Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/RI4SXrtzwN09Q9FFlwx53vv-Gh4.roa
File: RI4SXrtzwN09Q9FFlwx53vv-Gh4.roa (raw, json)
Hash identifier: a9+lECiSHfdEI0WS2lVx2pvJbziCPOaSj6JC4m7FrKo=
Subject key identifier: 44:8E:12:5E:BB:73:C0:DD:3D:43:D1:45:97:0C:79:DE:FB:FE:1A:1E
Certificate issuer: /CN=75245438a2b6209c81675ef35783d89a19b707fa
Certificate serial: 018CC726A80A9B82B3FA498B5B885C7CB800
Authority key identifier: 75:24:54:38:A2:B6:20:9C:81:67:5E:F3:57:83:D8:9A:19:B7:07:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/RI4SXrtzwN09Q9FFlwx53vv-Gh4.roa
Signing time: Mon 01 Jan 2024 22:30:48 +0000
ROA not before: Mon 01 Jan 2024 22:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199852
IP address blocks: 2001:67c:197c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:a8:0a:9b:82:b3:fa:49:8b:5b:88:5c:7c:b8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75245438a2b6209c81675ef35783d89a19b707fa
Validity
Not Before: Jan 1 22:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=448e125ebb73c0dd3d43d145970c79defbfe1a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:73:38:2c:e7:49:8e:d9:4b:a2:75:6c:5e:a0:
d1:96:52:ee:68:3a:fe:79:7c:53:f9:95:40:b2:38:
fc:d5:24:8b:b8:2c:6b:28:95:ec:e3:d9:c8:a6:2c:
70:62:ca:fc:c1:1c:6f:00:b5:77:20:64:9a:1a:5f:
1f:11:ad:f6:21:4f:66:e5:2d:5e:39:30:b3:a4:2c:
6a:20:97:aa:26:84:4f:40:04:0b:a7:84:38:bc:47:
c5:25:38:b1:41:4f:58:6b:86:fb:7c:e8:d4:6d:d2:
09:06:e6:e5:19:cc:de:fa:80:e2:83:73:fe:73:83:
05:13:6d:b5:ac:47:93:dd:47:43:39:50:41:5d:34:
f6:7d:87:89:d6:df:4a:2e:47:9a:34:52:5b:b2:38:
8a:b1:cb:4c:52:86:42:e7:fa:67:1a:fc:6e:21:37:
bb:44:57:46:fe:05:4d:3d:3c:d8:66:f0:72:16:2c:
ce:64:a6:58:0d:7c:ef:d2:4c:68:15:76:f5:ee:b7:
46:e8:5d:d3:eb:78:1b:34:5f:60:c9:3c:01:e9:f2:
24:49:24:d2:07:65:7d:f7:3b:52:12:30:03:dc:8b:
82:16:08:ec:d5:2c:2b:fa:2f:e2:03:76:e9:24:47:
17:5d:c7:7f:87:c6:cd:54:4a:c6:1a:5f:07:f3:e1:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8E:12:5E:BB:73:C0:DD:3D:43:D1:45:97:0C:79:DE:FB:FE:1A:1E
X509v3 Authority Key Identifier:
keyid:75:24:54:38:A2:B6:20:9C:81:67:5E:F3:57:83:D8:9A:19:B7:07:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/RI4SXrtzwN09Q9FFlwx53vv-Gh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:197c::/48
Signature Algorithm: sha256WithRSAEncryption
8f:ac:17:47:6b:b3:4e:23:8d:11:29:72:46:5b:85:14:ec:a4:
24:7c:47:7a:ec:10:52:32:2c:7b:2d:48:1e:08:b4:bb:3f:1b:
46:6c:35:55:7b:84:b2:70:39:08:c3:bc:2c:e2:6d:7a:c6:e7:
3f:ce:73:6a:31:d2:19:9e:49:f6:f7:8e:14:38:e9:80:74:03:
17:09:37:18:c7:cb:4f:53:d1:a2:a1:af:2c:b0:65:17:0a:79:
e4:30:61:a9:a9:06:ed:57:88:a7:7f:7d:35:7a:00:9e:22:6b:
20:6b:3d:1a:14:bd:63:51:11:a6:f5:f8:94:f6:9d:5d:5e:33:
93:88:a4:05:8d:f3:bb:f6:ba:6f:dc:aa:3b:7f:cd:23:38:95:
aa:d0:42:91:c6:20:a8:a7:e0:4a:b8:4d:f2:d9:9a:64:2d:84:
21:d2:12:a4:e5:a6:31:4b:9a:30:33:28:ec:a9:26:9f:e1:63:
69:97:83:7f:71:41:05:6e:6c:6c:cf:dc:40:35:fe:47:1f:27:
e8:f2:ac:a7:7f:27:63:2c:53:df:a8:d0:48:44:8e:ca:07:20:
7b:4e:eb:7a:d5:86:4e:f9:d7:53:33:07:ea:e1:96:91:fa:d5:
dc:81:ff:ee:86:7b:8a:cd:b8:76:c1:01:08:aa:b8:eb:fa:81:
cb:12:ae:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:45 2024 by rpki-client on console-fra.rpki-client.org