Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/7CTg_8XWIZSGf8nR-iSYye4c3ZE.roa
File: 7CTg_8XWIZSGf8nR-iSYye4c3ZE.roa (raw, json)
Hash identifier: 2jhwNxrhQJIBAHhtxzXEuiw2PW20ojXgxkovl0zlafo=
Subject key identifier: EC:24:E0:FF:C5:D6:21:94:86:7F:C9:D1:FA:24:98:C9:EE:1C:DD:91
Certificate issuer: /CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Certificate serial: 018CC6B8EE2F19AC44527D13C7E7279413D6
Authority key identifier: 6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/7CTg_8XWIZSGf8nR-iSYye4c3ZE.roa
Signing time: Mon 01 Jan 2024 20:30:57 +0000
ROA not before: Mon 01 Jan 2024 20:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197942
IP address blocks: 2001:678:ae4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:ee:2f:19:ac:44:52:7d:13:c7:e7:27:94:13:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Validity
Not Before: Jan 1 20:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec24e0ffc5d62194867fc9d1fa2498c9ee1cdd91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:67:29:a2:08:13:8d:c4:c1:43:c5:03:33:c1:
d3:d8:80:3a:8f:f9:f4:8d:00:ac:aa:80:ef:19:cf:
c2:8c:22:67:49:04:ad:98:62:fa:b8:44:3d:94:64:
2b:7a:d8:26:7d:a0:b2:f9:2d:2e:03:19:cb:97:a7:
79:5c:3f:cf:9e:16:dc:e0:8b:f3:66:b1:61:f3:d8:
b0:23:d1:82:62:00:0d:cf:7d:d9:04:b3:35:09:ad:
d5:c5:90:f6:7e:ae:7d:09:f4:95:d0:31:49:df:0e:
12:03:fc:32:b4:d1:83:ff:46:ea:2c:da:c7:fd:b6:
c2:b8:35:35:b8:92:aa:db:c2:2b:e2:b3:31:58:a7:
30:2f:1d:1f:55:c0:6d:5f:46:dd:4b:28:28:77:99:
d2:de:d2:f5:6a:a9:67:a5:92:32:d1:36:5c:60:5b:
1d:9a:de:b0:4f:29:69:1f:61:2b:18:42:18:33:1a:
fa:cd:f0:49:fa:a4:0c:5f:ac:7f:24:9c:27:e4:48:
bf:09:c0:41:01:f6:ed:01:96:06:49:2a:65:2a:61:
c6:e0:b8:4d:68:d3:3b:d1:fb:28:e4:f7:02:ad:96:
f5:f3:ae:b9:d1:04:b9:1d:10:9c:20:fa:6a:18:de:
af:ce:9d:2a:7a:25:5d:1f:fc:15:5b:b8:ef:f4:fd:
27:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:24:E0:FF:C5:D6:21:94:86:7F:C9:D1:FA:24:98:C9:EE:1C:DD:91
X509v3 Authority Key Identifier:
keyid:6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/7CTg_8XWIZSGf8nR-iSYye4c3ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ae4::/48
Signature Algorithm: sha256WithRSAEncryption
48:e6:8a:1c:f8:6b:da:d8:ee:78:8c:fb:3c:b0:16:90:bd:b0:
37:b9:c8:cf:c2:96:61:64:98:f4:7f:a7:8d:07:ae:de:69:74:
8f:0c:b3:58:be:00:52:30:47:c1:7c:17:a9:50:d1:04:31:e4:
95:f8:3b:46:60:d3:77:53:40:b8:3f:ab:f7:64:f9:1b:3c:5a:
f5:48:04:4a:88:5d:84:fb:d0:d4:14:2e:13:de:b1:c4:2a:42:
b5:8c:70:b5:91:3b:d4:46:ae:a6:2c:76:79:2e:a6:c5:89:8a:
8c:49:6b:e4:4e:d1:fe:9b:05:41:45:b0:f7:7b:a8:1b:db:73:
3f:58:2b:69:47:53:63:27:89:ff:6b:9e:36:36:8b:2c:26:4b:
90:7a:12:de:31:e5:73:83:01:b4:84:8a:67:11:6c:21:dd:f9:
3a:f0:08:63:94:5e:bc:f5:b3:cf:47:23:ff:e5:b5:3a:b6:e5:
c5:d9:d1:29:fd:bb:a1:ff:82:5e:5d:f1:79:2c:2f:af:ee:b5:
8c:fb:9d:e0:69:39:aa:fc:27:16:ac:5e:cd:aa:a1:88:19:56:
6b:03:e5:b7:00:5a:d6:09:ac:1a:74:24:7f:cf:a2:d9:16:76:
5f:39:9f:9d:ba:9a:36:71:dd:6d:6a:52:24:c4:36:d3:18:55:
0f:f6:da:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:56:53 2024 by rpki-client on console-fra.rpki-client.org