Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/7caae5-03af-47f8-b29e-e951a74346f9/1/e64PMwi9Syx_0FkeUcwTTOcevIY.roa
File: e64PMwi9Syx_0FkeUcwTTOcevIY.roa (raw, json)
Hash identifier: 62vUTpE/zdoMJPxDMYtLXuW0cR4J19lHEBFSeK/8w5c=
Subject key identifier: 7B:AE:0F:33:08:BD:4B:2C:7F:D0:59:1E:51:CC:13:4C:E7:1E:BC:86
Certificate issuer: /CN=552423ed905000f69ad93eefc666bb9b1addcb37
Certificate serial: 0192006BF884FB5ACCC9CC4D9D4C4F0FBA21
Authority key identifier: 55:24:23:ED:90:50:00:F6:9A:D9:3E:EF:C6:66:BB:9B:1A:DD:CB:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VSQj7ZBQAPaa2T7vxma7mxrdyzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/7caae5-03af-47f8-b29e-e951a74346f9/1/e64PMwi9Syx_0FkeUcwTTOcevIY.roa
Signing time: Tue 17 Sep 2024 14:38:48 +0000
ROA not before: Tue 17 Sep 2024 14:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8812
IP address blocks: 51.18.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/7caae5-03af-47f8-b29e-e951a74346f9/1/VSQj7ZBQAPaa2T7vxma7mxrdyzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/7caae5-03af-47f8-b29e-e951a74346f9/1/VSQj7ZBQAPaa2T7vxma7mxrdyzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VSQj7ZBQAPaa2T7vxma7mxrdyzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:00:6b:f8:84:fb:5a:cc:c9:cc:4d:9d:4c:4f:0f:ba:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552423ed905000f69ad93eefc666bb9b1addcb37
Validity
Not Before: Sep 17 14:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bae0f3308bd4b2c7fd0591e51cc134ce71ebc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:19:ef:d1:99:58:27:ff:e2:ce:aa:65:d8:db:
19:57:ec:86:f9:0f:4c:7c:0e:93:3b:56:8b:9a:a3:
01:49:55:73:42:56:07:29:0f:1a:ec:7a:16:06:a6:
fa:fb:af:b5:ff:82:ec:63:67:78:85:9e:a1:48:da:
c9:95:3d:ae:a7:c8:f5:97:83:e0:88:54:21:68:cc:
3d:e4:72:f5:ba:e9:53:5d:5e:0a:46:58:8a:f5:a8:
fc:18:31:fb:e2:01:9d:ee:94:b4:fc:52:52:bb:6d:
8e:eb:7f:59:95:17:20:0f:26:ea:db:2b:1b:06:7b:
42:13:ea:cb:d4:74:29:2d:62:b7:47:b4:77:9e:18:
cd:89:40:c1:a9:03:6e:b2:d5:c7:3c:d1:a4:f2:be:
6b:76:66:b8:b6:c8:87:a0:0c:78:96:49:96:3a:0d:
9f:09:a3:2b:5b:84:20:0d:49:0f:e4:df:28:24:e1:
dc:e6:bf:84:1f:be:48:5c:48:b3:65:e7:b0:1b:05:
92:c6:8e:f5:9f:ea:d5:80:ce:6a:14:8d:bf:cf:29:
5f:a5:b1:d9:b8:18:49:40:a5:27:69:53:d4:35:74:
0c:9e:89:45:6c:c9:01:3b:48:65:a4:d1:51:89:4e:
78:08:31:68:90:3f:4e:73:c8:60:95:b5:68:c6:42:
3c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AE:0F:33:08:BD:4B:2C:7F:D0:59:1E:51:CC:13:4C:E7:1E:BC:86
X509v3 Authority Key Identifier:
keyid:55:24:23:ED:90:50:00:F6:9A:D9:3E:EF:C6:66:BB:9B:1A:DD:CB:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VSQj7ZBQAPaa2T7vxma7mxrdyzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7caae5-03af-47f8-b29e-e951a74346f9/1/e64PMwi9Syx_0FkeUcwTTOcevIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7caae5-03af-47f8-b29e-e951a74346f9/1/VSQj7ZBQAPaa2T7vxma7mxrdyzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.18.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:11:46:53:96:e1:a9:ba:4d:00:b8:11:9b:2b:7d:27:0b:05:
bb:1d:85:67:e3:9d:21:b7:c0:40:b1:02:c1:2f:e0:6d:e8:e9:
3a:e3:f3:93:0f:1d:d0:94:95:1e:fd:b9:a4:da:5c:b6:07:2e:
96:11:1d:1f:f0:09:09:89:c5:85:d7:bb:18:09:aa:bb:f0:83:
22:21:26:b2:2c:86:53:0b:e3:a6:5a:c0:b9:05:73:50:b6:91:
a5:57:01:f0:40:c7:b6:11:d4:29:d1:a5:fe:d1:9e:66:38:f2:
c2:48:b4:18:7b:90:08:a7:76:8f:75:c5:d9:97:11:bf:09:a1:
65:68:85:02:d9:ce:18:ee:bf:8d:65:93:1f:11:13:4c:84:ef:
0b:48:ca:dd:88:94:6f:d1:2f:33:f1:17:ae:fa:43:73:93:f5:
2c:fa:56:5c:63:99:40:e4:15:8c:54:bd:5b:2f:bb:68:99:95:
3d:85:09:99:1f:b8:db:d5:53:62:73:0f:c4:13:33:1c:1a:5e:
ea:28:15:63:ab:38:e8:d8:ed:ad:b5:24:d9:d6:71:5b:dc:52:
3e:fa:0f:6e:b0:d9:1f:d5:7c:97:2d:16:7a:8a:c6:01:74:bd:
a1:c7:f0:f2:f3:a4:59:fa:0f:9e:dc:ca:e2:42:69:77:55:17:
c7:7c:b3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:50:13 2024 by rpki-client on console-ams.rpki-client.org