Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/6w9lU3aJa1ckQuutgHF9TWJTmDg.roa
File: 6w9lU3aJa1ckQuutgHF9TWJTmDg.roa (raw, json)
Hash identifier: JuAwwU9CzpMK56mGnGFCpzhq8BB0uVWikvXGZ101fGc=
Subject key identifier: EB:0F:65:53:76:89:6B:57:24:42:EB:AD:80:71:7D:4D:62:53:98:38
Certificate issuer: /CN=2cba355669b4f9b9035f05b1fba211ef8696101d
Certificate serial: 018CC4933DCE350996D9C847EB4DDFF6E8F1
Authority key identifier: 2C:BA:35:56:69:B4:F9:B9:03:5F:05:B1:FB:A2:11:EF:86:96:10:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LLo1Vmm0-bkDXwWx-6IR74aWEB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/6w9lU3aJa1ckQuutgHF9TWJTmDg.roa
Signing time: Mon 01 Jan 2024 10:30:33 +0000
ROA not before: Mon 01 Jan 2024 10:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202886
IP address blocks: 2001:678:158::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/LLo1Vmm0-bkDXwWx-6IR74aWEB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/LLo1Vmm0-bkDXwWx-6IR74aWEB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/LLo1Vmm0-bkDXwWx-6IR74aWEB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:3d:ce:35:09:96:d9:c8:47:eb:4d:df:f6:e8:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cba355669b4f9b9035f05b1fba211ef8696101d
Validity
Not Before: Jan 1 10:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb0f655376896b572442ebad80717d4d62539838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a6:cc:6e:94:eb:63:ef:6a:82:86:18:26:cc:
e2:2c:1c:c9:78:5e:53:1d:db:db:db:82:b6:56:98:
dc:9a:c4:8d:fd:a0:95:04:cc:ae:9e:4d:30:0d:c9:
ba:d7:6d:71:36:49:4c:ab:02:01:12:95:f6:0e:44:
dc:81:d4:3a:0e:82:e5:57:3e:34:11:54:81:b7:3e:
a7:d9:2b:0c:9f:e9:9d:44:8a:9c:32:bc:d7:20:4d:
f1:94:b8:08:16:c3:38:18:7f:3d:04:9f:7c:c7:dd:
3a:50:d1:d7:8a:2c:c2:fc:56:b8:69:b7:f0:c0:c2:
8f:2d:72:58:5d:97:50:30:9b:ab:5b:be:e6:6d:11:
70:e4:eb:bd:31:01:53:dc:e1:a0:14:1b:fe:66:10:
18:ab:02:cd:f2:71:0c:9b:bb:a5:04:08:97:d8:b9:
a5:7c:97:5f:66:77:68:8e:7a:36:e1:7d:2e:73:ab:
b5:ef:2c:e6:f0:3b:f1:0c:56:ec:9b:6c:e0:78:00:
60:87:58:8f:7c:54:ab:fc:b6:9a:99:2e:1d:56:c3:
8e:26:32:1b:c4:36:dc:2d:bb:af:87:3a:8a:4b:3b:
00:95:d8:78:2f:4e:b6:59:30:1c:9a:0e:59:a9:d7:
4b:e2:5e:7a:ae:08:9c:a3:28:7c:87:cf:3b:9b:44:
c6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:0F:65:53:76:89:6B:57:24:42:EB:AD:80:71:7D:4D:62:53:98:38
X509v3 Authority Key Identifier:
keyid:2C:BA:35:56:69:B4:F9:B9:03:5F:05:B1:FB:A2:11:EF:86:96:10:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LLo1Vmm0-bkDXwWx-6IR74aWEB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/6w9lU3aJa1ckQuutgHF9TWJTmDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/LLo1Vmm0-bkDXwWx-6IR74aWEB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:158::/48
Signature Algorithm: sha256WithRSAEncryption
19:47:72:0c:fc:d2:a2:ed:6b:80:35:c3:de:06:03:d8:ae:fd:
44:c4:21:2e:e2:7b:4c:d5:65:be:67:5d:35:7b:30:4e:e9:d2:
88:61:cc:7e:d1:14:8b:3b:da:44:c0:d2:ef:3f:a6:3c:6c:75:
0d:fb:ca:2f:b5:34:e7:e6:3c:17:ec:4b:71:5e:9a:48:d8:de:
e0:0c:31:17:01:c5:8b:70:17:f6:86:54:3b:ba:77:97:fc:b1:
97:2e:de:c8:ea:10:2a:54:9e:64:92:5f:e8:80:0c:bb:96:f7:
82:f7:60:52:2f:72:8f:84:b4:c9:7f:34:87:38:ed:94:6e:c0:
78:32:09:e8:aa:41:d9:5f:81:e8:98:0e:66:e8:e1:a7:60:a3:
25:c7:f8:4f:e1:99:a1:b4:eb:e6:92:ad:c2:89:fb:7c:b7:db:
e8:dc:c5:b3:34:3f:2e:2a:32:59:18:45:eb:67:87:0b:44:0a:
c1:8a:72:75:af:a7:8b:bf:3b:df:d2:07:05:e1:47:ce:6b:09:
c0:28:42:31:1e:b6:6c:81:33:f1:b3:fb:0d:03:18:a5:f4:9b:
bc:02:41:76:70:15:90:6a:58:77:f6:91:7a:2c:f4:e3:45:05:
6b:d9:99:a0:08:09:13:cd:fb:2d:78:b7:8f:64:0d:21:81:79:
45:3a:ed:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:32 2024 by rpki-client on console-fra.rpki-client.org