Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/758c96-611d-4167-80cd-041ab302c2f9/1/fpn_lFPjxR1Z8cBBpwiLZ4DFx8o.roa
File: fpn_lFPjxR1Z8cBBpwiLZ4DFx8o.roa (raw, json)
Hash identifier: ekRtqk/2//8ULa6C/vhLhK17m7gspmeS9Z76EXBVYFg=
Subject key identifier: 7E:99:FF:94:53:E3:C5:1D:59:F1:C0:41:A7:08:8B:67:80:C5:C7:CA
Certificate issuer: /CN=e5825fbee7c43a29838eabe4fc87d794349c0c80
Certificate serial: 0191508D3F005676EEE2D1C8C66326500637
Authority key identifier: E5:82:5F:BE:E7:C4:3A:29:83:8E:AB:E4:FC:87:D7:94:34:9C:0C:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YJfvufEOimDjqvk_IfXlDScDIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/758c96-611d-4167-80cd-041ab302c2f9/1/fpn_lFPjxR1Z8cBBpwiLZ4DFx8o.roa
Signing time: Wed 14 Aug 2024 11:01:59 +0000
ROA not before: Wed 14 Aug 2024 11:01:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48045
IP address blocks: 46.46.64.0/18 maxlen: 18
94.240.128.0/22 maxlen: 22
94.240.160.0/19 maxlen: 19
2a09:65c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/758c96-611d-4167-80cd-041ab302c2f9/1/5YJfvufEOimDjqvk_IfXlDScDIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/758c96-611d-4167-80cd-041ab302c2f9/1/5YJfvufEOimDjqvk_IfXlDScDIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5YJfvufEOimDjqvk_IfXlDScDIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:50:8d:3f:00:56:76:ee:e2:d1:c8:c6:63:26:50:06:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5825fbee7c43a29838eabe4fc87d794349c0c80
Validity
Not Before: Aug 14 11:01:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e99ff9453e3c51d59f1c041a7088b6780c5c7ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:42:46:03:8a:55:38:a7:19:13:f2:94:44:a9:
a9:60:da:ad:47:cd:8b:ac:23:a8:72:2f:71:6b:aa:
c0:b0:17:96:a2:c0:6f:4e:5d:b2:7c:18:b6:f6:e0:
0a:51:a5:72:30:33:30:c8:85:ac:79:ee:74:cd:40:
7b:1a:a4:00:56:25:1f:52:a9:94:41:7a:d0:fb:64:
e6:ef:22:88:e0:45:01:99:50:57:07:f7:fa:2f:99:
a1:dc:ab:2c:b1:0b:22:2f:e5:09:ef:54:14:d8:37:
d1:80:5c:d5:25:a8:ae:8b:dd:06:90:4e:46:f1:ae:
9f:01:d9:2f:13:0e:96:57:69:21:c3:53:df:fd:6c:
e9:4c:69:fd:7f:81:d1:31:89:b1:23:d6:35:9b:29:
34:82:af:e7:77:27:85:4f:90:65:54:7b:01:3e:c4:
be:34:2e:64:c1:91:9e:f8:b4:72:d2:de:36:12:06:
a4:4d:1e:a7:31:0c:36:8b:10:f7:2c:87:98:23:fe:
04:93:55:77:d5:23:57:a1:53:85:ea:c2:c1:ab:11:
12:c9:e9:f5:82:3c:d7:08:3f:2e:85:e3:0b:28:ac:
ba:dd:46:c5:62:19:e6:6d:6c:a4:05:73:fd:7c:fb:
46:3c:c7:cb:fe:73:39:41:86:ef:77:94:4b:9f:f2:
68:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:99:FF:94:53:E3:C5:1D:59:F1:C0:41:A7:08:8B:67:80:C5:C7:CA
X509v3 Authority Key Identifier:
keyid:E5:82:5F:BE:E7:C4:3A:29:83:8E:AB:E4:FC:87:D7:94:34:9C:0C:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YJfvufEOimDjqvk_IfXlDScDIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/758c96-611d-4167-80cd-041ab302c2f9/1/fpn_lFPjxR1Z8cBBpwiLZ4DFx8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/758c96-611d-4167-80cd-041ab302c2f9/1/5YJfvufEOimDjqvk_IfXlDScDIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.46.64.0/18
94.240.128.0/22
94.240.160.0/19
IPv6:
2a09:65c0::/32
Signature Algorithm: sha256WithRSAEncryption
11:b1:32:bb:d7:90:2f:9c:2b:6e:a2:cb:58:85:8f:8f:ed:e7:
07:7b:38:87:ac:05:b8:fd:3b:d0:2a:34:9f:84:0f:06:fa:39:
f4:19:d1:a0:24:eb:49:e6:47:e6:94:e6:9f:00:5e:a9:18:bd:
6d:cc:25:5e:cf:14:f5:bb:f2:49:64:e8:85:03:1d:38:60:50:
45:7e:04:00:d3:92:19:f6:19:0f:6f:a0:0b:14:f4:45:1b:fb:
d5:fc:e2:32:ca:e3:8c:06:3a:56:3c:f9:69:e0:03:c8:fa:dc:
a3:1a:62:06:c6:4b:2a:e8:86:21:30:0c:10:1b:e6:88:f5:96:
c8:3a:35:36:66:4a:53:16:8b:a4:6f:64:ea:70:50:45:71:63:
3f:df:9f:ba:78:43:48:0a:9a:70:5f:52:9a:b6:a7:05:b8:25:
e7:c6:00:42:ff:69:40:c5:fd:27:59:b1:a3:dc:c2:76:08:25:
91:04:4d:08:8e:71:c5:d2:f9:9c:f7:82:09:c4:80:7c:90:93:
83:ec:06:9c:4e:d3:ec:63:76:bb:d3:1e:66:a1:3e:d2:d8:b8:
03:98:48:d2:fa:90:11:92:c9:09:d5:b8:b7:73:b7:25:76:24:
15:61:7a:52:a3:5e:ad:ea:f7:b1:55:62:b8:24:ad:85:68:9f:
74:d8:65:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:13 2024 by rpki-client on console-ams.rpki-client.org