Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/beqvTok0PTvITJy1qypCD1TYD4w.roa
File: beqvTok0PTvITJy1qypCD1TYD4w.roa (raw, json)
Hash identifier: Kl9rpRmWQpxxjtsrSaSiRaF453zvQIaie5ymwlOmre8=
Subject key identifier: 6D:EA:AF:4E:89:34:3D:3B:C8:4C:9C:B5:AB:2A:42:0F:54:D8:0F:8C
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 018CC6B890B8B3C0B8D8F26D0698FFD980BE
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/beqvTok0PTvITJy1qypCD1TYD4w.roa
Signing time: Mon 01 Jan 2024 20:30:33 +0000
ROA not before: Mon 01 Jan 2024 20:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60413
IP address blocks: 80.79.249.7/32 maxlen: 32
80.79.249.6/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:90:b8:b3:c0:b8:d8:f2:6d:06:98:ff:d9:80:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 20:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6deaaf4e89343d3bc84c9cb5ab2a420f54d80f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ea:db:ec:ec:db:71:d4:54:ae:91:69:e1:e0:
94:2f:3a:e0:c3:2c:0c:07:2a:07:d6:d7:b0:a2:4f:
f8:be:12:1e:95:02:29:2c:49:12:4b:6f:9a:72:5d:
d6:6d:ba:c6:a4:b3:c2:1c:d2:c6:2e:09:f5:cf:96:
96:5a:cf:61:85:8c:15:7d:f0:d8:1e:4f:a2:e5:45:
17:8c:c8:2a:e3:38:52:8f:ea:25:ff:58:e2:fc:eb:
92:7d:62:f8:97:99:eb:d8:4e:e0:37:0c:69:35:e5:
67:97:02:00:7c:6d:05:6d:f4:b5:5f:aa:47:64:ed:
e8:a9:a0:84:ff:a2:55:db:f7:4e:06:0a:8a:1a:f5:
51:0d:e2:7e:eb:f2:c7:6a:bf:3d:c0:d8:43:c3:0a:
80:ca:ff:6a:36:0b:82:b7:bf:f8:fa:58:16:4d:bc:
26:26:4a:2a:70:b6:a0:b9:04:ae:d0:63:a7:35:04:
fc:4c:91:b2:b4:9c:fa:f5:6e:56:88:fa:4d:3f:6e:
ad:90:09:12:21:5c:4d:6f:36:be:14:2e:0b:7d:01:
09:67:42:18:72:bf:25:a4:14:49:a5:6f:e6:37:b2:
93:f0:e3:c1:49:46:23:61:21:dd:85:c1:3a:06:6a:
a9:73:78:aa:29:59:ad:6b:1c:f1:df:44:ee:69:94:
78:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:EA:AF:4E:89:34:3D:3B:C8:4C:9C:B5:AB:2A:42:0F:54:D8:0F:8C
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/beqvTok0PTvITJy1qypCD1TYD4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.249.6/31
Signature Algorithm: sha256WithRSAEncryption
50:7d:8f:1d:4d:3f:87:9e:3d:fa:af:a9:3e:07:ed:4b:0e:e1:
14:07:6b:3a:5d:01:c1:76:2c:0b:e0:91:7a:f9:36:30:8a:83:
b3:1e:d1:87:3e:fd:5c:2f:09:1d:6e:6e:d0:71:c4:4d:65:10:
9d:dd:a8:16:b3:54:0a:5d:10:d5:b2:a8:f6:2a:58:44:f0:d2:
30:e1:0d:6f:22:53:0f:53:ae:0a:a3:e1:34:99:b7:4f:8c:ce:
24:94:f5:58:29:16:a6:93:ac:2d:14:ab:10:40:ce:93:90:19:
4e:2c:a7:86:1d:92:b0:c7:0d:98:7d:b8:89:63:97:51:c9:43:
74:df:57:33:19:16:22:9f:53:02:b9:5d:de:53:e9:03:10:96:
74:cc:68:17:2b:cb:e9:2f:2d:60:29:9f:1a:cb:93:00:80:50:
48:92:a2:83:8d:3b:af:19:b4:6e:20:fd:a2:fe:9a:40:99:14:
71:21:b6:b5:a1:1f:dc:fc:20:f5:de:c1:14:77:12:2e:2f:0d:
f9:00:10:51:09:61:70:3f:3a:bf:72:8b:ec:0b:d5:31:4d:e9:
68:25:b6:0c:32:88:5a:5c:40:47:e6:72:66:05:d5:03:ec:d7:
34:e1:69:90:c0:d3:5e:15:20:d9:9b:97:8d:c5:cc:9a:ea:2e:
b8:6f:5b:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:00:22 2024 by rpki-client on console-fra.rpki-client.org