Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/IBbirbpOGoUiTxOjy0j0bJFw3CU.roa
File: IBbirbpOGoUiTxOjy0j0bJFw3CU.roa (raw, json)
Hash identifier: ALuUfHJ0Z0Bo53PhoC7FdaxFbgno9klR0mdgEvR6RWw=
Subject key identifier: 20:16:E2:AD:BA:4E:1A:85:22:4F:13:A3:CB:48:F4:6C:91:70:DC:25
Certificate issuer: /CN=42150d463c32667c6a9296c8d25bb383cf419c61
Certificate serial: 018F34C155BC7440B6183D143F46304304FB
Authority key identifier: 42:15:0D:46:3C:32:66:7C:6A:92:96:C8:D2:5B:B3:83:CF:41:9C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhUNRjwyZnxqkpbI0luzg89BnGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/IBbirbpOGoUiTxOjy0j0bJFw3CU.roa
Signing time: Wed 01 May 2024 15:23:56 +0000
ROA not before: Wed 01 May 2024 15:23:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61112
IP address blocks: 2a13:e2c4::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/QhUNRjwyZnxqkpbI0luzg89BnGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/QhUNRjwyZnxqkpbI0luzg89BnGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhUNRjwyZnxqkpbI0luzg89BnGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 May 2024 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:34:c1:55:bc:74:40:b6:18:3d:14:3f:46:30:43:04:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42150d463c32667c6a9296c8d25bb383cf419c61
Validity
Not Before: May 1 15:23:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2016e2adba4e1a85224f13a3cb48f46c9170dc25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:dd:72:ca:84:3e:80:c7:cf:d7:56:4b:8b:bd:
0d:0b:4c:c1:74:07:88:a2:a5:b7:db:22:c8:50:fd:
d0:96:9e:74:76:6a:36:30:00:e3:da:3f:58:84:b2:
7e:31:e2:58:05:3c:24:cd:83:b6:4b:52:9d:1d:92:
59:5e:37:a9:eb:d7:ba:f2:78:36:06:05:88:6d:c1:
e7:88:ac:61:af:20:8e:4a:ae:22:22:a3:ba:a0:20:
25:bd:44:4a:42:35:63:66:fc:a3:61:ca:ff:e6:db:
3e:de:22:e1:df:63:32:3c:cf:09:71:04:84:06:2b:
86:41:e3:1e:f1:93:a0:88:62:de:e0:03:8b:d9:b7:
a0:50:a0:e9:c7:e1:39:2e:92:09:45:78:f1:65:f7:
00:1a:d6:cf:ff:fa:88:62:d8:50:fa:c7:b4:8c:88:
61:03:e7:95:1b:52:54:7e:4c:7c:46:af:1f:fc:c4:
9c:7d:d7:70:8d:4d:e2:c3:7b:83:19:26:13:f7:b2:
68:66:b7:8f:f1:60:af:1c:75:e3:8a:c2:75:7e:c4:
db:b3:92:51:55:eb:64:91:52:ab:0b:00:34:3e:49:
14:f1:84:8d:ab:89:99:bc:85:25:54:f5:01:e9:b8:
40:64:40:fd:2a:a7:3a:f9:85:f4:b4:e7:af:24:e4:
f9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:16:E2:AD:BA:4E:1A:85:22:4F:13:A3:CB:48:F4:6C:91:70:DC:25
X509v3 Authority Key Identifier:
keyid:42:15:0D:46:3C:32:66:7C:6A:92:96:C8:D2:5B:B3:83:CF:41:9C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhUNRjwyZnxqkpbI0luzg89BnGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/IBbirbpOGoUiTxOjy0j0bJFw3CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/QhUNRjwyZnxqkpbI0luzg89BnGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e2c4::/32
Signature Algorithm: sha256WithRSAEncryption
17:59:b3:f2:5b:53:7c:02:02:69:ae:ec:4c:be:0e:f7:f1:78:
1f:1b:94:7d:9a:e1:c7:94:d4:f2:c8:4c:5d:0d:31:b7:e5:12:
9c:75:82:9c:c5:35:12:5e:fc:ef:12:fd:f0:b3:f7:47:e6:e1:
49:68:96:18:51:5d:c3:52:52:21:5f:6c:e1:2a:01:9e:b2:a6:
03:04:7e:e7:99:02:71:04:5b:54:c1:cc:b2:59:9b:db:4d:4f:
84:5b:07:fb:d6:7d:f5:60:19:56:fd:9b:a3:a9:98:0e:a1:82:
82:94:b3:ed:3a:15:96:6b:6f:67:5e:3a:6a:83:70:59:89:6a:
c3:9d:8c:9e:b4:74:ae:34:bf:6a:05:22:d4:e0:3a:bf:a5:8d:
ac:d1:69:e2:a1:3e:46:0f:a0:91:af:10:d6:2d:19:76:82:96:
26:6b:ca:29:fb:3c:7c:b4:9f:5b:2e:e7:9d:d8:e1:86:9e:19:
db:fc:87:d5:fb:14:33:24:ca:db:05:2f:be:c9:1f:0b:b2:9a:
bc:39:f9:a7:c4:49:d1:39:51:81:b8:38:85:b1:9f:72:38:d4:
d9:b8:8a:41:d3:5d:09:37:5e:2c:12:43:18:23:64:13:ca:90:
01:98:40:86:c2:50:07:43:21:f4:06:36:1f:c4:02:a3:f9:79:
49:2a:0c:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 16:32:16 2024 by rpki-client on console-fra.rpki-client.org