Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/eeb98f-cf11-449d-a9bb-8d44de54cfa7/1/90Ft_n5Lp5pJTloM7B0KAefkSvI.roa
File: 90Ft_n5Lp5pJTloM7B0KAefkSvI.roa (raw, json)
Hash identifier: QHz7PA1of0BvyI7ahNStMMmv99OTW8noZyIRqzh8aHc=
Subject key identifier: F7:41:6D:FE:7E:4B:A7:9A:49:4E:5A:0C:EC:1D:0A:01:E7:E4:4A:F2
Certificate issuer: /CN=96545bad39625aea67903f8183f9fbbaeac6c88d
Certificate serial: 018CC8DEBFDA17066D404F100A3F3D35B8E4
Authority key identifier: 96:54:5B:AD:39:62:5A:EA:67:90:3F:81:83:F9:FB:BA:EA:C6:C8:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/llRbrTliWupnkD-Bg_n7uurGyI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/eeb98f-cf11-449d-a9bb-8d44de54cfa7/1/90Ft_n5Lp5pJTloM7B0KAefkSvI.roa
Signing time: Tue 02 Jan 2024 06:31:30 +0000
ROA not before: Tue 02 Jan 2024 06:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 680
IP address blocks: 141.82.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/eeb98f-cf11-449d-a9bb-8d44de54cfa7/1/llRbrTliWupnkD-Bg_n7uurGyI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/eeb98f-cf11-449d-a9bb-8d44de54cfa7/1/llRbrTliWupnkD-Bg_n7uurGyI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/llRbrTliWupnkD-Bg_n7uurGyI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:bf:da:17:06:6d:40:4f:10:0a:3f:3d:35:b8:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96545bad39625aea67903f8183f9fbbaeac6c88d
Validity
Not Before: Jan 2 06:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7416dfe7e4ba79a494e5a0cec1d0a01e7e44af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e3:ea:c0:f1:e9:51:19:0e:b1:d4:de:77:87:
d9:7f:c1:ac:cc:23:e0:f8:6a:58:8c:7c:69:6f:1c:
88:0b:01:a8:b6:d5:3d:8e:27:1f:c0:f3:06:6a:1d:
60:c0:0f:f4:92:f1:8a:57:57:49:80:d2:b1:d4:47:
d1:26:24:af:32:e1:2b:08:90:6c:d1:3f:27:df:e0:
3a:4d:a5:ab:ba:ff:2b:2f:c6:3a:05:e0:19:1d:56:
fd:1f:93:65:49:27:b3:27:a0:5d:9c:86:3f:01:be:
18:37:8d:a6:b0:4c:f2:99:9e:ba:c3:5d:98:2a:5f:
93:9b:f7:8c:0e:88:28:9b:ee:15:55:96:40:6a:6f:
87:ec:21:4e:f3:23:10:0c:51:f3:0e:b2:2c:4b:a2:
a6:b6:b8:99:e5:64:5c:aa:2c:8c:fd:a8:c5:b2:a3:
dc:73:03:ac:70:c1:dd:7f:85:79:d0:79:8b:f0:80:
bd:38:e1:3c:60:ac:84:37:8d:1e:7a:e1:2e:38:d9:
b8:3b:32:44:2b:9e:1e:93:e8:18:17:ba:23:e3:cd:
ec:c0:ee:1f:51:b1:26:85:e2:bf:af:54:ee:a5:9d:
c7:af:6b:f0:be:28:e4:1e:a2:61:3d:c2:24:4a:63:
30:a1:13:07:49:7e:ff:03:6a:bb:c8:45:4b:cb:18:
98:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:41:6D:FE:7E:4B:A7:9A:49:4E:5A:0C:EC:1D:0A:01:E7:E4:4A:F2
X509v3 Authority Key Identifier:
keyid:96:54:5B:AD:39:62:5A:EA:67:90:3F:81:83:F9:FB:BA:EA:C6:C8:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/llRbrTliWupnkD-Bg_n7uurGyI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eeb98f-cf11-449d-a9bb-8d44de54cfa7/1/90Ft_n5Lp5pJTloM7B0KAefkSvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eeb98f-cf11-449d-a9bb-8d44de54cfa7/1/llRbrTliWupnkD-Bg_n7uurGyI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.82.0.0/16
Signature Algorithm: sha256WithRSAEncryption
29:32:16:d6:9a:30:7a:b5:88:56:39:13:56:c2:c4:70:5e:0e:
64:4c:d7:bf:2a:c2:99:7d:0f:6a:8e:a9:2f:36:87:27:a0:21:
0f:58:89:b8:9a:7a:9a:ca:e0:7a:69:05:51:a6:8c:f8:ef:64:
ae:e7:0b:90:c0:4a:66:df:f8:b3:ab:6c:16:ac:fb:bd:f3:19:
da:f9:4d:6d:f5:a8:2c:73:a6:9e:0b:33:50:9f:6c:c7:cb:15:
1c:ba:82:74:b2:20:c9:68:1b:d8:96:4a:d0:20:ee:ef:0f:a3:
e4:3e:cc:d8:c6:02:27:a3:ba:ec:e6:48:7e:f3:0b:6e:e9:50:
59:55:f7:48:2b:cf:df:21:e0:77:39:16:fa:08:e5:52:85:5c:
d2:cc:04:5a:4c:10:4e:01:1f:6e:4a:af:58:07:3d:02:6a:eb:
fc:d7:97:04:22:0c:62:ca:e4:b3:64:6c:59:e9:99:58:fd:84:
e3:b5:69:7a:63:46:c0:29:f0:6a:ab:c4:7e:69:29:84:02:97:
2d:7f:3c:9f:e7:e7:57:49:b4:a2:2c:ea:84:53:5d:72:1e:7b:
8d:7d:c0:a4:81:fc:9c:6f:78:0e:33:7c:1d:17:03:75:dc:9e:
8f:d8:dd:71:39:aa:be:7f:cd:14:0d:69:12:84:4f:ad:fe:e1:
89:28:f4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:52:10 2024 by rpki-client on console-fra.rpki-client.org