Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/r57PMp0m_fexC9EIiqn8ifO_qVU.roa
File: r57PMp0m_fexC9EIiqn8ifO_qVU.roa (raw, json)
Hash identifier: KMtKmRpxiMHc8sIqct3J2jKqpskMHlK18yErbTjeztg=
Subject key identifier: AF:9E:CF:32:9D:26:FD:F7:B1:0B:D1:08:8A:A9:FC:89:F3:BF:A9:55
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 019160F08C24CC4909A16CFBE7429CE0F173
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/r57PMp0m_fexC9EIiqn8ifO_qVU.roa
Signing time: Sat 17 Aug 2024 15:24:22 +0000
ROA not before: Sat 17 Aug 2024 15:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197993
IP address blocks: 2a05:b0c7:1800::/39 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Oct 2024 16:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:60:f0:8c:24:cc:49:09:a1:6c:fb:e7:42:9c:e0:f1:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Aug 17 15:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af9ecf329d26fdf7b10bd1088aa9fc89f3bfa955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7d:00:35:e2:81:e7:de:1b:cf:01:34:77:1f:
6e:99:66:ee:d6:2a:76:f5:82:71:fc:02:ec:d1:11:
46:06:7b:1e:47:ea:9c:5c:0b:54:60:61:38:67:5f:
b0:2b:b7:e9:70:4a:50:29:07:c5:1e:9d:64:36:bd:
92:ef:3d:17:6f:3c:f7:84:a6:c6:93:54:33:69:2f:
33:07:a1:df:b0:ca:b7:e0:ba:9c:8f:7b:83:44:0f:
3a:34:91:30:dd:bf:6b:fb:8d:31:c4:e1:0f:b6:87:
66:51:05:c4:22:3f:bb:41:0e:aa:9f:de:1a:a6:7d:
61:bb:9f:41:9c:c5:d5:06:36:4f:5b:07:ee:b7:f2:
d9:ab:bd:5f:69:40:24:ec:61:ca:65:5c:f7:cd:01:
2f:1b:b9:a0:46:57:ae:78:98:e3:29:dc:f5:99:5e:
d8:ca:fa:40:2a:2d:ca:4d:3a:a4:2c:3b:65:33:9d:
22:aa:a7:63:a2:a3:45:88:48:19:07:3d:6e:07:c3:
c8:6d:9a:a8:8a:a1:08:05:37:89:b7:3e:6b:cc:96:
8c:83:2b:c4:9d:78:6e:24:fa:db:ac:84:e3:27:e9:
fe:75:67:7e:0d:40:8b:7f:3e:7d:83:f7:c6:cf:fc:
bc:44:0c:ff:8a:9e:b5:96:5b:98:24:e7:4e:64:e1:
cc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:9E:CF:32:9D:26:FD:F7:B1:0B:D1:08:8A:A9:FC:89:F3:BF:A9:55
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/r57PMp0m_fexC9EIiqn8ifO_qVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c7:1800::/39
Signature Algorithm: sha256WithRSAEncryption
34:44:fb:48:74:33:a6:33:1c:ea:b4:df:35:0e:a6:95:24:5e:
94:17:6e:39:50:d3:a2:27:e2:2c:97:84:29:b5:31:82:4f:84:
b3:aa:b2:f2:2f:41:f8:99:4a:bf:17:03:22:cc:f5:2b:6f:3e:
0d:55:14:b3:cd:f4:69:f6:b5:66:2e:7f:30:12:54:8e:80:7b:
fb:82:cb:e2:c3:8b:76:a9:04:bd:af:9f:3b:43:de:0b:0d:8d:
26:16:4f:89:23:26:2b:18:e9:46:dd:7c:89:93:f1:24:ba:bf:
9f:66:19:99:e2:2f:d2:cc:69:c7:1c:3d:c2:4e:a0:18:95:d0:
cb:eb:3b:80:78:09:7c:36:aa:4b:6a:8a:12:f3:f6:75:27:54:
db:0d:f0:89:e0:cd:e8:54:6c:49:19:dc:6a:41:90:c9:93:bf:
6f:b1:33:4f:94:f1:49:a6:43:cf:2e:75:dd:33:01:fe:b7:2c:
84:2e:28:ea:1f:87:21:f8:07:4c:46:94:24:ab:23:0f:1f:79:
1c:af:03:33:dc:4d:51:3c:12:98:45:19:d0:49:a3:81:56:af:
cc:bb:d0:57:fa:50:ed:2a:b0:62:36:09:11:2d:78:10:01:57:
e3:01:b0:b8:1c:98:da:21:45:cf:d0:7c:b7:53:ea:7e:cb:3c:
81:d5:8c:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 22:06:30 2024 by rpki-client on console-ams.rpki-client.org