Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ASyu6a6TpTG5HUR4uwZARJmsi4E.roa
File: ASyu6a6TpTG5HUR4uwZARJmsi4E.roa (raw, json)
Hash identifier: y1G77NmvFnW4KwLqtqoVy5tKRxstK179nci15hnHEx0=
Subject key identifier: 01:2C:AE:E9:AE:93:A5:31:B9:1D:44:78:BB:06:40:44:99:AC:8B:81
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 018CC94E09B4E55CF618EA5F6EACC9080B39
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ASyu6a6TpTG5HUR4uwZARJmsi4E.roa
Signing time: Tue 02 Jan 2024 08:33:03 +0000
ROA not before: Tue 02 Jan 2024 08:33:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209314
IP address blocks: 148.81.12.0/24 maxlen: 24
148.81.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:09:b4:e5:5c:f6:18:ea:5f:6e:ac:c9:08:0b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 2 08:33:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=012caee9ae93a531b91d4478bb06404499ac8b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6b:6c:f9:5f:f5:97:9c:6b:e1:71:ee:76:c7:
cc:80:36:3b:bd:b5:36:eb:7e:7c:cd:24:ad:fc:22:
1c:78:28:c4:31:5b:e2:c6:69:32:b9:08:28:4a:26:
c2:fa:29:8e:74:2a:76:67:e5:35:77:ec:9d:d2:1b:
33:2e:f9:79:b5:80:b7:a9:4a:55:d5:df:c9:a7:04:
ae:99:bd:3d:75:b9:11:a0:ab:4a:74:d1:29:ad:9e:
63:43:ef:d5:5c:eb:92:0d:eb:ba:ca:68:2f:e9:6f:
24:a4:37:93:8a:74:61:78:12:04:74:aa:77:69:3c:
e2:a0:d6:f8:60:14:2a:b2:34:fa:4a:8b:d3:52:e5:
3b:9e:a4:45:a3:4e:ab:55:d8:01:c9:7b:d3:ea:d4:
0c:05:0e:61:d5:42:38:07:3b:73:3c:9a:06:86:46:
44:c0:23:2f:2b:f9:bd:50:0d:b8:e7:b6:6a:19:71:
a5:c7:e1:c4:58:77:7c:cf:5e:5e:3a:a3:9d:95:b6:
94:06:15:36:40:a6:01:7f:24:67:41:4c:48:01:9d:
40:fa:63:70:54:2d:45:3f:93:b7:26:8a:93:42:4a:
51:e9:b4:48:e9:d4:ff:27:73:1c:92:7e:b3:d4:28:
9d:7d:a9:65:7e:5f:2e:dd:2f:88:23:9b:d8:55:72:
a9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2C:AE:E9:AE:93:A5:31:B9:1D:44:78:BB:06:40:44:99:AC:8B:81
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ASyu6a6TpTG5HUR4uwZARJmsi4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.81.11.0-148.81.12.255
Signature Algorithm: sha256WithRSAEncryption
06:78:94:7e:47:c1:32:c9:38:88:62:39:fe:be:1e:f2:4d:9b:
e8:b5:f9:39:0e:81:c2:2d:1a:70:fa:7e:f1:79:42:74:2c:aa:
06:3c:61:67:b8:2b:79:6d:91:a0:db:d7:d8:80:1f:3a:fb:4b:
59:a1:7d:7a:6b:2c:1c:52:88:f9:1d:31:86:cf:ec:47:0a:5b:
fe:de:ae:92:da:df:46:cc:97:86:15:ed:15:d7:cb:9d:0e:03:
e9:90:c6:ce:50:47:5a:53:7e:49:84:a1:fd:a1:be:6f:3c:e7:
7f:6a:93:0c:5d:41:bc:79:bf:08:ff:89:3c:88:c1:33:d2:6b:
a9:6c:b4:7b:45:91:95:13:ed:9c:18:71:20:cb:f7:77:f8:4e:
dd:b3:fd:b0:8b:cc:7f:71:c2:8a:4b:e8:a6:8e:c6:d8:7e:79:
98:d8:a8:b4:58:86:ea:2f:f4:5a:5e:a1:ac:62:a9:b8:f9:ca:
ad:c4:e3:b0:51:88:fd:49:06:1f:c5:82:1f:a3:a1:c0:90:2d:
9c:a4:2f:d8:a6:d2:6a:4f:23:0b:00:4b:24:92:7f:2a:34:6b:
57:14:58:7b:0f:af:83:bd:d2:05:59:60:ff:56:d5:bc:18:09:
6a:c7:06:70:c3:77:95:9d:58:26:30:89:1f:c9:62:15:8d:5e:
22:2d:c9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:27:38 2024 by rpki-client on console-ams.rpki-client.org