Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/hLZV8f_bE5EGAnQ10-aJ97wHXD8.roa
File: hLZV8f_bE5EGAnQ10-aJ97wHXD8.roa (raw, json)
Hash identifier: ufUj/VmSDA0KkIINkaMX1PUMsqHadd1/9LlnG3qBTmc=
Subject key identifier: 84:B6:55:F1:FF:DB:13:91:06:02:74:35:D3:E6:89:F7:BC:07:5C:3F
Certificate issuer: /CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Certificate serial: 0190D52968A461FFA08FFA97945DD04C3625
Authority key identifier: C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/hLZV8f_bE5EGAnQ10-aJ97wHXD8.roa
Signing time: Sun 21 Jul 2024 11:59:39 +0000
ROA not before: Sun 21 Jul 2024 11:59:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215849
IP address blocks: 2a07:2486:e000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/wjbowhbwWp2eAyfxIivxIZirpdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/wjbowhbwWp2eAyfxIivxIZirpdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d5:29:68:a4:61:ff:a0:8f:fa:97:94:5d:d0:4c:36:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Validity
Not Before: Jul 21 11:59:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84b655f1ffdb139106027435d3e689f7bc075c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:42:fc:1f:0a:27:1b:c9:c5:5a:a1:1e:e7:3f:
91:3a:da:ae:79:c1:50:ad:62:62:27:8c:13:cb:e3:
d1:a7:42:42:24:73:3d:dd:86:f8:b6:fa:e1:30:60:
18:4e:92:3c:94:99:2a:d7:bf:31:e6:b0:fd:b4:7d:
41:cd:15:b5:84:b3:ec:51:6b:87:13:38:4d:12:c2:
da:f0:bf:b4:6e:65:02:c5:bb:b5:8a:76:41:41:bd:
98:32:48:99:ac:6e:0c:88:d7:89:7e:96:2f:a8:0d:
67:4f:62:8b:98:66:cd:6a:cf:15:64:48:2f:64:d8:
7b:be:94:ae:68:bb:1e:6f:2b:f4:a1:7b:5a:84:61:
86:63:cd:f5:f6:b7:80:51:5f:96:3b:14:5e:83:b3:
88:46:63:56:0b:0e:1c:0c:44:d0:b7:1e:92:36:10:
3f:93:47:96:9b:44:45:f8:ec:8d:7c:1b:06:c5:a2:
44:e8:fe:8d:80:f7:a1:e9:b8:a6:a2:1b:49:e4:2f:
03:ed:2d:b6:b2:0b:19:09:ff:96:18:f7:31:b0:06:
8c:49:f2:35:3f:b2:4a:74:d3:ba:c6:bd:78:ce:04:
c6:ef:4e:12:df:76:43:e3:15:ea:d6:68:42:7a:9a:
73:eb:5f:df:0d:3f:4d:2b:33:17:2e:f6:c5:fe:a8:
ff:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B6:55:F1:FF:DB:13:91:06:02:74:35:D3:E6:89:F7:BC:07:5C:3F
X509v3 Authority Key Identifier:
keyid:C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/hLZV8f_bE5EGAnQ10-aJ97wHXD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/wjbowhbwWp2eAyfxIivxIZirpdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2486:e000::/36
Signature Algorithm: sha256WithRSAEncryption
3f:1d:10:dc:ae:91:81:8d:b1:7c:41:da:33:2a:a3:99:9c:3f:
0c:b1:c9:d8:6f:a5:6a:90:67:fd:d3:2a:b3:0b:25:2e:19:1a:
f0:ea:59:69:14:2e:86:66:82:7f:d2:75:e8:6c:69:f5:e9:1a:
b9:e8:06:54:0a:39:91:e8:75:41:4e:74:48:45:74:7f:d2:82:
2d:73:7b:e4:d9:a0:03:40:88:7a:fb:ea:25:b3:ec:6f:b9:49:
3d:fa:53:b9:3b:31:6c:32:2e:37:e7:54:ed:89:d3:c6:4d:c4:
e2:b6:50:9f:e1:dc:18:14:e8:a1:bb:a1:d9:81:dc:a5:92:4c:
b9:a1:9c:52:3f:9f:29:af:15:d0:f5:4c:a8:a8:6d:f8:5a:df:
a6:39:b7:0d:d6:2a:f5:86:3a:d5:98:c9:55:8c:7d:49:10:9a:
04:fd:03:95:70:77:3b:2e:95:71:17:14:5f:85:67:b2:84:46:
83:af:e1:fa:1b:57:01:19:5d:6a:2d:35:fa:b7:17:2a:36:2a:
72:84:08:a3:47:21:8a:39:09:83:af:97:d3:32:a1:59:c1:0a:
2c:99:ac:3f:4b:ff:75:1e:b1:c1:f8:ac:fb:ed:33:5c:c5:d1:
6b:34:09:48:30:17:a6:d7:e9:0b:ee:c1:8e:53:14:b3:88:27:
d2:29:2c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 23:43:06 2024 by rpki-client on console-fra.rpki-client.org