Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/jBv_gsyflODtiMxCJW_SXGYHLLE.roa
File: jBv_gsyflODtiMxCJW_SXGYHLLE.roa (raw, json)
Hash identifier: tU2RDo2pLHZK/3P7FJvKX5KE5cMn1L5KzCA3L+jaJ2U=
Subject key identifier: 8C:1B:FF:82:CC:9F:94:E0:ED:88:CC:42:25:6F:D2:5C:66:07:2C:B1
Certificate issuer: /CN=ca3348abf173d2774c8942008cadf6d6012a3d52
Certificate serial: 01926737E398BA22EAA683C7E56624D88ECC
Authority key identifier: CA:33:48:AB:F1:73:D2:77:4C:89:42:00:8C:AD:F6:D6:01:2A:3D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIq_Fz0ndMiUIAjK321gEqPVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/jBv_gsyflODtiMxCJW_SXGYHLLE.roa
Signing time: Mon 07 Oct 2024 13:42:48 +0000
ROA not before: Mon 07 Oct 2024 13:42:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216417
IP address blocks: 2a04:5040:6001::/48 maxlen: 48
2a04:5040:6002::/48 maxlen: 48
2a04:5040:6003::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/yjNIq_Fz0ndMiUIAjK321gEqPVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/yjNIq_Fz0ndMiUIAjK321gEqPVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjNIq_Fz0ndMiUIAjK321gEqPVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:67:37:e3:98:ba:22:ea:a6:83:c7:e5:66:24:d8:8e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3348abf173d2774c8942008cadf6d6012a3d52
Validity
Not Before: Oct 7 13:42:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c1bff82cc9f94e0ed88cc42256fd25c66072cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b8:e5:57:47:ff:33:8c:8c:9a:9a:13:d3:9e:
99:47:37:f4:3e:ec:df:91:dd:82:e4:61:76:93:cc:
b4:04:67:75:03:5b:7e:9e:99:74:97:e0:5c:37:ff:
e6:7e:e1:0f:1d:7d:cc:a8:4d:eb:fa:06:6a:17:fa:
12:de:10:9f:c1:51:e5:25:b6:70:ea:a2:b3:6d:00:
51:a2:9a:18:dd:5e:c4:17:e1:52:f4:8a:1c:25:66:
56:97:b5:5a:fc:df:e2:a9:ff:7b:64:fe:c3:7a:1b:
24:69:a9:65:4c:6d:ef:d0:e0:b6:87:6e:7d:d4:82:
fc:b6:96:d7:58:2e:f0:93:90:a8:24:3a:f5:85:25:
e5:b3:c0:28:96:1d:7c:1b:c3:c5:76:8f:8e:b6:98:
32:23:ff:04:fd:6a:6b:43:1d:73:d6:66:e3:92:68:
5b:a0:f1:97:76:e4:a7:14:94:c3:80:d4:c2:89:12:
94:40:4c:7f:d6:42:0f:9f:c7:03:6f:76:c3:d1:b8:
34:07:7b:f0:75:b2:de:3e:82:77:73:6c:9a:86:d4:
50:0a:f2:c9:0a:39:a4:01:0d:ae:a3:5d:a2:c5:60:
5e:05:43:de:e4:7e:ed:67:79:43:0a:df:29:30:36:
42:5b:eb:56:e7:70:56:86:f4:ec:ff:ec:e5:4d:db:
02:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:1B:FF:82:CC:9F:94:E0:ED:88:CC:42:25:6F:D2:5C:66:07:2C:B1
X509v3 Authority Key Identifier:
keyid:CA:33:48:AB:F1:73:D2:77:4C:89:42:00:8C:AD:F6:D6:01:2A:3D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIq_Fz0ndMiUIAjK321gEqPVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/jBv_gsyflODtiMxCJW_SXGYHLLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/yjNIq_Fz0ndMiUIAjK321gEqPVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5040:6001::-2a04:5040:6003:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a4:e4:2c:56:79:83:e1:46:fa:66:3c:29:29:28:08:c7:4c:53:
