Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/08SMiwwmuJe9iT_EamZdA2Erw58.roa
File: 08SMiwwmuJe9iT_EamZdA2Erw58.roa (raw, json)
Hash identifier: elCL51owtW/musIBcU0P3I+or+r535DqClc0pQhOciY=
Subject key identifier: D3:C4:8C:8B:0C:26:B8:97:BD:89:3F:C4:6A:66:5D:03:61:2B:C3:9F
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018FB4F89C6CA1982124F7C8AD67B7156CA1
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/08SMiwwmuJe9iT_EamZdA2Erw58.roa
Signing time: Sun 26 May 2024 12:55:42 +0000
ROA not before: Sun 26 May 2024 12:55:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216183
IP address blocks: 2a03:5840:110::/48 maxlen: 48
2a03:5840:800::/37 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 02:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b4:f8:9c:6c:a1:98:21:24:f7:c8:ad:67:b7:15:6c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: May 26 12:55:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3c48c8b0c26b897bd893fc46a665d03612bc39f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6a:89:2b:2c:80:66:dd:10:ca:44:f8:76:a4:
b8:2b:e5:12:7d:d8:df:3a:f1:e3:a0:05:92:aa:82:
e7:94:ae:87:59:d4:1b:4d:c8:ca:81:be:e0:30:5f:
bc:1a:d3:ca:db:16:ec:03:96:79:35:bc:e7:bf:f3:
df:a4:d6:08:37:86:a8:14:08:44:a2:68:90:22:e5:
85:15:46:74:8e:86:93:db:10:89:6d:27:39:16:f5:
73:98:64:38:6b:74:b5:04:47:95:c2:24:0e:57:73:
24:a5:61:7b:6d:5b:14:f2:be:2f:33:5c:3e:87:5c:
59:23:c7:20:d3:af:cd:14:5e:33:79:69:1e:b9:58:
f1:58:ab:93:dd:7e:a5:fe:69:8f:af:ec:94:28:3e:
0d:4c:1b:a7:f3:0f:92:26:46:83:e9:07:a6:dd:4b:
91:d5:ec:f6:bc:76:9b:ea:9b:cc:8e:79:6c:71:68:
2c:54:59:e0:2f:96:32:e3:b6:51:2c:3e:03:20:2e:
28:42:34:7f:37:1c:9f:83:90:fd:46:23:9b:11:e5:
9a:4b:b7:d2:c4:c1:18:0b:0e:ae:ed:3b:d5:58:87:
1a:d0:83:85:7e:39:a5:31:8a:29:f7:74:d3:33:81:
0f:11:3a:d8:97:5b:74:68:3a:91:34:57:b4:00:b5:
5e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C4:8C:8B:0C:26:B8:97:BD:89:3F:C4:6A:66:5D:03:61:2B:C3:9F
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/08SMiwwmuJe9iT_EamZdA2Erw58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:110::/48
2a03:5840:800::/37
Signature Algorithm: sha256WithRSAEncryption
34:58:b4:02:fd:27:ec:27:0d:56:23:75:db:da:0c:bd:ee:91:
55:ac:61:40:6a:b3:b6:3a:d1:41:e0:91:2d:5f:28:71:db:41:
19:9b:ca:6d:ad:55:b4:cf:2b:ef:43:e0:75:27:3a:e2:46:f8:
ad:8e:cf:21:cc:1c:75:7d:28:da:95:0a:ea:8b:09:04:00:ca:
d2:6b:a1:fa:67:c6:3d:39:ea:fd:18:da:94:65:16:41:e5:49:
3e:2d:4f:2d:aa:b3:bd:71:61:2a:44:58:e1:35:52:3c:8a:da:
70:1c:ea:c3:17:5c:1d:51:ee:a2:8f:bc:62:f6:fe:ec:57:15:
bb:4d:89:3f:ab:2a:ee:48:1a:61:01:2e:5d:94:65:d6:4d:91:
5f:b6:5c:74:f3:d7:62:6e:55:21:ac:0d:bf:c0:81:f1:4e:f7:
77:61:a3:06:12:a5:3f:4d:f1:ab:6a:21:9f:82:83:6e:c7:89:
44:71:b7:22:d1:ca:97:54:35:ee:8b:f2:eb:a7:1a:56:93:36:
ea:6e:fc:c5:66:88:e1:ef:45:47:a2:89:24:45:d8:1f:67:14:
40:c0:5d:35:ab:d7:df:fa:c6:19:72:59:df:4e:48:ed:be:90:
cd:1d:59:8e:c5:ab:72:2d:ce:45:bf:79:72:97:ff:9c:51:70:
43:d7:db:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:43:47 2024 by rpki-client on console-fra.rpki-client.org