Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/0V5rAwbHBDGgAfqt2QR69HCbrQY.roa
File: 0V5rAwbHBDGgAfqt2QR69HCbrQY.roa (raw, json)
Hash identifier: 2ODwhw4SnWbUaGU6yy67eVqtCthwJXjcOvaputmxbwE=
Subject key identifier: D1:5E:6B:03:06:C7:04:31:A0:01:FA:AD:D9:04:7A:F4:70:9B:AD:06
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018CCA2968862FAA233265680926D1F92810
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/0V5rAwbHBDGgAfqt2QR69HCbrQY.roa
Signing time: Tue 02 Jan 2024 12:32:40 +0000
ROA not before: Tue 02 Jan 2024 12:32:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211696
IP address blocks: 2a0e:8f02:f01f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 04:03:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:68:86:2f:aa:23:32:65:68:09:26:d1:f9:28:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 2 12:32:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d15e6b0306c70431a001faadd9047af4709bad06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e2:32:11:57:e3:a6:d6:ca:45:a0:32:50:2c:
c8:c2:c6:4d:28:37:02:0c:41:02:6b:76:bc:79:32:
6b:83:a6:9e:a2:9f:a9:10:b8:25:0e:2f:e3:21:a7:
b8:f6:d0:4a:81:ff:b1:1d:3d:04:ee:04:c3:a0:25:
b7:c3:26:b5:92:5f:a5:39:9a:1b:4b:91:83:75:9e:
40:47:92:02:2f:19:b2:5c:49:44:0d:49:39:53:05:
ed:86:57:2a:ca:a2:52:68:7d:c5:f2:9b:52:bf:96:
15:04:4f:b2:49:3b:3b:7c:f3:c2:c7:82:22:de:92:
f7:4a:eb:cc:8a:29:94:30:f1:5a:ac:8e:6a:c0:29:
3d:f9:dd:73:53:79:d4:dd:23:a2:96:f2:7c:cd:27:
a4:1d:ae:94:59:35:91:72:e4:f8:0c:a6:b4:4e:8b:
b3:2f:d9:ca:8b:77:21:49:82:bd:32:0b:42:e9:7a:
6a:d7:03:fc:61:2f:35:ea:c9:84:73:44:17:9e:cc:
91:b7:10:c7:e9:ed:f8:9d:94:bf:08:5e:bc:be:6d:
4a:5a:c6:06:32:4f:66:4a:a6:39:a8:d9:82:7a:70:
74:dd:21:84:e3:fc:be:1a:45:c6:f7:a5:a3:06:6c:
31:0d:cc:17:8b:ee:3c:ba:6b:3b:ad:04:68:96:29:
a7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:5E:6B:03:06:C7:04:31:A0:01:FA:AD:D9:04:7A:F4:70:9B:AD:06
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/0V5rAwbHBDGgAfqt2QR69HCbrQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f01f::/48
Signature Algorithm: sha256WithRSAEncryption
09:fb:51:1a:c5:53:37:a4:b8:3b:44:30:a4:7e:92:3f:1d:29:
5c:44:cf:b5:96:1d:99:54:80:42:82:2e:93:64:99:4d:ae:68:
ed:a6:11:f8:33:a1:bb:a5:19:92:e8:09:21:c5:b9:c4:89:d3:
ab:42:2a:54:e9:2e:bf:b4:e9:1c:8e:83:92:30:94:20:40:84:
b8:77:7e:7e:b4:2c:04:6e:d1:63:ff:bd:88:04:9d:9f:f4:06:
a7:f9:ed:46:eb:da:2b:43:1b:01:e7:b6:d4:50:da:34:2b:18:
80:af:cf:02:df:a2:d2:4f:8a:eb:6d:23:62:27:8d:d7:dd:f1:
e6:eb:82:de:6e:13:d0:e0:d0:d6:1c:57:71:ba:e2:6a:49:2b:
b8:f5:d9:3d:ee:09:c5:4b:b4:b1:fe:e5:c4:fc:b3:ad:63:86:
ab:5c:cc:30:55:5d:15:d0:1a:2f:5e:d2:8c:96:79:29:5d:30:
9b:9f:0e:31:60:76:92:a6:c6:fd:d2:a6:1b:0b:4d:96:5d:55:
b9:5b:b2:0e:a6:1f:da:fa:65:d7:c9:d0:68:57:0a:0e:7c:3b:
f4:64:81:e5:d2:a0:7f:fe:25:81:96:c1:0c:e6:0c:81:8d:25:
02:e3:f9:70:c8:2b:d8:a1:06:98:ab:59:46:e6:d0:88:91:37:
32:3b:43:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 13:34:37 2024 by rpki-client on console-ams.rpki-client.org