Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/8CpPMiyz932IOOWShB_myR3rwRE.roa
File: 8CpPMiyz932IOOWShB_myR3rwRE.roa (raw, json)
Hash identifier: hKVtlytQC/pji0Me9oqKwxq41EOyIadHLp2TBZqvKFg=
Subject key identifier: F0:2A:4F:32:2C:B3:F7:7D:88:38:E5:92:84:1F:E6:C9:1D:EB:C1:11
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 018CC5014DA1F889A0B01DD1BA408D59514A
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/8CpPMiyz932IOOWShB_myR3rwRE.roa
Signing time: Mon 01 Jan 2024 12:30:46 +0000
ROA not before: Mon 01 Jan 2024 12:30:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35819
IP address blocks: 2a03:2887:ff10::/48 maxlen: 48
2a03:2887:ff15::/48 maxlen: 48
2a03:2887:ff0d::/48 maxlen: 48
2a03:2887:ff0f::/48 maxlen: 48
2a03:2887:ff11::/48 maxlen: 48
2a03:2887:ff13::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:4d:a1:f8:89:a0:b0:1d:d1:ba:40:8d:59:51:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Jan 1 12:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f02a4f322cb3f77d8838e592841fe6c91debc111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:55:01:3a:16:6b:eb:ee:2e:e2:aa:e6:2c:40:
2a:2b:e4:19:9c:a3:3d:5b:b8:e4:3b:d1:57:ea:7a:
6f:5e:6b:4c:a2:6c:ed:dc:c8:3e:a9:16:2f:9f:ee:
1a:95:ae:96:4c:97:33:e6:90:71:08:4a:a3:7d:5b:
77:a1:bb:fd:3b:db:fb:4a:e3:cb:49:a5:a1:05:9b:
20:d8:5f:47:80:1f:bb:a1:34:b7:0a:96:09:9d:8a:
2d:d4:00:0b:d0:66:89:bf:4e:9f:ed:6d:8f:41:1e:
da:81:4b:10:a8:82:19:8e:74:5c:f7:f8:90:f5:47:
b8:ff:e4:a7:18:bc:8b:a4:a4:f4:89:60:87:47:a6:
36:d0:15:d2:3c:ee:99:ea:79:3c:89:69:fd:cf:7f:
0b:6d:d4:9a:c6:04:58:e5:10:0c:42:18:46:6f:05:
c7:0c:d0:36:32:d6:c9:53:df:c6:8e:6e:dc:56:81:
eb:ba:51:40:9b:97:d5:b7:08:16:68:cb:07:2d:cf:
56:64:b8:56:49:4b:30:a9:90:ad:6a:55:1f:8d:6c:
ec:0e:09:49:ea:28:25:a7:f3:f2:70:da:54:30:74:
cb:6c:53:c8:20:ff:9d:75:93:64:7e:76:f3:db:6b:
83:0c:63:c0:f4:4b:83:ad:d2:e8:87:db:1c:92:5d:
0e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2A:4F:32:2C:B3:F7:7D:88:38:E5:92:84:1F:E6:C9:1D:EB:C1:11
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/8CpPMiyz932IOOWShB_myR3rwRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2887:ff0d::/48
2a03:2887:ff0f::-2a03:2887:ff11:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff13::/48
2a03:2887:ff15::/48
Signature Algorithm: sha256WithRSAEncryption
0a:b9:91:33:cb:bc:a3:a0:c0:af:67:d9:44:46:e4:0f:1b:2c:
48:b6:98:ec:de:d7:10:a8:69:50:36:2f:91:53:3f:02:f3:e6:
85:dc:52:9e:bb:eb:3c:38:02:a4:04:83:34:c4:90:36:b9:05:
80:9b:c5:1e:ff:f0:1e:86:c3:e9:39:a0:29:64:8c:74:a1:82:
aa:55:db:b6:0d:e0:b0:d8:c1:f2:37:7c:4d:ed:59:f7:32:fa:
48:69:20:5d:2a:ec:b2:b9:b3:69:23:16:dc:74:b8:c1:0d:78:
65:0b:cd:3b:b2:e1:97:2a:03:d5:78:bf:79:e4:22:8d:45:b5:
3f:bd:0e:25:1c:a6:43:6e:d3:d0:5f:13:b3:7a:30:8b:46:ea:
a3:ec:cd:08:c4:a1:e9:e2:ca:f6:5c:ff:01:27:01:eb:a8:98:
de:fc:bd:e3:b6:26:49:3d:ff:df:c2:ad:8d:79:80:4b:ed:63:
36:77:92:6f:10:ac:6f:0e:2e:4e:ab:1a:a9:e7:5d:9c:1a:5d:
89:0c:a5:2c:ab:fb:25:d0:d1:d4:11:ca:19:e3:be:91:5f:be:
58:47:7e:6c:f2:8b:b9:c6:7b:9b:2b:ec:90:24:74:3a:39:2a:
16:2c:c3:8a:b2:7d:fc:82:0d:06:06:ac:9d:2d:3a:3a:c2:27:
fb:05:25:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:28:25 2024 by rpki-client on console-ams.rpki-client.org