Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/JAZfCjLWBdWxTBrqrve_xxilNVo.roa
File: JAZfCjLWBdWxTBrqrve_xxilNVo.roa (raw, json)
Hash identifier: RP7h5iZl4zheoIzrUaA/wC8ORHkdch2bzMD5AkS1QLE=
Subject key identifier: 24:06:5F:0A:32:D6:05:D5:B1:4C:1A:EA:AE:F7:BF:C7:18:A5:35:5A
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018CC2DAD4585EF6BE37E58CF26B33ED23FD
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/JAZfCjLWBdWxTBrqrve_xxilNVo.roa
Signing time: Mon 01 Jan 2024 02:29:30 +0000
ROA not before: Mon 01 Jan 2024 02:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51101
IP address blocks: 2a00:4120:8000:c::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:d4:58:5e:f6:be:37:e5:8c:f2:6b:33:ed:23:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 02:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24065f0a32d605d5b14c1aeaaef7bfc718a5355a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:08:58:41:57:60:68:73:dc:e5:5a:b5:57:f7:
b0:1e:17:f6:6b:cf:a7:36:2f:11:2c:f4:a3:cf:74:
56:ad:e3:e2:2b:8a:f3:0c:5d:f3:0e:66:6b:6c:06:
a6:7e:86:39:f4:c1:6d:5d:6b:02:db:eb:39:11:15:
1e:c0:07:e5:26:ed:6e:71:af:41:69:73:af:5a:9f:
41:be:ac:b5:9c:aa:40:f9:5a:f1:70:d7:9d:c5:5a:
de:3f:d3:6c:9d:63:05:6e:e9:7b:99:01:30:9d:be:
97:43:36:f8:a4:44:04:98:5f:dd:37:1e:c8:ea:ec:
92:d8:5a:51:8a:71:65:5a:22:30:82:03:42:9b:6d:
9b:d4:75:87:9a:82:a3:d9:7b:11:1e:b0:ba:e0:47:
f6:95:e4:e4:f7:83:31:19:83:f6:4b:dd:6a:ad:21:
53:cf:67:6d:15:38:08:47:e5:cf:d7:57:83:a4:2b:
54:4b:f1:dc:38:d4:94:5b:54:82:ca:d7:0c:bc:e6:
d0:b4:64:39:27:98:d7:f9:96:bc:4b:72:35:8d:8e:
ba:38:f2:84:72:c5:8f:46:90:a2:bf:da:b8:a4:6d:
74:8d:b7:89:f3:e7:8a:78:d0:ab:7e:c4:99:af:5c:
a5:f4:76:05:c2:7b:97:fb:a0:e3:8a:6c:a1:a7:67:
40:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:06:5F:0A:32:D6:05:D5:B1:4C:1A:EA:AE:F7:BF:C7:18:A5:35:5A
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/JAZfCjLWBdWxTBrqrve_xxilNVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:4120:8000:c::/64
Signature Algorithm: sha256WithRSAEncryption
5e:5d:6b:62:dd:3c:dc:7c:dd:0a:94:f8:3f:a2:b9:a7:c1:25:
13:14:bc:90:5b:fc:09:ba:da:e8:27:6c:16:ae:7a:a5:5e:d8:
28:55:25:e6:a1:24:6b:2f:d3:18:b4:8a:dc:fe:1a:36:fc:cc:
ec:73:e8:1c:9d:1c:6e:e9:7a:4f:7e:22:6e:63:d3:b9:37:e6:
f3:92:04:dc:f9:16:ea:8d:a3:dc:8b:40:bf:d9:ca:1f:7b:b3:
43:1d:f4:f6:1e:18:3b:35:b2:cb:41:fd:ab:a6:85:12:36:4f:
ca:ca:49:64:70:5e:b4:97:3a:be:73:23:b4:d1:a4:ca:06:ff:
cc:a9:51:07:17:09:6c:bb:13:14:52:58:bc:67:f6:1c:d7:96:
c9:e7:96:49:bd:ff:b2:0f:33:4b:b7:d0:bd:b9:bc:4a:f8:3e:
d5:4d:38:d8:bc:f7:56:70:2f:2f:39:fe:6c:58:16:dd:d1:3b:
0d:1f:a5:83:bc:26:32:af:82:7a:8a:07:9a:b3:b6:60:59:f5:
cb:96:2f:bb:54:31:36:d2:fb:07:07:a1:5e:fb:6f:e5:e7:01:
d6:70:51:5c:0c:04:da:f8:6c:d3:90:a8:21:d7:62:23:6d:ec:
c3:5c:4c:3c:68:82:12:a8:4e:44:27:f5:16:2b:69:bb:69:38:
69:49:91:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 20:33:20 2024 by rpki-client on console-fra.rpki-client.org