Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/wwywpIIXQafkPbYLrvUOz_ngiv8.roa
File: wwywpIIXQafkPbYLrvUOz_ngiv8.roa (raw, json)
Hash identifier: FhXid5SYApJ7lUvZlGXYq7yPnLseK7pL1pR2+p91U+A=
Subject key identifier: C3:0C:B0:A4:82:17:41:A7:E4:3D:B6:0B:AE:F5:0E:CF:F9:E0:8A:FF
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018FC5E5CC4BC7EF647ECF604719203ADBAF
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/wwywpIIXQafkPbYLrvUOz_ngiv8.roa
Signing time: Wed 29 May 2024 19:48:42 +0000
ROA not before: Wed 29 May 2024 19:48:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2a0c:9a44:cf::/48 maxlen: 48
2a0e:7d41:8888::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c5:e5:cc:4b:c7:ef:64:7e:cf:60:47:19:20:3a:db:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: May 29 19:48:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c30cb0a4821741a7e43db60baef50ecff9e08aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:38:8d:7d:f6:9e:6b:27:37:a6:df:4f:83:52:
78:88:61:3c:1e:49:44:da:db:7e:52:f1:d6:9a:bc:
7e:18:93:e6:cb:ac:47:4a:d0:58:e0:45:34:30:b7:
36:18:05:40:76:e4:5a:89:d7:93:bc:0c:13:f0:e9:
6b:59:98:61:d5:92:af:db:56:12:01:d4:d1:47:c0:
20:c1:88:6e:5e:3b:16:c3:15:31:02:48:97:5b:20:
7d:96:1b:42:ed:68:8c:3f:1c:22:81:93:44:2d:dc:
5f:58:83:d4:2e:7f:d8:84:1b:fa:24:8b:0e:f1:ba:
20:03:df:a8:57:57:bb:45:be:36:d7:cf:f3:66:52:
47:93:e0:ec:f4:28:fc:88:0b:d5:dc:5b:f9:9b:31:
a2:31:4d:6a:81:e2:fc:5e:31:36:a7:ce:ce:25:1c:
0f:ac:37:a1:10:70:68:9a:89:34:9e:a9:e6:87:a8:
69:ba:26:bd:20:0c:d3:09:52:eb:ee:7a:73:0c:8e:
10:fa:24:c2:48:df:4d:c0:0d:e7:7e:a8:05:1b:93:
4e:9b:ca:49:f1:f6:77:ff:16:de:2a:b3:b1:4a:d9:
21:5c:b8:f9:cc:59:58:98:28:b6:62:e3:0b:b5:82:
51:4f:37:a2:25:3f:a2:d4:31:be:d3:e8:23:fe:1b:
c4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0C:B0:A4:82:17:41:A7:E4:3D:B6:0B:AE:F5:0E:CF:F9:E0:8A:FF
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/wwywpIIXQafkPbYLrvUOz_ngiv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a44:cf::/48
2a0e:7d41:8888::/48
Signature Algorithm: sha256WithRSAEncryption
7c:38:1a:a4:0f:8c:c8:66:0c:74:12:5e:e4:63:67:4b:a6:e8:
0f:d9:b5:cd:bd:ca:0b:80:46:ca:48:04:37:b0:2a:63:86:bf:
7a:b2:22:60:25:72:6a:be:cc:a3:93:d8:b5:5c:47:3b:73:aa:
23:76:67:f6:c3:5e:52:f8:d9:83:83:20:0e:62:96:95:aa:68:
af:91:78:5d:90:96:b8:ff:b3:d9:f2:06:d3:24:69:16:1e:1e:
6d:0a:b2:37:2d:25:9b:50:ea:2d:8e:93:ca:ae:be:99:05:1c:
88:85:72:1d:e0:b0:c2:2a:40:f9:b1:91:5c:a7:c2:b0:3f:86:
a5:1e:69:de:92:07:8f:07:2e:d5:9c:eb:00:e4:bd:85:b8:72:
f8:a2:50:59:96:67:39:a8:e7:07:4f:7d:4f:cd:96:f5:7b:46:
6b:3e:7c:5e:a0:93:b4:18:27:bd:7f:90:f7:a0:0c:6f:bf:f2:
89:fb:9b:f9:5a:33:19:06:bf:e3:91:8b:76:50:b9:97:67:66:
89:49:2d:66:aa:40:74:ac:d8:57:a1:45:51:a7:7b:65:95:e1:
88:26:4c:21:f3:6b:31:3d:8b:ae:25:48:50:a7:f9:8b:dc:4e:
bd:49:0c:d7:02:b0:3a:f0:5f:3b:63:c5:b5:a7:6b:f0:12:09:
2d:a2:fa:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 22:41:17 2024 by rpki-client on console-fra.rpki-client.org