Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/ilis1cd02WWZjXvKo4g2_X6rJE8.roa
File: ilis1cd02WWZjXvKo4g2_X6rJE8.roa (raw, json)
Hash identifier: aBCiNlDfzf4crhinK6OkrSM3Oe4PL581BiAO+RYHMT0=
Subject key identifier: 8A:58:AC:D5:C7:74:D9:65:99:8D:7B:CA:A3:88:36:FD:7E:AB:24:4F
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 018CC500A48E1255E97CEB294E48B4B97BA1
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/ilis1cd02WWZjXvKo4g2_X6rJE8.roa
Signing time: Mon 01 Jan 2024 12:30:02 +0000
ROA not before: Mon 01 Jan 2024 12:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205267
IP address blocks: 2a12:4946:4040::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:a4:8e:12:55:e9:7c:eb:29:4e:48:b4:b9:7b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 1 12:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a58acd5c774d965998d7bcaa38836fd7eab244f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:53:3f:cf:6b:42:36:b1:4a:75:dc:59:1c:19:
e6:a5:2c:b3:e9:58:38:69:8d:e5:40:84:ae:9b:e3:
ed:70:0a:bd:83:61:8d:89:97:ce:9c:d1:59:16:ab:
01:b8:ab:94:06:d9:50:f1:83:01:dd:0d:5b:1e:3d:
1f:8f:cf:d3:75:1c:4a:64:e2:56:5d:b8:d7:b9:f3:
a3:e0:81:0d:4a:a2:db:f0:34:3c:8a:7d:52:71:5f:
a1:e2:f0:3f:f3:af:3c:d4:90:60:f6:b3:b0:f5:f5:
94:ae:e1:d9:7e:15:0d:df:df:fb:f0:35:cb:a2:ad:
bc:1e:44:2a:23:06:40:7e:fa:d7:44:fb:0d:9b:06:
6a:a9:2c:34:13:f7:bf:1c:a8:ba:e7:da:98:e1:fd:
4d:ec:f2:c1:5e:a9:be:a0:a8:2c:4c:95:83:91:4d:
35:81:e5:07:66:61:a7:62:11:9f:60:cf:e3:99:d9:
ae:d1:6c:0f:f2:11:3b:8c:bf:d5:5d:04:be:57:65:
b0:d3:b4:92:8f:dc:58:ff:ca:87:53:89:07:a3:73:
a7:4f:b8:84:e8:06:0e:b4:62:93:2f:a9:c6:04:fe:
5a:79:a6:76:fb:65:37:89:b3:81:14:11:bb:47:aa:
84:8e:28:51:fd:64:01:f5:2a:28:77:ae:d3:6b:5a:
88:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:58:AC:D5:C7:74:D9:65:99:8D:7B:CA:A3:88:36:FD:7E:AB:24:4F
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/ilis1cd02WWZjXvKo4g2_X6rJE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4946:4040::/44
Signature Algorithm: sha256WithRSAEncryption
66:e8:17:39:ec:fb:53:b3:d6:06:c3:68:a3:4a:fc:29:9d:d0:
90:aa:ba:bf:53:6a:03:f4:b6:63:41:66:5b:6f:8a:29:16:fa:
36:e4:d6:f6:34:02:4b:c4:fd:80:3d:d7:7e:00:08:f5:5b:15:
58:09:67:e3:9c:01:e7:9c:e3:eb:c4:bb:2b:d2:39:9b:5e:ad:
c7:6c:af:5d:e5:b3:01:de:68:28:7f:36:d0:dc:4f:ce:f0:2f:
9f:b2:85:46:dd:4e:5a:8c:1d:bd:ce:d3:1d:5f:38:0f:05:a5:
4b:e3:30:12:50:1a:4a:e6:62:83:3c:31:22:75:29:f5:64:55:
64:1c:43:d5:18:de:64:1e:a6:2b:a1:1f:f1:cb:06:15:16:8b:
b2:2f:c9:c5:a0:61:79:87:11:03:60:ec:64:25:01:18:cc:21:
7c:d7:09:fc:83:52:6c:37:38:2f:03:ff:41:42:80:95:c3:b9:
c5:a5:e1:b8:37:2f:8d:63:1c:62:fe:c6:44:1c:fa:1c:d6:7a:
e0:7f:6c:e6:86:61:7f:22:b4:38:b6:61:c3:4f:91:e5:ef:3d:
0f:f6:fa:ae:d1:ae:71:c1:0e:7a:79:d7:c7:62:cf:88:b0:be:
b8:06:bf:94:d1:47:b7:53:61:92:37:b6:f1:2a:5c:5f:f0:de:
51:eb:e6:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 00:11:21 2024 by rpki-client on console-ams.rpki-client.org