Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/6c7b22-b65f-4f37-a40e-a9917cc15e0a/1/fSMY4Ac6iBY71zSN8_uimw55_JY.roa
File: fSMY4Ac6iBY71zSN8_uimw55_JY.roa (raw, json)
Hash identifier: 2CKqHGnPFUPKDdVvETvCy/KJWroVJH9MFIM5SyJw9h0=
Subject key identifier: 7D:23:18:E0:07:3A:88:16:3B:D7:34:8D:F3:FB:A2:9B:0E:79:FC:96
Certificate issuer: /CN=6efa8c0fe62ec54accbde35c60bd8ad4b9014ff7
Certificate serial: 0192536E46FE9C6B8DC74C74AEF398FA1DF4
Authority key identifier: 6E:FA:8C:0F:E6:2E:C5:4A:CC:BD:E3:5C:60:BD:8A:D4:B9:01:4F:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bvqMD-YuxUrMveNcYL2K1LkBT_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/6c7b22-b65f-4f37-a40e-a9917cc15e0a/1/fSMY4Ac6iBY71zSN8_uimw55_JY.roa
Signing time: Thu 03 Oct 2024 17:29:48 +0000
ROA not before: Thu 03 Oct 2024 17:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 134521
IP address blocks: 2a05:e580:fa00::/40 maxlen: 40
2a05:e580:fb00::/40 maxlen: 40
2a05:e580:fc00::/40 maxlen: 40
2a05:e580:fd00::/40 maxlen: 40
2a05:e580:fe00::/40 maxlen: 40
2a05:e580:ff00::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/6c7b22-b65f-4f37-a40e-a9917cc15e0a/1/bvqMD-YuxUrMveNcYL2K1LkBT_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/6c7b22-b65f-4f37-a40e-a9917cc15e0a/1/bvqMD-YuxUrMveNcYL2K1LkBT_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/bvqMD-YuxUrMveNcYL2K1LkBT_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:53:6e:46:fe:9c:6b:8d:c7:4c:74:ae:f3:98:fa:1d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6efa8c0fe62ec54accbde35c60bd8ad4b9014ff7
Validity
Not Before: Oct 3 17:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d2318e0073a88163bd7348df3fba29b0e79fc96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5a:bc:59:8c:6a:f3:7d:88:ea:2c:8c:fa:4e:
60:98:57:00:51:db:45:b9:da:04:55:08:da:09:b8:
06:4d:9e:20:d0:a9:28:22:76:f8:ac:dc:f5:61:fd:
21:10:c7:2c:ee:86:5e:26:0f:45:63:f5:30:cd:a9:
bd:ac:c3:1a:1f:d1:22:29:cb:40:ab:66:a3:bc:6d:
4f:2a:3f:c6:da:5e:c0:47:89:ff:b8:62:f6:90:6d:
4a:64:dc:40:3e:68:d2:17:5b:68:88:59:c9:6c:80:
e5:1d:f0:5c:26:40:52:11:26:44:1e:2e:f9:bd:02:
04:37:70:fa:ce:84:c5:d8:1b:e6:5a:e1:17:5c:01:
25:c6:76:10:39:ff:6f:1e:f5:fb:72:7a:67:fe:31:
34:2f:dd:31:5d:a6:7b:0f:c3:1a:ec:54:15:6a:20:
40:11:bc:08:06:62:80:69:a2:c6:5c:3a:5c:89:8b:
31:0c:39:ac:07:12:81:ef:b6:2d:de:2d:b6:75:26:
22:2d:03:d5:75:c9:31:b1:b3:56:d3:c5:f9:39:5b:
eb:b5:45:7c:94:14:f8:96:29:75:cc:67:e0:82:df:
ac:55:6f:7e:7d:4c:39:d7:40:7a:40:5b:0e:e2:0d:
84:d0:6f:43:da:e2:bc:53:8c:8c:03:a8:0b:38:6e:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:23:18:E0:07:3A:88:16:3B:D7:34:8D:F3:FB:A2:9B:0E:79:FC:96
X509v3 Authority Key Identifier:
keyid:6E:FA:8C:0F:E6:2E:C5:4A:CC:BD:E3:5C:60:BD:8A:D4:B9:01:4F:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bvqMD-YuxUrMveNcYL2K1LkBT_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6c7b22-b65f-4f37-a40e-a9917cc15e0a/1/fSMY4Ac6iBY71zSN8_uimw55_JY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6c7b22-b65f-4f37-a40e-a9917cc15e0a/1/bvqMD-YuxUrMveNcYL2K1LkBT_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:e580:fa00::-2a05:e580:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
54:34:b5:00:d8:ec:0d:c4:c4:2b:55:d1:a3:77:a4:fc:42:5d:
a8:9d:6a:a0:77:5c:1d:56:ca:29:08:ea:fa:ac:41:06:d8:68:
1a:ac:3c:86:88:2f:40:5c:b4:94:7f:46:72:a5:be:ef:e8:56:
31:f4:6b:60:54:a8:35:7c:18:0f:b6:5f:49:8d:89:63:ec:8c:
75:e6:ad:91:dd:60:ca:59:aa:c7:2f:f5:79:be:eb:72:72:84:
14:5d:41:51:7a:c0:df:a7:77:13:3d:1e:38:33:4a:89:97:58:
a3:6c:dc:cb:27:e1:fc:ea:d5:58:b9:fe:a6:f1:b4:d0:d3:21:
e2:a4:53:24:f7:e5:9c:87:ee:b2:3c:52:4d:2c:3e:a6:f3:83:
d0:7d:0e:f9:ec:46:8b:fd:9e:39:68:3a:4d:39:6b:9f:12:a5:
75:42:7a:55:2c:03:47:23:ca:6f:19:52:b0:a9:87:17:31:a1:
23:12:8b:25:43:17:fd:d5:3f:ad:47:bd:a6:93:e3:b5:c2:17:
1c:ef:ba:c4:cb:c2:a5:e5:07:b0:b2:14:f2:d1:ad:3d:40:69:
da:d3:6c:d3:bc:af:48:6f:0e:82:a9:59:bf:4c:80:76:75:cf:
9f:73:ad:39:cf:c3:51:ba:7b:a2:ae:51:32:44:6e:91:1f:26:
f6:4d:ac:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:39:24 2024 by rpki-client on console-ams.rpki-client.org