Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/leZId3qh5lXM6gh3mAcClZt_mlU.roa
File: leZId3qh5lXM6gh3mAcClZt_mlU.roa (raw, json)
Hash identifier: qNjv6ySuaNExLh1rul7xCvcVYumLhuN77dMYvOqEgZw=
Subject key identifier: 95:E6:48:77:7A:A1:E6:55:CC:EA:08:77:98:07:02:95:9B:7F:9A:55
Certificate issuer: /CN=8a28ff310da7df8309cfab4dcf9a235842b60872
Certificate serial: 0191AC3B23C7A2BD9C3540EE6B56DA5762BF
Authority key identifier: 8A:28:FF:31:0D:A7:DF:83:09:CF:AB:4D:CF:9A:23:58:42:B6:08:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iij_MQ2n34MJz6tNz5ojWEK2CHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/leZId3qh5lXM6gh3mAcClZt_mlU.roa
Signing time: Sun 01 Sep 2024 06:17:22 +0000
ROA not before: Sun 01 Sep 2024 06:17:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214569
IP address blocks: 2a06:b700::/48 maxlen: 48
2a06:b700:1::/48 maxlen: 48
2a06:b700:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/iij_MQ2n34MJz6tNz5ojWEK2CHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/iij_MQ2n34MJz6tNz5ojWEK2CHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iij_MQ2n34MJz6tNz5ojWEK2CHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Nov 2024 22:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ac:3b:23:c7:a2:bd:9c:35:40:ee:6b:56:da:57:62:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a28ff310da7df8309cfab4dcf9a235842b60872
Validity
Not Before: Sep 1 06:17:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95e648777aa1e655ccea0877980702959b7f9a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:be:0f:58:42:2f:47:bb:81:a8:49:7b:af:da:
bf:72:40:45:d6:39:1a:ab:5b:4b:e6:35:9c:39:d7:
b7:0f:9a:fb:e9:c1:c2:bb:44:dd:36:1f:23:44:15:
b9:40:55:01:60:2e:c3:d4:25:53:8b:22:c7:0b:dc:
b1:b2:9f:47:93:54:01:fe:4d:5f:e4:64:b8:76:06:
74:42:72:99:ed:18:6c:c7:6c:3b:4a:8f:a0:15:c9:
94:97:f3:ca:09:6f:4b:0a:e4:ed:94:79:a6:4c:b1:
bd:d1:b4:6a:5b:67:b7:54:c1:85:f3:e8:f0:5b:2f:
c1:af:37:1b:20:cc:bf:bd:66:2b:18:bf:04:ea:8b:
d1:2d:55:cf:4d:d1:9a:28:43:83:a5:ac:41:d9:bd:
7d:55:a3:d5:04:51:af:89:16:5f:72:a7:26:ff:ec:
ec:67:52:aa:e4:e5:65:90:89:53:00:50:00:93:f5:
db:cf:c2:6f:da:d1:1c:bc:72:b6:d3:72:bd:0d:1c:
3b:7e:e2:15:67:59:9f:3c:52:05:21:37:3c:c2:d3:
49:88:af:bc:bf:39:a4:19:b2:a6:70:f5:a1:1e:30:
ea:e6:2a:7b:0c:43:83:c8:34:45:f4:0b:86:e8:81:
09:50:29:30:33:01:77:8d:89:d7:69:ab:51:83:53:
3a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E6:48:77:7A:A1:E6:55:CC:EA:08:77:98:07:02:95:9B:7F:9A:55
X509v3 Authority Key Identifier:
keyid:8A:28:FF:31:0D:A7:DF:83:09:CF:AB:4D:CF:9A:23:58:42:B6:08:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iij_MQ2n34MJz6tNz5ojWEK2CHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/leZId3qh5lXM6gh3mAcClZt_mlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/iij_MQ2n34MJz6tNz5ojWEK2CHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b700::-2a06:b700:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
37:aa:e1:d7:57:12:4c:65:3c:99:5f:5c:3c:5b:b2:b7:a9:4f:
fe:59:56:15:e1:1d:61:86:0d:6b:92:c9:71:73:13:b5:d0:a8:
a7:bc:09:04:a3:30:94:82:61:25:f8:95:2a:27:11:de:44:14:
30:40:9b:43:77:e6:83:1f:3c:37:bc:5c:f5:05:58:16:ff:9f:
e4:2f:d7:43:ac:c3:57:4e:d9:ab:57:33:12:a4:c2:b3:15:7e:
3f:d4:1d:4a:99:a1:2c:af:0d:f6:ff:e6:4d:d6:f1:33:d4:09:
f3:80:87:8a:02:4c:de:33:52:a2:47:cb:f7:9f:6b:bf:85:ac:
92:30:6a:68:43:75:c9:f6:3e:62:ed:03:7f:41:d2:be:f2:9b:
25:c2:92:3e:84:dc:88:a1:e6:9e:22:1f:5d:f4:72:7e:2c:3b:
4a:75:6d:bc:b7:7d:f3:05:8f:35:b2:b8:a2:f1:2f:ca:3c:96:
bf:a0:33:47:a9:37:2b:2e:54:13:ed:08:b3:3f:70:7c:5e:10:
49:e1:00:a3:ac:f5:0d:d3:52:88:8a:d0:8d:2c:d7:08:6f:18:
f8:ba:45:53:92:41:ed:45:2d:85:28:92:fb:c3:50:44:b0:dd:
6c:59:70:cc:fe:d7:36:06:11:62:bd:be:35:7d:70:a7:d4:22:
1d:68:a7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 07:51:58 2024 by rpki-client on console-fra.rpki-client.org