Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/JxRBY0OsA8KCxRkn5hNAmj67RRo.roa
File: JxRBY0OsA8KCxRkn5hNAmj67RRo.roa (raw, json)
Hash identifier: XI3X8FE1D+H0oJq/eaCFcDFXu+G10ad9pWldRPtimpk=
Subject key identifier: 27:14:41:63:43:AC:03:C2:82:C5:19:27:E6:13:40:9A:3E:BB:45:1A
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018CCA2965271CFBABEFEBF3A5EA184A722C
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/JxRBY0OsA8KCxRkn5hNAmj67RRo.roa
Signing time: Tue 02 Jan 2024 12:32:39 +0000
ROA not before: Tue 02 Jan 2024 12:32:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211414
IP address blocks: 2a0e:8f02:2140::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:65:27:1c:fb:ab:ef:eb:f3:a5:ea:18:4a:72:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 2 12:32:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2714416343ac03c282c51927e613409a3ebb451a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:af:24:8b:38:ac:11:e5:d7:5f:cc:1b:5f:e8:
43:71:76:5b:f3:ba:e2:dc:94:5f:4c:ce:e9:3b:42:
e9:32:5f:b3:a7:8d:8a:61:d1:f9:a1:7a:be:e6:52:
74:ee:36:96:73:64:6b:61:01:d7:eb:6f:10:cf:6a:
65:02:df:90:7b:b8:97:e8:7b:35:af:a1:b2:c1:37:
20:3c:2b:cb:98:e0:d6:d3:25:5f:94:eb:73:96:40:
ce:9c:d6:77:3c:d3:34:d2:e1:26:f7:d9:df:4f:10:
68:4f:ec:4a:cc:e7:f7:83:2a:df:13:56:16:7d:e1:
83:fe:2b:1f:32:a2:dc:ed:e8:a0:ba:6d:7e:4f:34:
c1:5f:48:d4:55:2e:12:1f:9e:dc:32:6b:e2:cb:d8:
cc:6f:27:31:ed:39:45:a0:a9:c6:17:cc:09:dc:64:
0e:b3:75:75:41:c6:b4:bf:de:b1:a4:14:a2:56:3e:
da:db:b6:fd:b8:9e:ab:de:53:43:cb:4c:1f:3f:af:
8c:aa:d0:2d:94:a8:57:b3:69:1b:8a:04:18:4f:ca:
a4:a3:93:e4:5d:a5:f7:df:09:60:f9:ee:a9:d3:e1:
4a:55:81:71:37:3b:34:ca:dc:75:62:c5:86:91:47:
dd:63:56:3b:09:55:d1:43:1c:62:95:e7:0b:54:d0:
c9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:14:41:63:43:AC:03:C2:82:C5:19:27:E6:13:40:9A:3E:BB:45:1A
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/JxRBY0OsA8KCxRkn5hNAmj67RRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2140::/44
Signature Algorithm: sha256WithRSAEncryption
43:29:f2:f3:3c:e7:7f:d8:1e:52:87:7b:bc:77:a1:fe:cf:9c:
a6:e4:93:79:1d:85:6b:d9:48:40:a3:4d:a2:ed:23:ab:8d:73:
e8:1d:ad:5d:c4:d1:cb:18:37:1d:ca:a7:34:33:d2:46:29:14:
f4:c5:15:6b:fb:f4:f0:be:aa:79:f4:b1:98:0a:2c:98:0f:fa:
ee:0a:96:d9:c8:e2:24:dc:0c:5f:7d:17:5d:f9:8d:59:9c:91:
66:87:e0:ec:4d:56:7a:4a:16:68:d4:2a:06:87:3e:6a:1a:b7:
7e:ac:26:a6:6f:af:01:e1:5f:5a:c2:d0:1f:d3:52:a6:5a:5e:
37:14:dd:04:53:e6:e0:33:1c:d5:b2:e8:63:10:c5:87:02:86:
1b:c6:68:fb:1d:55:b0:fd:6b:11:40:4f:b5:f9:e7:91:3b:a9:
74:f2:43:71:92:e5:c3:eb:75:02:ef:b9:1e:73:0d:bf:2f:97:
68:38:d3:b2:b2:40:39:f3:2c:63:06:c5:79:f9:c5:88:60:30:
56:b0:48:a1:7e:04:9a:87:98:6d:7d:c6:83:27:d8:23:aa:53:
8d:24:9b:47:4c:b0:b0:e4:e6:09:5f:33:b4:ba:fc:32:5f:56:
10:6d:93:22:ef:45:df:a1:5c:bb:bc:26:d2:0a:4e:a5:85:4a:
8c:56:7d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 16:55:18 2024 by rpki-client on console-ams.rpki-client.org