Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/42c355-585a-48bb-9e4a-a47540fed4b9/1/Ve06aMGO_yCOFriRdzVySCk3bVU.roa
File: Ve06aMGO_yCOFriRdzVySCk3bVU.roa (raw, json)
Hash identifier: izQ8FspoYxDeXWWnEFXck8zDU6UGNo1GLtBzbGxNTMw=
Subject key identifier: 55:ED:3A:68:C1:8E:FF:20:8E:16:B8:91:77:35:72:48:29:37:6D:55
Certificate issuer: /CN=d68971ea1d22b5ecda1a9759f05c26c8c56a468c
Certificate serial: 018CC56ECC3FE3D5A90E7253F9F1F123ED7B
Authority key identifier: D6:89:71:EA:1D:22:B5:EC:DA:1A:97:59:F0:5C:26:C8:C5:6A:46:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1olx6h0itezaGpdZ8FwmyMVqRow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/42c355-585a-48bb-9e4a-a47540fed4b9/1/Ve06aMGO_yCOFriRdzVySCk3bVU.roa
Signing time: Mon 01 Jan 2024 14:30:21 +0000
ROA not before: Mon 01 Jan 2024 14:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208614
IP address blocks: 2001:678:aa0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/42c355-585a-48bb-9e4a-a47540fed4b9/1/1olx6h0itezaGpdZ8FwmyMVqRow.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/42c355-585a-48bb-9e4a-a47540fed4b9/1/1olx6h0itezaGpdZ8FwmyMVqRow.mft
rsync://rpki.ripe.net/repository/DEFAULT/1olx6h0itezaGpdZ8FwmyMVqRow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:cc:3f:e3:d5:a9:0e:72:53:f9:f1:f1:23:ed:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68971ea1d22b5ecda1a9759f05c26c8c56a468c
Validity
Not Before: Jan 1 14:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55ed3a68c18eff208e16b8917735724829376d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e4:cc:ee:42:cb:c4:4a:87:98:37:41:49:9e:
af:39:ee:6a:a0:67:c9:4a:a6:c9:22:1a:89:6e:58:
77:ee:9c:66:62:a0:ee:a3:7f:52:2a:7b:1f:8c:b0:
7e:8a:df:51:2c:69:85:ec:7a:e4:3c:df:7d:d9:53:
85:e6:e7:25:7c:7f:92:35:d6:2a:5c:2c:23:36:37:
2f:3f:3d:f5:a0:41:d9:f3:6e:36:16:2e:64:a4:7f:
b8:20:7c:2e:26:5c:f0:09:dd:8b:97:fc:a0:1b:49:
47:63:b9:f5:b6:f8:ac:e8:db:e7:cc:e5:32:4e:ea:
7b:01:37:f0:d6:39:78:3f:f3:e3:4e:ba:9e:0f:dc:
76:30:e3:16:17:b0:82:fe:c2:cb:c9:b1:a6:21:9f:
5c:33:e0:24:74:e0:3d:fa:bd:bc:a1:42:ef:81:76:
a8:7d:b1:6d:a2:fc:7c:0b:55:c3:cb:bc:b0:c5:ad:
45:0b:40:7d:fc:0b:b8:b4:21:a9:21:a6:40:d2:f5:
e1:77:eb:02:d0:d7:2f:83:a1:97:2a:e2:60:24:f0:
a2:9b:6f:3f:f9:9c:3a:55:ff:a0:1c:f9:c1:c3:cb:
b3:48:e7:4f:fd:40:a2:7e:83:2c:14:2a:2e:cf:9e:
93:26:cb:0e:4c:2d:7d:8b:92:92:72:cd:46:80:4d:
0c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:ED:3A:68:C1:8E:FF:20:8E:16:B8:91:77:35:72:48:29:37:6D:55
X509v3 Authority Key Identifier:
keyid:D6:89:71:EA:1D:22:B5:EC:DA:1A:97:59:F0:5C:26:C8:C5:6A:46:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1olx6h0itezaGpdZ8FwmyMVqRow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/42c355-585a-48bb-9e4a-a47540fed4b9/1/Ve06aMGO_yCOFriRdzVySCk3bVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/42c355-585a-48bb-9e4a-a47540fed4b9/1/1olx6h0itezaGpdZ8FwmyMVqRow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:aa0::/48
Signature Algorithm: sha256WithRSAEncryption
c8:3b:0b:ed:04:c3:e1:b0:e3:8c:11:d0:73:fd:d4:c2:30:2b:
90:e9:88:f9:3b:8d:6e:73:9e:60:4b:92:f2:8f:2c:d6:dd:bb:
2a:51:9a:d8:4a:5b:f6:0f:c7:8f:f8:df:52:20:cb:ed:da:9b:
3c:92:63:dc:e0:90:29:5a:03:ba:91:50:d5:81:86:a0:cd:25:
96:7e:b2:ab:00:6e:6e:14:8e:1d:c3:bf:e3:66:c6:9d:1b:64:
38:b8:46:11:bc:3a:a5:3f:e0:69:44:62:b0:65:48:1d:da:16:
5c:47:d0:a1:29:05:9a:55:db:58:e2:4f:03:ea:11:c1:f8:b5:
c0:50:27:7a:ec:cb:8f:b5:6b:31:03:4f:d0:cc:74:f9:56:c1:
a0:91:f8:9f:ff:e7:42:73:d9:09:34:49:3c:53:a4:03:17:35:
3c:32:bd:5c:a1:20:96:f6:a0:9f:25:ec:69:8d:bd:c4:37:9c:
24:55:55:43:55:55:62:19:eb:48:16:80:be:62:af:bc:a9:86:
bc:c3:9e:a5:16:8e:2c:11:59:80:56:ed:21:e4:47:2b:1e:20:
64:55:b7:b4:fd:62:e6:dc:77:fe:e9:6e:ea:07:a7:a2:9a:35:
fa:1c:56:f9:06:e3:8a:3a:31:0d:56:4d:aa:7c:8b:74:da:f3:
88:fe:3d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:21:17 2024 by rpki-client on console-ams.rpki-client.org