Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/5WVBdwOfzwgOUyZfq0m4R4HdWQI.roa
File: 5WVBdwOfzwgOUyZfq0m4R4HdWQI.roa (raw, json)
Hash identifier: 0/+EPg8UNvoNELEKe0Cr6PjreVjY/NVFskb5qDwGyJc=
Subject key identifier: E5:65:41:77:03:9F:CF:08:0E:53:26:5F:AB:49:B8:47:81:DD:59:02
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 018CC500A5547D334222F2C337FEC391F592
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/5WVBdwOfzwgOUyZfq0m4R4HdWQI.roa
Signing time: Mon 01 Jan 2024 12:30:03 +0000
ROA not before: Mon 01 Jan 2024 12:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211088
IP address blocks: 2a12:4946:a000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:a5:54:7d:33:42:22:f2:c3:37:fe:c3:91:f5:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 1 12:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5654177039fcf080e53265fab49b84781dd5902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4d:5d:c2:74:1b:dd:bc:f5:f6:77:e2:40:4f:
70:f3:07:d0:62:4c:ec:02:42:cb:d8:48:61:93:0a:
ef:44:c9:b8:a8:d6:10:72:e5:18:62:4d:fe:36:1d:
87:8c:fc:a1:31:4a:e6:f4:a0:b9:3e:ad:0f:7e:2f:
e9:e9:c5:cf:c3:28:52:0e:44:08:23:8e:2a:b5:86:
fe:80:23:26:22:c2:ed:37:8e:03:dc:2f:88:3d:4b:
99:c9:a9:7b:3c:d9:9d:dc:2c:f7:15:41:73:da:d8:
b3:57:08:8f:6c:56:1f:54:fe:af:3b:ed:c0:50:6d:
b2:51:47:01:4d:63:b1:69:3e:23:f9:a5:6a:40:a8:
97:14:8f:25:1c:23:0b:8d:97:17:1e:2a:7a:cf:3d:
1e:72:e5:20:82:6c:8e:b3:27:33:c7:58:0b:9e:f9:
63:f9:89:54:96:0c:39:43:6c:84:fc:8a:f4:bb:aa:
cd:65:9b:8e:9f:43:50:cf:ff:a1:99:46:89:62:8f:
df:d4:f7:a7:57:d3:d1:17:b0:a2:20:2e:87:51:af:
b5:59:1b:c5:7d:9b:20:9a:38:86:34:fe:6d:fa:f6:
9b:cc:10:38:a0:ca:7d:d6:e5:46:26:22:bd:69:5b:
43:80:e4:30:49:33:6e:0e:c6:38:cf:23:ad:dd:77:
cb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:65:41:77:03:9F:CF:08:0E:53:26:5F:AB:49:B8:47:81:DD:59:02
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/5WVBdwOfzwgOUyZfq0m4R4HdWQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4946:a000::/40
Signature Algorithm: sha256WithRSAEncryption
b2:a4:01:7d:e6:17:24:65:38:a9:34:3d:81:b7:f0:36:66:a5:
77:e5:f6:72:9e:e5:fe:94:58:a6:44:86:d5:d7:02:2d:19:5e:
50:2b:ff:4c:10:8f:88:47:b7:6e:3b:06:3d:2e:e5:90:0c:21:
fb:cf:80:eb:82:19:22:2b:81:71:60:e5:69:a2:51:cf:08:c4:
f3:5e:f8:ad:1a:f2:5a:c2:cf:63:4b:4d:53:98:cd:e8:5d:2c:
75:19:8e:91:88:a4:d4:83:94:0e:9c:56:23:81:e5:c4:6b:89:
f4:a8:f2:4a:be:67:79:89:52:9c:28:d4:cb:16:78:f8:5f:35:
b2:b0:72:e2:94:95:28:aa:4d:8b:35:b5:b5:9a:14:dc:31:b1:
fd:41:63:81:0d:13:1c:d9:89:24:75:d7:c8:cf:34:e0:a9:54:
4a:22:04:21:8c:d8:1e:2c:9c:4c:fe:8e:ce:72:85:6b:6c:f5:
d7:02:1d:da:08:56:80:4a:2d:67:6c:9d:73:9a:75:12:9d:c4:
08:a4:04:b9:de:38:7a:c5:2b:0e:5a:c8:b6:44:49:e4:a9:c5:
2d:b6:57:69:7c:d1:65:49:e4:b7:e8:3e:53:75:b3:89:bd:e0:
8d:c6:4c:99:fe:c7:9f:59:23:2d:ce:8f:e5:9e:2e:a9:67:01:
96:88:d6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 01:17:21 2024 by rpki-client on console-fra.rpki-client.org