Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/y6uA8PtDv0x6jtUMLVW0QF8Dp9E.roa
File: y6uA8PtDv0x6jtUMLVW0QF8Dp9E.roa (raw, json)
Hash identifier: bNEdUmTK3V3bGicE/Q7+Xd27umJolIWbxWHH/icHuig=
Subject key identifier: CB:AB:80:F0:FB:43:BF:4C:7A:8E:D5:0C:2D:55:B4:40:5F:03:A7:D1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0191AAA3BFF643103CAFCC49FE8D3DEA0ED6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/y6uA8PtDv0x6jtUMLVW0QF8Dp9E.roa
Signing time: Sat 31 Aug 2024 22:52:23 +0000
ROA not before: Sat 31 Aug 2024 22:52:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211704
IP address blocks: 2a0e:b107:fb3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:aa:a3:bf:f6:43:10:3c:af:cc:49:fe:8d:3d:ea:0e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 31 22:52:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbab80f0fb43bf4c7a8ed50c2d55b4405f03a7d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0b:d2:c7:62:16:40:8e:74:96:5f:48:db:4a:
b1:ac:79:b8:60:54:a0:1b:ce:cb:94:26:3f:bc:81:
87:73:81:6b:99:c3:85:e8:4b:80:2a:09:5c:f9:a7:
54:dd:b9:8f:3a:ee:22:e9:60:1b:e3:ad:25:e6:65:
64:b9:84:72:f3:7c:8f:b2:41:93:b1:4d:37:a6:27:
37:1d:1d:c3:d7:03:a2:2a:8d:5a:e3:ec:d1:01:9a:
48:f3:c0:30:6b:f9:3d:f8:5a:56:01:c6:25:2b:6c:
4a:05:ff:e9:89:7c:cf:42:d3:df:34:b6:79:83:28:
89:ec:d7:0c:9c:49:7d:c1:db:37:d1:17:cb:de:9d:
f7:09:52:f8:1c:01:fd:d4:44:ae:20:50:08:a1:d1:
94:98:f8:30:45:9b:98:d1:a1:e2:ff:29:8f:00:1a:
84:2e:92:db:6e:ae:95:f0:17:28:d6:23:fc:d9:5f:
51:95:35:ee:b9:16:2b:06:a2:45:a5:81:48:5c:35:
97:fa:55:52:fa:87:d8:a6:ef:c8:35:d4:de:d9:8d:
9f:64:1e:b6:06:23:49:83:9c:94:cc:b7:4f:c1:20:
5f:f4:14:89:8d:d4:6e:d8:56:ae:22:a6:80:6d:86:
86:8e:e1:a2:6a:21:56:3d:cd:79:12:ef:a1:d8:ee:
03:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:AB:80:F0:FB:43:BF:4C:7A:8E:D5:0C:2D:55:B4:40:5F:03:A7:D1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/y6uA8PtDv0x6jtUMLVW0QF8Dp9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:fb3::/48
Signature Algorithm: sha256WithRSAEncryption
ba:b7:ab:ea:e5:17:a8:63:2b:97:d3:56:bb:4c:29:d3:5c:a4:
1e:c5:ed:78:1a:da:98:30:8e:79:ef:7a:ec:cb:11:45:cf:de:
ea:9f:a3:cc:4c:3a:9a:4d:86:a3:36:47:19:79:43:85:61:e0:
49:a4:1a:4f:01:c3:82:1a:0d:7d:4e:6a:26:8f:66:0a:0a:34:
4d:d4:58:84:6d:e4:88:64:a7:f2:69:87:ba:17:7d:1b:7f:f6:
bf:b7:c3:d1:e2:e6:43:f2:21:d5:8b:de:0d:40:68:b8:a7:82:
17:3e:2e:53:d6:20:a3:27:b8:90:66:04:84:d5:58:24:e1:86:
ff:21:9c:ce:85:f3:94:cc:51:76:8d:71:e7:f4:6f:47:4b:84:
9c:9e:82:84:08:46:69:19:ff:b5:df:1e:6c:8e:a2:84:30:4d:
b2:22:6e:b1:75:8c:de:a1:6b:16:f5:74:49:a1:4d:b5:e5:9a:
7e:c1:9a:ff:9c:52:e2:3f:37:9e:a9:ec:53:97:97:21:da:bf:
76:c9:43:ba:26:fe:08:9c:3c:7d:39:bb:6b:72:38:2f:bb:1f:
e0:c4:5d:b1:f7:31:ca:57:c8:63:01:9d:e6:5b:5b:32:89:fc:
0d:49:98:f7:52:c7:0b:34:39:b6:07:79:90:63:99:0c:a3:bc:
f9:3d:1c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:24:32 2024 by rpki-client on console-fra.rpki-client.org