Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/NEdYdGyxbpJzi6a-X9yihhUcmV8.roa
File: NEdYdGyxbpJzi6a-X9yihhUcmV8.roa (raw, json)
Hash identifier: Ix03Jk0TiaSOReqK4qnX7KYsW1Bu4aYmSk0w0bxzxbE=
Subject key identifier: 34:47:58:74:6C:B1:6E:92:73:8B:A6:BE:5F:DC:A2:86:15:1C:99:5F
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CC501181B3382199E966EB077E6380A46
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/NEdYdGyxbpJzi6a-X9yihhUcmV8.roa
Signing time: Mon 01 Jan 2024 12:30:32 +0000
ROA not before: Mon 01 Jan 2024 12:30:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 2a0c:fe07::/32 maxlen: 32
2a0e:cbc2::/32 maxlen: 32
2a0c:fe06::/32 maxlen: 32
2a0e:cbc1::/32 maxlen: 32
2a0e:cbc0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft
rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:18:1b:33:82:19:9e:96:6e:b0:77:e6:38:0a:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 12:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=344758746cb16e92738ba6be5fdca286151c995f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c1:66:cc:c3:d0:c2:d5:71:20:21:59:fe:24:
ed:8a:32:5f:c9:0c:e2:f0:bf:30:c7:3f:c2:8e:80:
b8:09:9f:97:e4:7e:fe:2b:72:ac:de:eb:aa:bb:83:
b1:26:42:ae:f0:10:cf:b3:77:ba:d2:23:06:7e:5c:
1a:27:46:5e:7c:9c:5b:c5:45:af:d0:3c:71:44:0c:
62:7d:0b:93:eb:6f:b9:1a:67:f7:ce:9e:e5:68:f5:
f2:99:11:ca:6e:b4:7b:e9:1e:63:9c:7e:77:d6:45:
0d:7e:bf:15:f0:8c:64:55:c9:da:2d:ec:9b:6b:83:
66:e0:f3:22:64:54:02:ec:6f:66:e4:0a:16:97:4d:
00:d2:2d:ad:f3:bb:d7:d9:31:fc:d1:70:ed:a7:37:
84:4b:56:b3:51:52:14:d0:59:41:2e:54:1c:43:79:
7e:52:36:58:97:1d:c5:15:4b:5b:eb:76:06:4c:66:
03:02:c4:c3:94:59:4a:c6:de:78:2d:2b:16:37:ef:
43:d9:76:5e:cb:6c:8a:0b:c7:b8:d9:ae:62:ed:b2:
a0:2f:76:b0:d6:b3:78:a0:4f:8a:33:98:18:6a:37:
99:2b:ae:df:66:98:80:e0:04:f2:f7:f1:06:74:94:
df:dd:29:09:5e:c6:89:d2:67:fb:7d:df:5a:2f:d6:
ca:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:47:58:74:6C:B1:6E:92:73:8B:A6:BE:5F:DC:A2:86:15:1C:99:5F
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/NEdYdGyxbpJzi6a-X9yihhUcmV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:fe06::/31
2a0e:cbc0::-2a0e:cbc2:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
18:3a:8d:c5:d1:9b:f7:4b:76:45:f1:c5:a7:fc:a0:ae:28:ea:
53:3c:1a:9c:11:4c:f1:c4:41:ef:93:3f:57:a6:45:a8:8a:6b:
19:a0:b7:f0:b1:b5:56:7c:45:ad:35:40:f9:ed:84:63:fa:96:
30:f7:39:4d:15:eb:d1:ef:db:04:39:19:d6:88:27:01:7e:b4:
3a:98:37:37:4e:fa:bc:ba:2a:27:0f:13:4a:01:19:e5:13:27:
6f:ad:52:a5:db:25:50:ea:3d:97:58:b1:66:1b:bf:c3:44:f3:
b6:0e:83:68:36:ae:ae:70:a8:93:61:48:cf:39:71:f9:f3:df:
71:d1:ed:79:d2:74:11:4a:e5:7e:15:e0:61:37:f0:7c:3d:76:
9a:7d:46:98:a8:a7:23:1e:f1:8e:43:4b:28:24:56:cf:c8:b6:
47:cc:7b:89:70:f6:84:6a:1d:20:c7:ef:58:31:27:3c:45:ae:
ca:38:1e:b0:6b:44:2c:d1:bb:d0:8b:be:96:70:6c:46:8d:02:
6c:e0:28:70:bc:0c:75:cb:69:09:49:46:89:c6:0a:05:70:bc:
cf:ce:e9:d6:95:ff:eb:75:0b:f5:ef:1e:23:45:08:ec:47:1c:
73:e1:52:25:3a:1b:d7:0b:e4:95:a8:97:44:dd:46:c4:9b:76:
99:ab:df:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:04:47 2024 by rpki-client on console-ams.rpki-client.org