Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/e16361-9030-4b52-806d-b3cec9d10611/1/A2VCepwS6QjlURI4CoEJ3b6rUYY.roa
File: A2VCepwS6QjlURI4CoEJ3b6rUYY.roa (raw, json)
Hash identifier: HY46ZmOTRPyDPxWp/aE8yepyzS9Dd83zC3fHytSEbfo=
Subject key identifier: 03:65:42:7A:9C:12:E9:08:E5:51:12:38:0A:81:09:DD:BE:AB:51:86
Certificate issuer: /CN=8e9f898cf75daf6800093f2567aaf72aa986e29c
Certificate serial: 0194266B6B0C3B5C37667B148848F7BDCA80
Authority key identifier: 8E:9F:89:8C:F7:5D:AF:68:00:09:3F:25:67:AA:F7:2A:A9:86:E2:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jp-JjPddr2gACT8lZ6r3KqmG4pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/e16361-9030-4b52-806d-b3cec9d10611/1/A2VCepwS6QjlURI4CoEJ3b6rUYY.roa
Signing time: Thu 02 Jan 2025 09:49:21 +0000
ROA not before: Thu 02 Jan 2025 09:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50572
IP address blocks: 2001:67c:2834::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/e16361-9030-4b52-806d-b3cec9d10611/1/jp-JjPddr2gACT8lZ6r3KqmG4pw.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/e16361-9030-4b52-806d-b3cec9d10611/1/jp-JjPddr2gACT8lZ6r3KqmG4pw.mft
rsync://rpki.ripe.net/repository/DEFAULT/jp-JjPddr2gACT8lZ6r3KqmG4pw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:6b:0c:3b:5c:37:66:7b:14:88:48:f7:bd:ca:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e9f898cf75daf6800093f2567aaf72aa986e29c
Validity
Not Before: Jan 2 09:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0365427a9c12e908e55112380a8109ddbeab5186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c2:94:72:f3:40:50:ab:a9:4f:8a:7a:29:ef:
97:c9:69:b7:7c:0e:f7:a5:9b:dd:9d:79:7a:d8:44:
a6:cb:de:4f:f1:e6:1d:bf:17:b8:cf:08:ef:19:73:
98:de:35:66:cd:89:4c:0c:6b:89:3d:b1:a3:8e:35:
5b:c6:3d:6a:0d:04:03:24:70:89:1d:82:bf:1c:e2:
f8:15:5b:c3:69:91:74:12:cb:3a:75:93:6e:1b:4d:
16:db:b0:e6:3b:f9:19:38:5c:30:81:c4:1b:5e:92:
39:b7:5a:8c:21:77:c4:99:61:7a:ab:d5:90:ac:34:
0d:19:ed:0a:eb:9e:02:3c:8d:a7:75:80:88:88:01:
68:62:fa:6f:12:fe:5f:18:65:58:c1:75:73:75:9f:
9a:05:77:e8:6f:7a:2b:3e:a1:c2:46:d1:3a:5d:84:
61:4e:12:9c:0b:a4:d6:f0:2f:77:fa:e1:9b:9a:45:
66:48:25:5d:7e:73:93:b3:d7:64:f6:61:2b:6b:56:
a2:39:0e:09:db:79:00:42:39:29:c5:e6:1b:9d:37:
17:0f:83:4f:c9:52:1b:bd:42:f4:05:1b:b5:a5:79:
23:1a:2e:c8:b6:68:a9:29:bd:73:b9:92:c2:4a:42:
2c:55:1a:87:c4:b2:5a:f7:35:52:a4:e9:0a:7d:e6:
ef:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:65:42:7A:9C:12:E9:08:E5:51:12:38:0A:81:09:DD:BE:AB:51:86
X509v3 Authority Key Identifier:
keyid:8E:9F:89:8C:F7:5D:AF:68:00:09:3F:25:67:AA:F7:2A:A9:86:E2:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jp-JjPddr2gACT8lZ6r3KqmG4pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e16361-9030-4b52-806d-b3cec9d10611/1/A2VCepwS6QjlURI4CoEJ3b6rUYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e16361-9030-4b52-806d-b3cec9d10611/1/jp-JjPddr2gACT8lZ6r3KqmG4pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2834::/48
Signature Algorithm: sha256WithRSAEncryption
41:99:d2:5f:6c:d9:b2:01:5a:d1:e4:e0:af:f7:ee:83:dd:6b:
20:59:af:ce:19:5b:16:3c:ec:c4:3e:24:5a:5d:d1:21:c7:f3:
a1:1b:8d:f3:09:fa:57:34:40:99:a7:36:69:c8:55:e1:6e:36:
9f:9c:8c:9c:ff:40:b4:99:7d:d0:55:20:6a:35:ea:e5:0b:6b:
46:21:ee:1b:7f:65:fe:2c:9c:e3:f3:7b:46:f7:47:83:dc:03:
7a:cd:a8:63:4f:93:6d:f4:bc:f7:f1:10:10:7b:2e:cb:35:b2:
e4:1d:9f:dd:80:ce:72:8b:43:8f:6d:05:55:2c:b5:28:db:7c:
a7:98:f9:c4:26:dc:7e:47:0d:5f:77:25:5f:8c:7a:9a:dd:d7:
ab:1f:d5:25:36:13:11:73:ee:1e:83:e1:19:3a:8d:ce:b4:40:
27:d0:8c:39:3c:d8:9e:0a:4f:72:2f:85:32:fe:18:64:f7:61:
88:67:df:d8:25:c3:3b:b5:5f:4a:11:ae:23:31:8f:70:04:66:
50:8e:c6:80:37:70:8b:98:49:fd:65:38:83:cf:f9:57:01:34:
ae:ca:21:a3:13:bb:bb:2e:00:f6:01:8f:6a:75:76:16:06:9f:
8f:16:bc:9a:ca:d1:c2:07:83:9e:7b:4d:7e:2a:58:b8:06:0c:
13:b6:2b:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:46:39 2025 by rpki-client