Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/FV1uXKUh01QdFVSg_dE_TNomm4c.roa
File: FV1uXKUh01QdFVSg_dE_TNomm4c.roa (raw, json)
Hash identifier: fbFep+/bUUItp15DjqaVM3Mlla2z2vpqrgCAlyO7dw8=
Subject key identifier: 15:5D:6E:5C:A5:21:D3:54:1D:15:54:A0:FD:D1:3F:4C:DA:26:9B:87
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 019160F177A0046878E55500AFCF4B91BCA1
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/FV1uXKUh01QdFVSg_dE_TNomm4c.roa
Signing time: Sat 17 Aug 2024 15:25:23 +0000
ROA not before: Sat 17 Aug 2024 15:25:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36743
IP address blocks: 2a05:b0c7:1800::/39 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:60:f1:77:a0:04:68:78:e5:55:00:af:cf:4b:91:bc:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Aug 17 15:25:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=155d6e5ca521d3541d1554a0fdd13f4cda269b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:34:ae:fa:11:84:34:43:5f:90:99:88:bd:
a9:94:86:8d:05:0a:49:00:c8:6b:ea:44:59:68:24:
7b:bb:5d:45:0a:aa:57:5b:86:23:5c:59:7d:42:62:
2e:07:71:af:08:7c:6d:f1:aa:3c:8a:f9:ff:11:1c:
ab:60:0f:4f:a3:48:74:6e:53:69:53:22:0d:7f:3c:
00:8b:3e:b7:b4:71:4e:e2:aa:8a:ad:05:33:77:4a:
80:6b:0b:4d:ea:e6:16:4e:c1:17:89:bd:62:f6:60:
f7:a8:23:9a:4c:c4:f2:45:6a:2f:75:84:c6:de:57:
b0:47:47:2c:15:de:68:12:07:68:52:59:0e:5e:30:
d3:0f:70:8c:42:72:b7:fa:a0:46:5a:63:91:44:cd:
3f:9d:b1:96:0c:b5:68:dc:2d:38:77:78:c4:2e:5f:
2c:e4:25:9a:8a:5d:17:23:ad:26:12:17:47:b8:27:
fd:4a:ea:7f:d7:7b:f4:6a:ba:23:84:79:92:67:2e:
91:c6:4a:af:ec:dd:fe:1b:02:99:56:24:fb:12:b2:
56:08:9a:82:b9:bf:56:3e:bc:80:79:ba:d7:4d:20:
4c:16:66:bc:67:36:40:5e:5c:d6:e5:ec:94:6f:ec:
94:ee:4b:5a:c6:f7:16:b2:4d:ec:88:36:66:65:6f:
e1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:5D:6E:5C:A5:21:D3:54:1D:15:54:A0:FD:D1:3F:4C:DA:26:9B:87
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/FV1uXKUh01QdFVSg_dE_TNomm4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c7:1800::/39
Signature Algorithm: sha256WithRSAEncryption
56:41:dd:9e:68:cb:2c:66:63:4e:8e:5e:86:1d:dc:0b:ea:4b:
c3:ad:3f:44:d4:a8:27:c8:f4:20:6d:17:bd:51:dd:cd:49:2b:
d0:c1:54:8e:8d:08:06:da:23:93:0d:1c:f2:82:0a:32:71:33:
f3:8c:87:1c:ce:74:91:7b:56:40:05:e7:d6:2e:69:40:23:15:
cd:1c:8d:01:70:f0:15:53:da:88:ab:91:8f:9b:3a:14:58:ce:
ea:c3:2c:1b:b9:d0:91:f1:34:e8:39:fc:c9:4a:ae:05:9e:20:
da:5e:92:f4:89:fa:57:72:44:2b:ba:fe:90:1b:0a:75:29:25:
84:b8:85:60:51:4b:04:20:4d:76:5f:8e:cb:4b:99:c0:87:b1:
f8:a0:1e:bc:c6:02:82:b3:81:b4:fe:e9:7e:02:37:94:53:73:
97:04:4c:2f:f1:ee:f5:da:d4:7d:15:36:d8:46:b1:a4:b7:8f:
a0:d2:be:0f:5a:df:fc:42:13:e2:3a:e5:28:78:b3:1e:57:bb:
94:2e:ea:e7:60:e9:07:ec:33:49:25:aa:a1:8f:4e:b6:62:59:
38:24:3e:94:be:da:18:ea:f5:8a:10:f3:ec:aa:81:81:64:de:
42:b0:c0:bd:53:cc:7d:70:1a:6a:84:08:2d:e2:fe:4a:84:60:
63:64:59:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:35:48 2024 by rpki-client on console-fra.rpki-client.org