Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/RXISqTqoz4YKE-GrOgBPjQPF-Jc.roa
File: RXISqTqoz4YKE-GrOgBPjQPF-Jc.roa (raw, json)
Hash identifier: h8AOXPZVQiZrUUTBLUV6NlvKwck2UYiQjVoPPgvYyzE=
Subject key identifier: 45:72:12:A9:3A:A8:CF:86:0A:13:E1:AB:3A:00:4F:8D:03:C5:F8:97
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018ED239CBAF68343FD61B56AD55331406DA
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/RXISqTqoz4YKE-GrOgBPjQPF-Jc.roa
Signing time: Fri 12 Apr 2024 12:13:06 +0000
ROA not before: Fri 12 Apr 2024 12:13:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49418
IP address blocks: 2a0f:d480::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft
rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 12:38:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d2:39:cb:af:68:34:3f:d6:1b:56:ad:55:33:14:06:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Apr 12 12:13:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=457212a93aa8cf860a13e1ab3a004f8d03c5f897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0c:52:3d:bb:c2:d9:36:fe:59:21:64:c3:d6:
74:b6:40:85:cc:7d:22:fc:64:ea:6e:e1:1d:8c:16:
2e:93:3e:09:75:68:82:33:1b:48:4a:23:37:ad:45:
19:2b:03:ff:70:ea:f4:5f:8a:19:d9:9d:fb:f7:48:
62:c9:1b:11:fe:17:9f:0e:00:79:92:08:ed:4a:e9:
d9:75:9f:af:dd:12:ce:50:53:b9:5e:68:5a:c2:8f:
62:c9:1c:c1:2d:cc:81:d6:47:a0:ca:5d:30:51:78:
0d:d0:8c:f0:99:1d:79:8a:83:cf:fa:0f:b8:28:25:
10:d1:c7:39:36:37:79:bf:25:35:6a:c0:63:84:03:
d6:b3:76:ee:04:1d:a5:34:e9:ab:92:a7:da:bd:bf:
8e:ac:a1:d1:e2:2d:58:a5:43:78:ac:d1:fd:0f:df:
f6:0b:b6:3c:bd:ed:a2:aa:88:38:a7:5c:7d:1d:42:
aa:ea:86:62:12:d4:5f:75:91:44:28:e7:dc:18:bc:
fd:63:56:1b:1c:75:83:09:33:b4:d2:f4:4c:ef:b6:
59:16:04:c5:fe:82:ea:6c:fe:69:b5:46:5d:f0:32:
01:df:c3:91:b9:5b:9d:d0:df:ed:ad:98:17:6a:cd:
0b:6a:76:e2:f2:62:83:2e:4e:14:4a:f9:7a:e4:b6:
47:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:72:12:A9:3A:A8:CF:86:0A:13:E1:AB:3A:00:4F:8D:03:C5:F8:97
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/RXISqTqoz4YKE-GrOgBPjQPF-Jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:d480::/29
Signature Algorithm: sha256WithRSAEncryption
52:9a:bf:bf:ad:48:7e:08:2f:84:85:0b:0f:d7:48:5e:e8:50:
e0:c1:2a:04:6c:b0:54:07:49:0a:89:33:3c:9e:16:de:ea:56:
38:cf:15:b0:00:6a:94:84:30:7b:97:1c:6f:08:9c:47:1d:1c:
d5:16:50:f8:63:eb:aa:c9:9a:f9:34:69:86:99:e6:fc:2c:39:
30:f4:bc:7a:80:57:c8:35:17:15:00:af:8e:18:1e:8d:bf:0f:
7f:7d:73:96:16:60:e5:8a:82:e4:a7:f9:bf:9b:73:96:97:6d:
b0:4d:9e:3b:28:f8:83:33:19:c7:b2:6b:84:5f:98:40:cc:47:
79:48:75:c2:03:e0:d5:3b:f6:ed:61:74:c0:d8:f8:24:77:0d:
be:2e:00:d1:43:ea:c7:5d:1d:83:0a:2c:b9:a3:a2:80:2f:1a:
89:1b:de:e3:e0:dc:83:ac:c4:7b:58:8a:6f:26:8e:26:bc:2f:
36:59:13:4a:73:2d:26:15:d6:07:04:5a:3d:d0:60:75:4c:b8:
d1:df:f9:29:5b:79:3c:75:2d:ef:91:c2:da:0d:5f:ff:d1:17:
31:ac:df:1e:72:b8:39:20:19:0c:ed:00:22:0e:22:07:c9:58:
68:f7:a4:a2:20:b4:fa:f0:c7:55:bd:8f:59:60:a8:d5:c3:56:
0c:f3:9a:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 17:58:36 2024 by rpki-client on console-fra.rpki-client.org