Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/slTX0UuNcxfOoww5b2IkjDFBUxo.roa
File: slTX0UuNcxfOoww5b2IkjDFBUxo.roa (raw, json)
Hash identifier: SY7St88cUAPrlqdNVDXXqO7aC8jPRr+lGB8jubFBbFg=
Subject key identifier: B2:54:D7:D1:4B:8D:73:17:CE:A3:0C:39:6F:62:24:8C:31:41:53:1A
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018CCA2956C1AEC07B69087BDFC6CAC9E181
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/slTX0UuNcxfOoww5b2IkjDFBUxo.roa
Signing time: Tue 02 Jan 2024 12:32:35 +0000
ROA not before: Tue 02 Jan 2024 12:32:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198275
IP address blocks: 2a0e:8f02:2240::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:56:c1:ae:c0:7b:69:08:7b:df:c6:ca:c9:e1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 2 12:32:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b254d7d14b8d7317cea30c396f62248c3141531a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:04:f9:83:d7:cc:b7:dc:8d:f2:ad:dd:ee:9b:
41:0e:c7:77:b8:61:5f:04:1d:8a:1b:3e:76:dc:46:
40:9c:09:da:9b:4f:a0:fd:23:44:66:41:72:d5:27:
33:25:3b:d0:ed:95:2d:fe:fa:2c:4b:59:0d:50:b3:
11:1a:ea:d2:76:a1:77:22:09:d3:9f:a8:53:63:d4:
91:e2:07:16:c0:3c:01:74:de:74:36:8c:3d:64:92:
96:eb:a5:ca:22:6a:52:41:df:49:b3:49:dc:a3:c0:
2b:55:dd:55:08:55:cf:9d:d4:30:8d:62:e4:84:9c:
d6:35:78:8c:64:a2:31:5c:2f:ef:34:9b:c2:6b:49:
77:e3:3e:48:a6:95:3b:b2:1a:ff:dc:f8:1d:77:df:
83:d5:20:23:21:53:2c:8f:a4:c5:bb:0f:af:d9:89:
cf:75:7e:2a:b8:7d:70:ac:45:ac:73:11:aa:3f:40:
fe:3a:27:63:63:74:ea:d3:f6:40:38:b1:c8:a8:ee:
74:b1:69:3e:a9:49:f6:03:a5:a5:ec:e9:43:11:f5:
fb:97:05:84:c1:1b:6d:9a:60:ef:7a:c2:b6:79:a7:
b8:3b:61:57:ef:54:68:45:5e:00:94:fd:e8:d2:9d:
40:ab:54:89:8c:2f:ad:1a:c8:29:30:eb:1e:6d:0d:
cb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:54:D7:D1:4B:8D:73:17:CE:A3:0C:39:6F:62:24:8C:31:41:53:1A
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/slTX0UuNcxfOoww5b2IkjDFBUxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2240::/44
Signature Algorithm: sha256WithRSAEncryption
5a:34:0c:0a:46:ff:f4:59:6c:78:61:e4:1f:d7:d3:dd:e8:73:
18:4d:f4:e7:b5:e8:60:94:ee:a8:24:c5:5d:f0:04:e2:b6:ef:
ae:25:5f:16:74:17:cf:56:a5:e0:2b:ae:5a:98:94:fd:a8:93:
84:3a:4e:e4:8a:61:54:a6:0f:d9:60:f2:a6:9d:c4:c9:45:62:
df:93:e5:3a:7c:bf:04:7e:e2:53:e3:89:64:b0:c2:42:5f:5b:
7f:ef:85:1e:ff:23:ba:52:b4:ae:7a:68:60:74:63:42:c3:7b:
12:f8:aa:4a:5b:29:fc:5b:61:98:94:c7:d2:9e:00:4f:05:bf:
9c:eb:2a:59:3a:ab:2b:ca:f1:d2:9c:f3:e9:dd:82:93:06:b8:
c2:1a:f8:dd:8d:a5:d5:cf:17:d2:37:8b:48:7d:8a:36:2f:4b:
5f:0b:2f:54:a9:7e:ee:54:a4:b8:78:26:ff:b8:03:2f:95:7d:
3f:ae:8d:d8:8a:53:37:f7:20:42:06:bb:15:09:d6:31:0e:90:
55:d3:d7:fe:93:1e:7d:a4:fb:8d:c9:3c:f0:e5:63:38:7e:d3:
00:1f:cd:c6:0e:67:f3:ab:27:0b:df:a2:c6:c2:dc:61:e2:36:
8b:46:d6:1e:18:0c:3f:80:35:5e:d3:c7:f2:69:b8:6c:34:23:
45:46:fb:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 23:17:50 2024 by rpki-client on console-ams.rpki-client.org