Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/330e6b-5675-4a26-b849-f1c259dbe63e/1/3GDoPMzCAtX75rM6vU6wJC3gays.roa
File: 3GDoPMzCAtX75rM6vU6wJC3gays.roa (raw, json)
Hash identifier: 68L+zq7qStyDaX0JDRufEF+29oN8bPqSgG0RygfKzCY=
Subject key identifier: DC:60:E8:3C:CC:C2:02:D5:FB:E6:B3:3A:BD:4E:B0:24:2D:E0:6B:2B
Certificate issuer: /CN=f2285d740a5e892cd0be6f224f4d3f4e9d6dd1c4
Certificate serial: 018D41124021E0260F000416B829D5F41353
Authority key identifier: F2:28:5D:74:0A:5E:89:2C:D0:BE:6F:22:4F:4D:3F:4E:9D:6D:D1:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8ihddApeiSzQvm8iT00_Tp1t0cQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/330e6b-5675-4a26-b849-f1c259dbe63e/1/3GDoPMzCAtX75rM6vU6wJC3gays.roa
Signing time: Thu 25 Jan 2024 14:42:11 +0000
ROA not before: Thu 25 Jan 2024 14:42:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203312
IP address blocks: 2001:678:9e0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/330e6b-5675-4a26-b849-f1c259dbe63e/1/8ihddApeiSzQvm8iT00_Tp1t0cQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/330e6b-5675-4a26-b849-f1c259dbe63e/1/8ihddApeiSzQvm8iT00_Tp1t0cQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8ihddApeiSzQvm8iT00_Tp1t0cQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 05:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:41:12:40:21:e0:26:0f:00:04:16:b8:29:d5:f4:13:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2285d740a5e892cd0be6f224f4d3f4e9d6dd1c4
Validity
Not Before: Jan 25 14:42:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc60e83cccc202d5fbe6b33abd4eb0242de06b2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0f:26:39:bb:2f:ce:1c:fa:aa:7f:7a:85:94:
42:51:9b:5a:47:fb:c5:ce:9f:e6:97:e1:d4:48:26:
6f:2c:30:4f:3d:17:c7:04:fe:96:b1:48:fa:0b:6a:
26:ed:e6:64:23:10:73:eb:8b:2e:06:78:89:45:db:
d6:9a:09:6b:8d:5d:9d:3e:c1:9e:30:dc:e3:71:bd:
af:59:16:64:76:95:26:45:c4:07:13:ea:80:fc:ad:
9b:b9:b4:a6:3a:fa:33:f3:1c:fb:c3:3c:c2:87:1c:
02:c7:52:92:6a:0d:1f:08:f6:a0:ac:5a:aa:ca:f9:
d7:ae:0e:68:ea:75:41:08:70:fd:07:72:50:86:c4:
74:ef:58:82:c4:e3:c6:4f:53:5f:cb:df:de:fc:05:
3d:09:87:b6:f0:4e:8a:cd:2f:42:b8:90:62:f8:8a:
30:ea:b6:bb:50:69:57:ec:66:4e:31:d2:82:c4:d3:
39:3d:79:8a:c7:07:b6:cc:4a:4f:2b:50:af:8d:63:
94:31:d6:16:36:7d:ec:3a:f7:76:83:e4:72:fe:a3:
8f:58:86:92:0c:5c:59:ef:61:0d:da:df:aa:40:60:
bf:da:79:bc:98:3a:99:96:c3:28:44:ed:ba:8f:59:
cf:db:68:f0:77:d5:36:08:8a:18:7d:01:3b:11:3c:
a7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:60:E8:3C:CC:C2:02:D5:FB:E6:B3:3A:BD:4E:B0:24:2D:E0:6B:2B
X509v3 Authority Key Identifier:
keyid:F2:28:5D:74:0A:5E:89:2C:D0:BE:6F:22:4F:4D:3F:4E:9D:6D:D1:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8ihddApeiSzQvm8iT00_Tp1t0cQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/330e6b-5675-4a26-b849-f1c259dbe63e/1/3GDoPMzCAtX75rM6vU6wJC3gays.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/330e6b-5675-4a26-b849-f1c259dbe63e/1/8ihddApeiSzQvm8iT00_Tp1t0cQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:9e0::/48
Signature Algorithm: sha256WithRSAEncryption
d8:5c:8f:b3:29:51:37:43:1c:77:26:56:d3:77:78:f9:4b:39:
16:e1:f7:89:31:02:23:82:da:0e:9a:5a:7b:79:35:fc:6b:d0:
28:08:fb:c4:39:f1:a4:2a:db:4e:56:6c:b1:58:5b:2f:93:74:
03:23:60:aa:65:f1:6c:a3:f1:50:bc:0b:59:7f:6d:47:0f:e1:
90:58:63:ed:3b:ca:81:10:28:f2:d4:7c:f5:76:36:aa:28:70:
a7:b0:ef:f7:81:55:fc:9f:a7:d9:ff:d7:ad:89:a3:b2:ae:a4:
6c:14:bd:69:cb:55:14:de:0e:41:70:4a:24:2e:2a:29:eb:31:
5b:df:ac:51:b5:39:b5:03:69:5f:9a:ac:89:a1:2b:76:0e:44:
68:a2:3e:c5:cd:c8:50:45:61:66:39:d9:25:79:e1:d9:78:b9:
a7:e8:ec:ca:e1:18:94:d1:be:c0:e3:f2:72:62:dd:b5:47:c6:
35:f7:55:1e:e5:31:a9:0e:b0:49:47:ab:8e:09:b7:94:5a:20:
5a:b5:8f:3c:4c:8b:ec:43:11:bd:5a:2e:20:d7:76:34:8e:74:
16:9e:3e:b5:32:b8:87:77:fd:be:02:ac:e6:5c:70:c8:5e:66:
86:e7:76:c0:d4:d6:1d:11:68:69:cb:4e:b7:80:63:a4:c5:02:
d9:66:48:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 14:37:31 2024 by rpki-client on console-ams.rpki-client.org