Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/8OWSCjwRmWT6vcVWtVGyQBqocAM.roa
File: 8OWSCjwRmWT6vcVWtVGyQBqocAM.roa (raw, json)
Hash identifier: joC736s+wpMz15b1kxRLyMQnwr1+mfNie349lKRDjuI=
Subject key identifier: F0:E5:92:0A:3C:11:99:64:FA:BD:C5:56:B5:51:B2:40:1A:A8:70:03
Certificate issuer: /CN=d515f2e9149ce1b428c8f1edfc009215e2847f55
Certificate serial: 01915ECA505B00FA04F43B607E2FC85FEC76
Authority key identifier: D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/8OWSCjwRmWT6vcVWtVGyQBqocAM.roa
Signing time: Sat 17 Aug 2024 05:23:22 +0000
ROA not before: Sat 17 Aug 2024 05:23:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a01:ea00:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Oct 2024 14:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5e:ca:50:5b:00:fa:04:f4:3b:60:7e:2f:c8:5f:ec:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d515f2e9149ce1b428c8f1edfc009215e2847f55
Validity
Not Before: Aug 17 05:23:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0e5920a3c119964fabdc556b551b2401aa87003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7b:4b:61:ba:26:5a:bc:62:c0:be:da:3f:30:
48:b6:35:cd:18:f8:b1:9a:9b:16:38:c3:6f:ff:41:
a6:74:aa:18:49:e3:77:d5:44:98:a5:bc:8d:62:54:
c0:96:5e:a4:5e:f6:4d:a3:50:99:80:d9:ae:c3:e5:
c8:1b:ff:63:82:26:6a:94:a1:b7:fe:d5:dc:5a:2e:
f1:21:53:3b:38:14:54:a4:18:41:21:9e:a6:ce:b9:
cc:47:a7:30:ba:c2:1f:e5:6b:3f:ab:d9:b2:2a:55:
7a:38:25:bf:05:34:77:f7:4a:4b:b1:1c:cb:fa:7a:
26:8c:d2:22:e7:af:40:69:e4:42:ad:b6:87:ba:f3:
98:98:b6:9a:f3:95:7d:51:ac:13:0d:71:35:a9:13:
89:78:68:46:11:9d:3c:e6:d4:4c:65:9a:af:47:ba:
55:d5:3e:b7:b2:47:38:99:08:91:a4:6d:1b:28:bc:
b5:ec:ba:97:28:8c:3f:b4:39:62:90:48:8d:f6:45:
84:8a:e0:55:74:5d:cc:57:fa:a1:72:be:5d:6d:9d:
e0:52:30:18:e9:11:94:b7:64:09:fa:af:ab:23:e0:
9a:e8:7e:f2:bd:d0:a8:69:cf:b0:07:7e:25:e8:31:
de:bc:43:49:52:84:8a:d5:e2:c5:79:92:4f:80:cc:
17:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E5:92:0A:3C:11:99:64:FA:BD:C5:56:B5:51:B2:40:1A:A8:70:03
X509v3 Authority Key Identifier:
keyid:D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/8OWSCjwRmWT6vcVWtVGyQBqocAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ea00:1::/48
Signature Algorithm: sha256WithRSAEncryption
76:29:ac:b0:dc:24:68:fa:cb:82:69:e0:c5:3b:10:11:6c:09:
8f:45:ef:24:11:6a:4b:47:0a:5b:d5:fd:88:74:7a:14:44:e9:
40:99:b7:ae:98:94:9b:f5:8c:3c:6c:26:e9:f4:53:3c:57:9d:
3b:d9:0e:f3:d4:11:1e:d0:ad:7d:1f:77:2a:ef:84:46:67:96:
55:7c:04:a7:13:ac:3f:03:99:ea:f2:85:35:46:bd:c4:0a:40:
a4:e8:77:43:34:b0:1b:be:7a:ef:5c:61:d3:73:14:a7:90:4b:
0b:82:11:37:f4:06:8f:97:b5:e5:ff:ff:ad:ca:ce:19:da:37:
2c:5e:8e:3b:b4:ff:2a:0b:ac:e6:e7:6b:90:3a:74:0c:87:cf:
17:a5:b1:11:2a:c6:f6:69:67:29:ff:4f:9e:3d:83:82:08:43:
79:2b:31:61:fd:91:70:60:c3:11:dc:c2:6b:ae:0a:c3:3f:d3:
b9:1c:80:83:db:1c:de:25:6a:3b:47:16:f4:03:f8:79:cd:d5:
f1:d7:41:66:3d:8c:9a:b4:f6:76:b7:19:e3:b4:c3:06:29:48:
15:4e:8f:76:7f:38:d7:26:94:7b:92:e4:37:cf:17:b4:ab:c8:
50:2d:0f:86:ef:a4:8d:b6:bd:42:f0:ea:e7:b4:6a:89:e0:44:
b9:93:fa:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 22:54:46 2024 by rpki-client on console-ams.rpki-client.org