Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/9O_zV1BpeLb6gdYxqIM-Z-803Kc.roa
File: 9O_zV1BpeLb6gdYxqIM-Z-803Kc.roa (raw, json)
Hash identifier: FHnCW8/d/iVfnDDf4wTIllhTHB7Id7DhBu3ADRhXsDE=
Subject key identifier: F4:EF:F3:57:50:69:78:B6:FA:81:D6:31:A8:83:3E:67:EF:34:DC:A7
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC7954F8FF8B356B9F3DD395C05B3565C
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/9O_zV1BpeLb6gdYxqIM-Z-803Kc.roa
Signing time: Tue 02 Jan 2024 00:31:40 +0000
ROA not before: Tue 02 Jan 2024 00:31:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48571
IP address blocks: 128.0.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 May 2024 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:4f:8f:f8:b3:56:b9:f3:dd:39:5c:05:b3:56:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4eff357506978b6fa81d631a8833e67ef34dca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d6:93:05:c3:49:e2:f8:c4:f0:b2:51:30:4f:
53:fe:87:57:92:11:cc:94:94:1b:23:61:6e:76:3a:
2e:44:44:12:e9:b6:56:41:02:20:52:3b:69:9f:d4:
48:20:3f:5e:f1:7d:d1:29:d2:62:aa:52:25:12:3f:
f3:05:5c:a4:45:72:a7:b5:ba:ce:19:6c:4f:62:17:
2b:01:da:f7:66:22:e1:6e:a1:c2:3e:f3:6f:83:ed:
8a:b6:dd:8c:00:9a:5d:7d:85:71:46:1f:58:7d:f5:
fd:08:4d:1a:b0:47:60:ca:37:2e:84:b8:6a:94:e6:
06:86:9d:f2:35:93:e0:b5:94:7a:4b:d4:a8:c4:72:
0a:f1:c1:30:61:1b:d1:89:ab:29:e6:89:95:c7:b5:
24:04:7a:0a:a3:e7:93:eb:be:d7:a4:36:2d:94:42:
9e:dc:5e:49:36:2a:d5:95:db:31:32:4a:4c:25:d5:
75:24:13:4b:b8:1e:d4:32:b1:a1:18:cf:c9:3c:c1:
9b:5a:78:95:61:15:39:5c:04:02:df:ff:8f:5e:b4:
7a:8f:77:4a:15:70:ed:8e:a4:cb:c5:22:a1:e6:7c:
7f:48:55:4b:f5:8b:75:30:33:46:60:ce:46:5e:b7:
ac:0e:ef:dd:e0:70:f5:b5:8c:18:ed:6c:4e:b7:43:
2f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EF:F3:57:50:69:78:B6:FA:81:D6:31:A8:83:3E:67:EF:34:DC:A7
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/9O_zV1BpeLb6gdYxqIM-Z-803Kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.55.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:81:25:4e:2f:b7:83:27:52:b3:ce:9c:a9:f4:3e:68:e7:4b:
06:2d:06:ab:c0:54:5b:ca:dc:b0:d4:c6:c3:af:1f:85:cb:02:
c1:c5:b3:da:32:7b:23:23:3e:d5:62:11:c2:fb:76:d9:20:c8:
20:2f:91:bb:7c:1d:ed:a5:9c:9f:b4:1c:0c:d2:fa:77:67:df:
c5:57:a9:5a:57:d6:b9:0b:20:5d:69:73:3f:bc:f0:85:d3:b1:
2a:78:de:c3:2a:ad:75:f6:d8:ef:00:2a:cf:8f:3c:38:5a:5f:
0b:8a:ff:e3:d8:64:ba:63:4a:5c:b8:e4:b2:64:12:cc:b5:63:
c3:77:b7:59:57:e9:54:5c:89:80:42:0b:96:5c:2a:3d:45:9b:
35:df:3b:47:50:2d:06:ed:f6:98:9a:b9:e8:a4:de:ea:a4:54:
2a:6a:b1:ff:f6:00:26:b8:2d:ca:f3:33:f6:df:91:88:80:f3:
f3:0f:e1:af:b3:9f:3d:af:7d:ea:4f:a0:4e:5c:84:8b:e6:11:
df:28:76:7a:3e:7e:f1:2d:89:4f:d7:1a:4a:20:7f:34:cf:11:
7a:4c:ed:a6:23:28:8f:c8:97:fb:87:ab:82:ff:6b:9d:4c:ed:
47:5b:95:8e:45:f5:b1:9f:8e:27:92:b3:fb:94:de:60:d6:fb:
6c:2e:d6:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 01:28:44 2024 by rpki-client on console-ams.rpki-client.org