Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/eFtSwwtnTl7b9alX_8ZYSt2PTTs.roa
File: eFtSwwtnTl7b9alX_8ZYSt2PTTs.roa (raw, json)
Hash identifier: 9HYs8rxJ+j9PKqDnMKhBF5+z9Cun5pSGlLuC0TSP20o=
Subject key identifier: 78:5B:52:C3:0B:67:4E:5E:DB:F5:A9:57:FF:C6:58:4A:DD:8F:4D:3B
Certificate issuer: /CN=f1003d2c71ab076991fb03ed6600bf1d48b72be5
Certificate serial: 018CC86EF2EF39F6643B371A0CC3D5DD74BA
Authority key identifier: F1:00:3D:2C:71:AB:07:69:91:FB:03:ED:66:00:BF:1D:48:B7:2B:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8QA9LHGrB2mR-wPtZgC_HUi3K-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/eFtSwwtnTl7b9alX_8ZYSt2PTTs.roa
Signing time: Tue 02 Jan 2024 04:29:23 +0000
ROA not before: Tue 02 Jan 2024 04:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56951
IP address blocks: 2001:678:fd4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/8QA9LHGrB2mR-wPtZgC_HUi3K-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/8QA9LHGrB2mR-wPtZgC_HUi3K-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/8QA9LHGrB2mR-wPtZgC_HUi3K-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6e:f2:ef:39:f6:64:3b:37:1a:0c:c3:d5:dd:74:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1003d2c71ab076991fb03ed6600bf1d48b72be5
Validity
Not Before: Jan 2 04:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=785b52c30b674e5edbf5a957ffc6584add8f4d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:99:ba:fc:c6:49:92:aa:86:13:47:5f:0e:4c:
9b:74:88:d2:26:54:07:3c:1a:b4:c9:b4:61:5e:2c:
9b:7a:b4:db:2d:ff:bd:0e:76:6a:9d:9a:71:11:ea:
d7:d9:a1:c8:5b:62:10:b8:3a:ac:90:fe:07:d9:91:
49:be:b1:8d:b8:f9:4d:3d:66:ca:c6:14:ed:f0:01:
29:48:b4:5e:2a:08:6b:dd:36:ca:99:36:3c:80:52:
3b:12:e1:a2:46:75:8c:a8:2e:95:43:65:db:35:ac:
60:b6:c4:c6:4c:d8:7c:a7:0c:6e:f5:8c:88:e2:cb:
99:68:fb:23:78:76:2b:eb:fb:e8:ee:6d:86:5f:ff:
52:f2:2d:94:1a:a4:a1:79:d7:16:65:b8:33:79:62:
5f:2d:8f:6e:cd:3a:70:90:3d:33:43:e5:1c:d2:15:
44:20:6b:cc:0e:b6:16:ab:07:81:54:39:2a:60:c9:
6b:4f:0d:52:5e:e4:6f:7d:5d:4b:39:82:55:1c:5d:
fa:28:1f:ac:d2:a3:aa:2d:e3:9b:49:fd:06:18:28:
43:1b:67:4a:65:c3:a5:4e:2d:be:7d:2c:d5:d4:43:
43:43:dd:12:3d:09:b9:2b:5d:21:b9:e4:f0:39:66:
ce:af:10:a8:96:33:bd:0e:d4:a8:0b:4a:3f:c5:ba:
cb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:5B:52:C3:0B:67:4E:5E:DB:F5:A9:57:FF:C6:58:4A:DD:8F:4D:3B
X509v3 Authority Key Identifier:
keyid:F1:00:3D:2C:71:AB:07:69:91:FB:03:ED:66:00:BF:1D:48:B7:2B:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8QA9LHGrB2mR-wPtZgC_HUi3K-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/eFtSwwtnTl7b9alX_8ZYSt2PTTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/8QA9LHGrB2mR-wPtZgC_HUi3K-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:fd4::/48
Signature Algorithm: sha256WithRSAEncryption
62:f6:bc:d0:91:c4:52:79:74:b6:77:4f:16:88:0c:ed:f5:12:
0d:7a:ca:a5:f5:69:b5:29:67:b9:63:db:00:15:7e:9b:fc:72:
94:73:e7:d9:42:c5:af:de:24:2b:f6:22:26:42:3b:e7:f5:55:
0d:d6:ee:50:a3:47:f0:4e:51:fd:3e:0f:b0:ce:e6:5b:2d:1c:
c7:c6:ca:8a:49:9f:d0:50:40:fd:af:fb:bc:e0:51:db:3e:2a:
05:f2:08:da:d4:57:6d:01:d9:bd:1a:a0:0c:a8:22:bd:9e:f7:
0b:d1:d6:ac:f8:5c:e0:b5:1f:3e:35:9e:8f:e3:1b:13:8a:d2:
9e:92:4a:a5:ec:54:45:26:73:a7:93:b6:10:88:d5:73:ad:03:
46:ed:20:6e:6e:35:3e:eb:2e:19:c8:fc:53:06:f6:3c:07:42:
19:2a:15:51:ff:d4:ed:67:e1:f3:bd:6e:e6:19:6c:49:10:50:
65:af:01:89:81:70:d8:22:f1:2a:6d:cb:8b:a8:6d:54:eb:49:
4c:b9:bd:a9:d8:05:d5:6c:c6:71:d6:2f:00:33:35:52:d8:35:
7a:7c:72:7c:e7:4c:83:0b:6d:12:b4:09:3b:8c:68:d8:d9:9b:
c5:d0:f7:84:9d:51:99:38:f5:ee:48:08:b2:ba:6a:77:5c:5a:
dd:f3:dc:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:05:24 2024 by rpki-client on console-fra.rpki-client.org