Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/LtuVVRfySSbzXVtC8Pl9nue0AmU.roa
File: LtuVVRfySSbzXVtC8Pl9nue0AmU.roa (raw, json)
Hash identifier: YKl0NhWf3jCKGKRsNTCAOuAqllY25YZSWn2TErqJLMw=
Subject key identifier: 2E:DB:95:55:17:F2:49:26:F3:5D:5B:42:F0:F9:7D:9E:E7:B4:02:65
Certificate issuer: /CN=baaa748ba14a76e5d8a6edacb5426082a56f5e3d
Certificate serial: 0190D75D5F2C03F4D48A281E2BA89C32D9DA
Authority key identifier: BA:AA:74:8B:A1:4A:76:E5:D8:A6:ED:AC:B5:42:60:82:A5:6F:5E:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/LtuVVRfySSbzXVtC8Pl9nue0AmU.roa
Signing time: Sun 21 Jul 2024 22:15:39 +0000
ROA not before: Sun 21 Jul 2024 22:15:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214603
IP address blocks: 2a13:ccc6:10::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/uqp0i6FKduXYpu2stUJggqVvXj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/uqp0i6FKduXYpu2stUJggqVvXj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d7:5d:5f:2c:03:f4:d4:8a:28:1e:2b:a8:9c:32:d9:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa748ba14a76e5d8a6edacb5426082a56f5e3d
Validity
Not Before: Jul 21 22:15:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2edb955517f24926f35d5b42f0f97d9ee7b40265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ff:30:50:6e:1f:95:f3:63:8b:c8:4d:94:13:
a9:89:75:1e:a8:85:45:32:e4:3c:c9:29:c0:2a:76:
47:29:a9:09:93:83:d7:d0:96:92:fe:e9:09:97:f7:
de:f3:3b:d0:11:24:3e:5c:0d:ce:7d:d2:b3:1b:e7:
ae:4f:84:3a:2a:f4:a6:0d:25:ea:de:33:b2:b7:83:
71:33:03:9c:82:54:80:65:c6:4c:c6:81:60:fd:5a:
9d:d6:bc:9d:f2:7a:b5:f3:be:f1:a6:04:32:9c:94:
de:89:9e:7e:8a:69:d8:74:aa:4b:51:70:e7:e5:65:
92:c4:f3:f2:a3:3f:08:40:0e:c0:b7:e6:9d:d1:c6:
c9:4a:24:4f:57:72:6b:24:39:40:96:d2:18:b8:22:
12:97:6b:7a:ff:26:db:f4:30:e2:a8:c0:92:b0:0b:
38:b2:23:b1:f6:5c:13:ae:c5:13:25:c3:25:ba:63:
2a:6c:10:04:5c:c2:74:cd:9c:ab:08:52:20:94:5a:
34:7d:b6:e3:4d:c3:17:61:e5:ed:79:f2:45:94:be:
ae:5b:e1:39:79:7b:b2:5d:5c:91:b4:ee:0d:27:51:
42:50:a2:9b:1d:5b:00:ee:d1:8b:f2:ae:a7:2b:45:
dc:e6:89:3b:7c:6d:f6:2d:a0:af:a7:5d:36:0e:29:
ba:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:DB:95:55:17:F2:49:26:F3:5D:5B:42:F0:F9:7D:9E:E7:B4:02:65
X509v3 Authority Key Identifier:
keyid:BA:AA:74:8B:A1:4A:76:E5:D8:A6:ED:AC:B5:42:60:82:A5:6F:5E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/LtuVVRfySSbzXVtC8Pl9nue0AmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/uqp0i6FKduXYpu2stUJggqVvXj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ccc6:10::/44
Signature Algorithm: sha256WithRSAEncryption
9e:31:af:11:28:58:86:9c:f3:d7:3c:b0:f2:69:70:47:02:3f:
30:b0:62:7f:78:53:76:cb:02:33:9a:df:6d:c2:47:0a:7d:29:
31:28:75:72:15:0d:52:73:2a:f9:bb:17:cc:cd:a9:97:3a:f5:
a3:76:57:aa:55:4a:a0:61:29:cc:33:27:34:dd:43:32:e4:77:
a0:4e:d7:55:d1:90:f4:3b:08:fa:f2:eb:a2:cc:2e:bd:8b:f2:
e4:8d:fe:d0:0d:fa:d7:2c:17:10:bb:73:34:02:bc:63:fc:1d:
37:b1:9d:dd:83:a5:54:24:e0:29:df:8d:99:07:c9:61:14:55:
27:60:e8:5f:cf:bb:ff:b5:bb:88:38:e8:ab:99:cc:43:10:9a:
e0:98:5b:14:dd:43:e4:e4:25:15:30:36:1b:c2:58:04:36:45:
fb:91:ac:28:46:a3:25:53:02:8a:f4:bd:a3:94:e4:0e:da:73:
89:ba:dc:fa:fc:b6:65:ad:c9:50:d5:6f:97:04:06:fd:14:3c:
e6:67:65:ae:60:ac:9e:66:9a:64:04:0f:e0:82:b8:44:50:d6:
e8:dc:e4:a0:43:09:11:0c:25:cd:ce:d5:78:0b:2b:00:00:46:
8f:ce:12:58:d8:f4:27:8b:d2:f2:8a:d5:e3:4c:8a:79:1f:20:
64:1a:ab:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:27:47 2024 by rpki-client on console-ams.rpki-client.org