Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/DeyoD7yMtTb8r-HmExfgq8nPTO4.roa
File: DeyoD7yMtTb8r-HmExfgq8nPTO4.roa (raw, json)
Hash identifier: LE6g2TqUd6/Gdm5YBUVndn2plTnQ6YrDNCeb06ZDvyM=
Subject key identifier: 0D:EC:A8:0F:BC:8C:B5:36:FC:AF:E1:E6:13:17:E0:AB:C9:CF:4C:EE
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 0191EB074ABABDBE91B7FD4945075561E78F
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/DeyoD7yMtTb8r-HmExfgq8nPTO4.roa
Signing time: Fri 13 Sep 2024 10:56:49 +0000
ROA not before: Fri 13 Sep 2024 10:56:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206873
IP address blocks: 2a11:6507::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 12:27:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:eb:07:4a:ba:bd:be:91:b7:fd:49:45:07:55:61:e7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Sep 13 10:56:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0deca80fbc8cb536fcafe1e61317e0abc9cf4cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e4:6d:13:ff:b1:a6:a2:43:11:50:b4:5f:67:
ce:9e:98:e2:3a:78:d5:a6:46:2b:43:dc:74:9c:70:
2e:c1:15:df:9e:01:96:cd:a4:90:16:40:85:f5:cc:
b8:fc:20:66:d2:35:e4:68:a9:63:60:0b:a8:68:6b:
a9:40:62:e3:d3:90:c2:3b:89:f0:cb:b5:bb:3b:6b:
c4:bd:6f:5c:91:03:d8:76:33:5d:22:07:c8:96:76:
0c:75:9a:80:0d:93:31:7f:92:e4:87:af:23:bc:dc:
30:d8:af:20:99:dd:2e:92:88:e7:a3:b6:e0:04:db:
28:14:1e:22:e1:bd:d0:1e:72:23:98:80:b4:f5:50:
8c:5b:69:27:e0:fa:01:55:29:ed:6c:38:66:ec:a0:
f5:a4:94:84:ff:0e:d0:fc:5b:af:bb:94:a0:7c:cd:
bc:bb:b1:af:22:91:e4:c0:ee:17:a2:e1:0e:57:81:
43:0e:e1:9a:9f:67:e9:b5:1e:b3:05:20:42:52:32:
68:e6:7c:5a:48:a9:b4:c5:72:cc:0c:7c:49:7a:98:
41:e8:a3:a0:16:99:7c:8e:8d:b6:4d:66:b4:5d:17:
49:82:6a:58:01:41:37:11:a3:90:4d:28:65:2b:b4:
6d:69:68:cf:ae:29:3b:07:b0:59:36:d7:d0:6c:6e:
d0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EC:A8:0F:BC:8C:B5:36:FC:AF:E1:E6:13:17:E0:AB:C9:CF:4C:EE
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/DeyoD7yMtTb8r-HmExfgq8nPTO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:6507::/32
Signature Algorithm: sha256WithRSAEncryption
34:e8:17:67:0f:ff:c2:da:e2:8b:84:86:04:e4:34:5d:e1:76:
30:fb:60:65:05:8c:89:64:3e:92:9a:81:7c:ae:3a:1e:ef:db:
8d:73:85:8a:50:cc:dd:54:62:11:38:12:b5:57:4e:da:7a:9a:
05:d0:b8:d4:61:e9:35:5f:6e:e8:6c:b1:e9:1f:73:9a:05:85:
19:2e:79:6d:e2:b5:52:64:a6:c7:8b:d7:39:95:b2:40:c5:3e:
53:2e:c6:5d:21:10:7c:eb:ba:0f:2b:ca:1d:e8:b7:49:7b:ef:
05:66:ec:07:f7:68:61:b5:a0:55:cc:be:df:c8:31:b0:47:2a:
65:f8:08:df:f8:21:8b:1d:6f:8f:9f:b4:d1:c0:a2:53:06:59:
b3:c2:55:c2:d1:f0:a8:62:b9:4c:eb:3c:2f:14:32:e8:53:a6:
3e:f4:c4:5e:b5:8e:60:aa:79:3a:43:6d:9d:4b:c4:8e:ba:2a:
9c:1d:b3:3e:94:f0:80:7e:29:34:ff:3f:9d:59:70:24:50:ab:
4c:a0:1e:ff:fd:0c:98:fd:72:d9:e5:4e:5b:85:53:ae:33:cb:
fa:ec:f1:c3:de:bb:52:c3:7a:6c:ff:98:68:a7:11:88:4f:0b:
6d:21:0c:89:c9:66:9b:5e:93:c1:b9:5c:12:16:f1:cb:dc:85:
e6:68:50:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:00:35 2024 by rpki-client on console-ams.rpki-client.org