Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/skpute8fJQToweA-nCsYUxwsVeA.roa
File: skpute8fJQToweA-nCsYUxwsVeA.roa (raw, json)
Hash identifier: 6qSD+1g+XCGSYWl7qOuxOawOs8/5ZH4Ptq+v2lHzW2M=
Subject key identifier: B2:4A:6E:B5:EF:1F:25:04:E8:C1:E0:3E:9C:2B:18:53:1C:2C:55:E0
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018D275A641D0F6AB6E8315B2DD58ADC2FE3
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/skpute8fJQToweA-nCsYUxwsVeA.roa
Signing time: Sat 20 Jan 2024 14:50:51 +0000
ROA not before: Sat 20 Jan 2024 14:50:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211330
IP address blocks: 2a0d:6f80:2a41::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:27:5a:64:1d:0f:6a:b6:e8:31:5b:2d:d5:8a:dc:2f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 20 14:50:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b24a6eb5ef1f2504e8c1e03e9c2b18531c2c55e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e8:af:c1:dd:fc:30:a3:88:fc:38:1c:ad:75:
43:aa:33:35:47:1d:01:2b:b4:d6:32:cb:75:ac:2f:
8c:0a:4c:52:1e:36:98:cb:67:d2:79:58:e7:c2:09:
9e:d3:5a:ef:60:c9:65:47:31:91:a4:59:64:7e:7f:
40:e1:22:d5:ba:63:c7:b8:dc:cd:50:33:46:81:fd:
1e:5d:5b:1e:59:c6:a7:c4:ab:b8:ef:b6:e3:8e:fb:
e2:09:b0:45:c8:1e:ab:4e:ff:31:c5:12:73:86:70:
bc:c6:19:f1:63:59:52:e9:64:bc:82:a0:9a:e9:8e:
05:ba:02:ea:5e:1a:5a:ed:30:ea:20:15:5a:1e:04:
ee:6a:73:b3:b1:d4:8e:7a:7a:15:b7:79:4d:b8:ff:
6a:52:f4:56:e2:70:c0:ef:6f:5d:51:83:49:61:bf:
8a:be:ad:ad:d9:da:c9:7a:2b:52:32:bb:66:ce:6c:
9f:71:2a:aa:ed:5a:b0:63:c7:09:78:f9:fe:f8:73:
d3:ed:0f:05:d0:4d:b9:06:13:4d:70:61:57:21:48:
d1:a4:4b:28:67:8b:15:73:90:3a:d1:4b:b7:f5:e1:
30:e0:8e:8c:32:f8:f9:d4:c1:f9:28:61:37:02:9a:
9a:53:c3:80:a9:b0:16:d1:5d:57:2d:b9:88:7f:a8:
bb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:4A:6E:B5:EF:1F:25:04:E8:C1:E0:3E:9C:2B:18:53:1C:2C:55:E0
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/skpute8fJQToweA-nCsYUxwsVeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:6f80:2a41::/48
Signature Algorithm: sha256WithRSAEncryption
3b:9e:e5:26:cb:de:56:51:d7:64:37:f0:a2:c6:c7:2d:01:2e:
a2:d1:fd:b3:f0:55:57:53:7a:df:10:24:04:fc:6b:59:18:47:
86:59:43:94:d1:36:9d:41:38:f9:13:6c:3a:f9:6f:5a:e4:fd:
53:e3:db:e5:0e:6d:f8:1e:4d:1b:00:df:cd:1f:86:78:91:c8:
b1:b6:12:ac:6a:48:4c:15:90:6a:8b:36:50:19:67:2d:51:37:
59:7b:7a:44:f8:7a:11:b4:9a:4a:1e:5d:ba:1a:df:16:53:39:
b1:94:9a:a5:cb:0c:3a:8d:a5:97:37:5e:6f:8a:b8:82:0a:95:
35:23:fb:e8:89:0c:58:90:e7:55:6a:ce:f6:f3:3d:5f:64:16:
df:19:cc:08:d8:b5:98:73:31:99:57:c4:89:c6:be:c0:ac:c3:
f9:1f:af:62:26:d7:10:10:81:a0:0d:4c:c1:cb:b8:57:0f:d2:
8c:d3:16:6f:d5:96:0c:af:fb:f8:b8:1e:e0:ca:42:9d:c5:b3:
87:fd:e2:59:b6:8c:b6:c1:0b:54:81:e9:ea:6f:d7:c5:7b:fa:
67:3b:f3:ef:3f:54:97:49:6e:04:26:08:0c:a2:94:71:08:8d:
6e:1d:0f:fb:ee:5b:5e:c4:a2:fb:b2:56:ae:d1:b8:2b:43:a1:
e4:57:97:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:24:58 2024 by rpki-client on console-ams.rpki-client.org