Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/dhnlE33sfByLvgKfmzB5nPyDWLY.roa
File: dhnlE33sfByLvgKfmzB5nPyDWLY.roa (raw, json)
Hash identifier: 76nF530Wpxg1ayQPMP6rToahvKYmo2VAMc7L5EzkfRM=
Subject key identifier: 76:19:E5:13:7D:EC:7C:1C:8B:BE:02:9F:9B:30:79:9C:FC:83:58:B6
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018CC86FD9CB9A44A283BB55258E22762A35
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/dhnlE33sfByLvgKfmzB5nPyDWLY.roa
Signing time: Tue 02 Jan 2024 04:30:22 +0000
ROA not before: Tue 02 Jan 2024 04:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200927
IP address blocks: 2a03:5840:f0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:d9:cb:9a:44:a2:83:bb:55:25:8e:22:76:2a:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 04:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7619e5137dec7c1c8bbe029f9b30799cfc8358b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:45:82:0f:2c:9a:09:73:2a:c3:e9:25:cb:39:
0f:51:fc:74:88:d5:27:8d:2a:83:e0:6b:83:72:06:
c3:bb:82:47:1c:8c:20:46:04:ef:f5:3e:35:c5:dc:
2b:3b:43:e1:ae:2d:7a:13:4b:d7:b0:cd:af:e8:aa:
27:d5:2e:34:ae:b6:d3:ea:35:e1:f4:ea:e3:6a:f9:
10:35:40:fe:8f:08:b9:50:2e:c2:5c:59:31:98:48:
a4:38:4c:34:7f:2a:39:87:67:34:2d:09:a4:39:a8:
2c:e3:d5:3c:53:3d:a4:d7:e6:87:62:18:63:7a:cd:
c1:83:32:1c:8a:a9:bd:7a:08:dd:9d:3a:4a:e8:b7:
cf:84:25:18:69:5d:1d:5d:6d:a0:b5:be:75:a6:59:
98:8e:c9:bf:3c:09:cd:64:6e:15:f1:c1:84:c4:ac:
7b:7c:08:13:10:cf:91:d9:3e:db:93:88:bd:4b:ab:
ee:81:00:d6:09:38:bd:26:7c:a9:55:0b:2e:08:7e:
9f:97:4b:0e:21:54:25:06:c6:42:2c:3e:44:1d:80:
4e:2d:a7:6f:ef:84:78:ab:06:49:24:1d:5b:31:70:
e5:d4:cf:52:43:52:b9:86:38:1d:40:74:6a:7d:49:
4a:ef:55:e0:a9:0f:67:86:ff:c6:32:59:da:25:e2:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:19:E5:13:7D:EC:7C:1C:8B:BE:02:9F:9B:30:79:9C:FC:83:58:B6
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/dhnlE33sfByLvgKfmzB5nPyDWLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:f0::/48
Signature Algorithm: sha256WithRSAEncryption
5e:cd:07:85:45:b7:ad:c2:56:d4:99:89:05:91:1e:a3:d6:a4:
2e:d3:2b:46:d4:70:f4:50:04:f5:15:5d:51:c7:33:be:cb:15:
c0:5c:c1:8c:fc:ff:76:97:25:1d:fc:da:99:41:97:8a:a4:db:
f3:9a:63:b2:7c:15:4b:00:f1:d9:95:89:50:f2:82:12:9a:19:
11:b7:9d:71:f1:bd:6a:e4:8e:68:d8:96:d9:ae:8b:67:6e:d2:
d3:87:f1:dd:3b:52:c8:db:cb:f4:16:90:76:4e:48:cf:9a:e8:
fa:9e:3b:d5:d0:cc:31:54:2e:f8:53:2b:78:aa:4e:91:57:cd:
ae:cf:8a:c3:55:c6:e7:90:0b:60:8a:a3:4b:f1:67:eb:2e:cc:
95:5f:8a:b1:d6:da:d1:35:ad:12:05:83:cb:9d:0d:2b:b3:7c:
0e:f4:a1:bf:b9:c3:65:a3:78:4e:2f:90:37:5b:fd:06:d3:ae:
9b:90:18:ba:b7:8a:f1:1f:5a:18:14:8d:ad:5e:ef:d1:05:96:
43:a2:c2:44:80:7d:5a:ae:ba:07:f9:61:b5:a7:f6:5b:bd:8e:
28:4c:6b:65:91:da:3a:fc:2a:0b:da:85:80:3e:42:6a:00:25:
5d:34:bc:01:29:45:7b:30:a8:b2:12:51:42:71:b3:74:a2:7e:
e3:2e:b7:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 14:19:34 2024 by rpki-client on console-fra.rpki-client.org