:c3:44:79:4f:0c:
90:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:EF:BB:59:EC:6E:B4:B1:D5:9B:47:E5:6A:B4:DA:64:9F:46:53:1F
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/e--7WexutLHVm0flarTaZJ9GUx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8190::-2a0c:9a40:8194:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:8196::/47
2a0c:9a40:8199::-2a0c:9a40:819f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
c5:e4:39:8e:ee:7e:80:5e:01:67:13:10:d3:0b:be:46:3f:dc:
0e:83:55:bf:91:2f:d1:9c:26:0f:ec:b9:15:c6:7f:07:4c:3a:
d7:cb:55:68:45:0c:47:8e:86:55:2c:eb:05:61:c1:f7:5f:40:
37:db:c7:ff:8c:92:91:08:30:f0:f7:cb:8f:f7:7e:4e:fa:2f:
21:15:b2:1b:49:4f:cf:fe:11:1d:9c:6c:b0:0d:3c:1a:07:b3:
a9:18:6d:1a:18:ff:08:15:4d:78:45:e4:67:82:d9:e1:e7:2c:
ad:bc:9c:44:5e:ba:fb:59:b0:64:d8:66:1c:6a:63:fe:ea:ef:
f1:15:98:a1:3a:8b:0b:37:ed:1e:3e:85:7d:23:5e:95:3f:6c:
de:b2:c8:ee:a8:47:85:70:8f:91:a2:d0:32:5c:3a:8c:b5:5b:
61:e5:b4:0e:b5:c5:70:c9:41:2d:b1:75:4d:47:5c:f1:3e:47:
1d:45:64:56:22:53:03:f5:07:d3:05:dd:db:16:eb:cf:5a:98:
b4:7d:97:3f:3c:5f:89:8e:4f:01:ab:84:e1:e9:11:35:5f:d7:
1d:01:96:eb:ef:b1:cf:40:ef:5c:34:23:f7:d9:5a:51:78:86:
66:55:69:48:7a:b3:6e:bd:2e:5f:c7:d3:ba:c6:ea:40:c7:0e:
2f:32:0a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 22:41:16 2024 by rpki-client on console-fra.rpki-client.org