Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/LiBE6qWJhjMDYCBuk-2ZFf5yWRA.roa
File: LiBE6qWJhjMDYCBuk-2ZFf5yWRA.roa (raw, json)
Hash identifier: WWYtPDApk0ESVpsKfMs1lSGf4iAdHJWvOYZ0e8fUMTY=
Subject key identifier: 2E:20:44:EA:A5:89:86:33:03:60:20:6E:93:ED:99:15:FE:72:59:10
Certificate issuer: /CN=c874132c12f86995fe2893e4dea72638d2601079
Certificate serial: 019306A2A063332CBCC36BA5D2F14765D52F
Authority key identifier: C8:74:13:2C:12:F8:69:95:FE:28:93:E4:DE:A7:26:38:D2:60:10:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHQTLBL4aZX-KJPk3qcmONJgEHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/LiBE6qWJhjMDYCBuk-2ZFf5yWRA.roa
Signing time: Thu 07 Nov 2024 12:39:01 +0000
ROA not before: Thu 07 Nov 2024 12:39:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 128.127.76.0/24 maxlen: 24
128.127.78.0/24 maxlen: 24
128.127.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/yHQTLBL4aZX-KJPk3qcmONJgEHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/yHQTLBL4aZX-KJPk3qcmONJgEHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yHQTLBL4aZX-KJPk3qcmONJgEHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:06:a2:a0:63:33:2c:bc:c3:6b:a5:d2:f1:47:65:d5:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c874132c12f86995fe2893e4dea72638d2601079
Validity
Not Before: Nov 7 12:39:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e2044eaa58986330360206e93ed9915fe725910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:41:6b:96:fc:c6:bf:2c:0f:e8:30:c0:96:8b:
00:7a:9b:23:19:e6:9e:95:8a:3b:cd:36:1b:63:a3:
1f:04:cc:26:48:be:76:a4:74:d4:ad:d8:33:1f:b8:
a7:fd:34:d6:9a:d2:87:15:43:1e:ae:66:ad:9e:99:
7b:8c:92:28:c2:c3:44:4c:07:44:c9:ad:74:2e:68:
5e:88:73:ab:aa:38:5c:9b:15:24:49:fb:81:0a:52:
ab:89:5c:19:5b:49:c3:8e:58:f9:50:5d:9d:da:40:
37:55:ca:7e:db:ad:20:25:47:1e:7b:bc:16:f5:77:
53:af:c0:75:42:37:66:6a:6a:d2:14:8f:ef:6e:86:
2a:ee:25:12:d5:58:78:48:3e:02:76:ec:72:cb:af:
dc:f6:d9:dc:39:9e:e3:1d:53:fa:2b:ee:6f:0f:07:
16:b5:5e:4e:c9:97:a6:52:1e:f2:3f:00:3e:0f:ce:
fa:d5:d0:fd:bc:26:1c:01:d4:61:a3:7d:b1:06:dc:
6c:82:38:54:2b:4a:1c:1d:70:cc:88:f9:f2:1d:93:
4f:91:78:7b:98:5a:30:f2:78:8c:50:8b:f3:d6:2c:
e2:bb:b3:9d:7d:ac:4c:de:7a:17:5b:5a:b9:45:d8:
24:7d:58:6e:2c:2a:f5:9d:70:71:bd:3a:74:8e:0c:
e9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:20:44:EA:A5:89:86:33:03:60:20:6E:93:ED:99:15:FE:72:59:10
X509v3 Authority Key Identifier:
keyid:C8:74:13:2C:12:F8:69:95:FE:28:93:E4:DE:A7:26:38:D2:60:10:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHQTLBL4aZX-KJPk3qcmONJgEHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/LiBE6qWJhjMDYCBuk-2ZFf5yWRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/yHQTLBL4aZX-KJPk3qcmONJgEHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.127.76.0/24
128.127.78.0/23
Signature Algorithm: sha256WithRSAEncryption
90:1c:7d:5e:5e:77:ed:53:bc:f0:ca:ba:49:68:e8:9d:37:8e:
f7:f7:c7:ba:9c:a0:15:a4:4d:af:73:be:08:ed:0b:fc:56:cf:
f1:93:2f:89:7d:14:48:83:d7:56:74:af:9e:bd:b5:ac:97:7d:
6f:e3:9d:20:0d:3a:cb:6e:69:bd:8a:9c:91:f0:8b:b5:6a:f2:
45:78:d5:fb:f5:8e:03:83:08:c6:3d:f1:63:46:c6:01:d6:7d:
04:97:f6:7e:fd:12:bd:2f:2f:4e:a5:8a:e6:cb:c3:ec:e6:e1:
1d:bd:c5:04:c9:ee:e9:bb:06:66:a2:33:37:e6:01:7c:fd:35:
38:81:5b:de:80:91:96:fc:42:ed:fe:56:d8:68:27:fb:7a:54:
c1:44:c8:93:d1:15:80:6a:8a:35:69:99:16:f4:41:01:31:cb:
84:b3:d7:2f:b6:44:f3:4f:1c:a9:19:f9:24:73:96:2d:97:0d:
8a:77:c0:c2:84:2e:ea:68:6e:68:cd:34:11:fa:59:4b:d3:e9:
12:46:bf:e6:77:f6:a8:30:ec:0a:b2:e5:a7:15:f6:a3:90:e8:
ab:62:8a:29:b7:f9:bf:6c:44:86:72:b3:b6:a2:f2:5d:24:6b:
ef:54:ce:d8:0a:fc:2f:e0:b1:50:a7:54:bf:ff:d7:0b:9f:62:
d8:9f:d5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:54:29 2024 by rpki-client on console-ams.rpki-client.org