6a:20:59:3c:de:fc:9e:b9:20:a3:3d:69:0e:1f:dd:40:1a:8b:
3b:7b:33:52:5e:2b:b3:e6:b7:e7:86:3e:bb:c7:58:ba:5d:37:
03:dd:15:2b:7d:25:10:17:1f:7d:c0:98:bc:c7:45:d7:96:d3:
9d:e3:83:24:32:ee:9e:df:da:84:92:e9:80:d3:5b:49:06:c7:
e6:75:c8:95:8d:c5:c1:97:07:51:13:11:34:14:7e:a5:64:fd:
4e:8e:44:8d:71:74:93:23:e5:48:4b:53:b5:e2:95:ba:7d:30:
af:bf:89:d2:16:91:b8:bf:f8:24:f8:d9:af:70:a4:1b:20:c8:
7a:df:d3:f9:e9:25:f4:af:7e:da:b9:6b:48:cf:95:d2:fb:a2:
19:f7:19:d9:8a:aa:ad:6c:ce:2d:40:d8:69:ec:88:92:58:38:
60:2e:91:a0:c2:39:49:4b:66:19:60:23:15:8e:a5:66:47:d8:
a4:91:a3:99:66:08:5c:05:c7:e5:8a:e7:c9:33:d9:9f:fe:5c:
9b:d2:b1:6e:8d:a5:b3:8a:67:47:3f:0c:51:5e:1c:ed:73:cf:
f3:f7:50:a8:fe:45:c0:39:8c:84:d3:a7:76:45:22:4c:c8:3d:
d3:6e:1b:85
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAZJnN+OYuiLqpoPH5WYk2I7MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMzM0OGFiZjE3M2QyNzc0Yzg5NDIwMDhjYWRmNmQ2MDEy
YTNkNTIwHhcNMjQxMDA3MTM0MjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzFiZmY4MmNjOWY5NGUwZWQ4OGNjNDIyNTZmZDI1YzY2MDcyY2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbjlV0f/M4yMmpoT056ZRzf0Puzf
kd2C5GF2k8y0BGd1A1t+npl0l+BcN//mfuEPHX3MqE3r+gZqF/oS3hCfwVHlJbZw
6qKzbQBRopoY3V7EF+FS9IocJWZWl7Va/N/iqf97ZP7DehskaallTG3v0OC2h259
1IL8tpbXWC7wk5CoJDr1hSXls8Aolh18G8PFdo+OtpgyI/8E/WprQx1z1mbjkmhb
oPGXduSnFJTDgNTCiRKUQEx/1kIPn8cDb3bD0bg0B3vwdbLePoJ3c2yahtRQCvLJ
CjmkAQ2uo12ixWBeBUPe5H7tZ3lDCt8pMDZCW+tW53BWhvTs/+zlTdsCZQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFIwb/4LMn5Tg7YjMQiVv0lxmByyxMB8GA1UdIwQY
MBaAFMozSKvxc9J3TIlCAIyt9tYBKj1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWpOSXFfRnowbmRNaVVJQWpLMzIxZ0VxUFZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8wMjY5MTQtMTYxMi00NWY0LWFjZGYt
MmFjYjlkMTdjMTFjLzEvakJ2X2dzeWZsT0R0aU14Q0pXX1NYR1lITExFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8wMjY5MTQtMTYxMi00NWY0LWFjZGYtMmFjYjlkMTdjMTFj
LzEveWpOSXFfRnowbmRNaVVJQWpLMzIxZ0VxUFZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAqBFBA
YAEDBwIqBFBAYAAwDQYJKoZIhvcNAQELBQADggEBAKTkLFZ5g+FG+mY8KSkoCMdM
U2ogWTze/J65IKM9aQ4f3UAaizt7M1JeK7Pmt+eGPrvHWLpdNwPdFSt9JRAXH33A
mLzHRdeW053jgyQy7p7f2oSS6YDTW0kGx+Z1yJWNxcGXB1ETETQUfqVk/U6ORI1x
dJMj5UhLU7Xilbp9MK+/idIWkbi/+CT42a9wpBsgyHrf0/npJfSvftq5a0jPldL7
ohn3GdmKqq1szi1A2GnsiJJYOGAukaDCOUlLZhlgIxWOpWZH2KSRo5lmCFwFx+WK
58kz2Z/+XJvSsW6NpbOKZ0c/DFFeHO1zz/P3UKj+RcA5jITTp3ZFIkzIPdNuG4U=
-----END CERTIFICATE-----
Generated at Tue Nov 26 00:34:48 2024 by rpki-client on console-fra.rpki-client.org