Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/GO1RKY2unZOJLTKFpi1ygGQkEDw.roa
File: GO1RKY2unZOJLTKFpi1ygGQkEDw.roa (raw, json)
Hash identifier: lnQSqrYEmKGCl+3wjYmCZhy4qdzd+N3mYNh7lP5jnHI=
Subject key identifier: 18:ED:51:29:8D:AE:9D:93:89:2D:32:85:A6:2D:72:80:64:24:10:3C
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018CC26D3D189930B7F76224893CDEFA308E
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/GO1RKY2unZOJLTKFpi1ygGQkEDw.roa
Signing time: Mon 01 Jan 2024 00:29:48 +0000
ROA not before: Mon 01 Jan 2024 00:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210370
IP address blocks: 2a0e:aa07:e02c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:3d:18:99:30:b7:f7:62:24:89:3c:de:fa:30:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 00:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18ed51298dae9d93892d3285a62d72806424103c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9d:45:ca:b8:1a:d5:eb:c7:e1:e0:ec:ca:ec:
3f:6a:8e:57:a8:21:46:2d:22:fe:26:9b:6f:e6:0c:
b3:60:67:52:18:36:fc:61:9c:3d:ac:cf:10:0a:41:
42:80:16:3b:ae:f1:2b:61:96:1b:e4:9e:26:ce:6a:
20:48:20:a9:60:38:9e:1b:10:42:ee:50:6d:c2:47:
27:67:a9:37:bf:10:7e:05:b0:b6:4a:5c:9f:97:a2:
7f:42:49:9e:b8:f4:64:05:92:af:ca:e4:fa:3f:7d:
ec:00:aa:3e:58:21:1c:ec:d5:18:3e:da:cd:2a:d7:
25:35:46:9a:a6:84:bd:6f:60:2a:a7:5c:01:4b:08:
9e:f0:f1:04:2e:0a:75:dc:8b:fe:37:22:12:62:f0:
00:e0:62:ad:22:59:8e:ed:a4:2c:30:9b:bc:cf:4f:
87:f9:2e:80:7f:df:86:51:d1:b9:ea:40:f5:ee:ab:
1c:0c:3e:4a:36:d7:11:b3:2f:55:81:d7:ed:40:b2:
e2:d6:23:65:fd:43:4e:fb:c6:a6:b8:9b:20:12:46:
91:77:1d:7a:c2:7e:7b:b8:86:3b:d3:05:41:a6:43:
55:28:3b:7a:dd:4d:95:74:dc:74:b4:a0:79:fa:f7:
fa:b9:11:79:59:44:8b:e9:97:9c:3b:4c:ed:de:6b:
5a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:ED:51:29:8D:AE:9D:93:89:2D:32:85:A6:2D:72:80:64:24:10:3C
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/GO1RKY2unZOJLTKFpi1ygGQkEDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e02c::/48
Signature Algorithm: sha256WithRSAEncryption
8c:63:a2:a3:4c:f2:cb:1b:3d:e3:a6:5b:a5:19:70:68:22:e0:
f7:3d:fa:e1:8e:66:2a:7c:1e:ca:2f:c4:e4:54:05:88:56:c8:
d8:cc:50:7e:55:4a:f4:ef:8d:09:03:2a:31:05:e1:03:64:84:
2d:10:f5:62:c7:c3:61:cd:91:93:dc:bf:cc:c1:67:c6:7e:59:
81:bb:ba:4d:93:a7:54:57:35:91:d8:b2:77:97:da:90:13:34:
fa:ea:05:92:23:82:6c:4d:b2:61:20:5d:ea:17:d6:2a:ab:1f:
9e:80:bb:99:48:1e:87:60:24:d1:af:c0:77:34:e0:a0:92:fb:
87:9f:a4:0f:fd:91:8f:a7:62:e6:5d:a8:8e:56:9d:54:f2:e1:
da:c0:cc:b5:a9:ab:b4:0e:1d:b6:78:77:52:b6:d6:af:89:40:
73:27:17:23:4b:48:18:0d:6e:69:bb:2e:7d:97:40:4f:b9:91:
28:8f:86:37:ee:33:b7:3d:e1:eb:49:3f:ac:1b:f9:d7:d2:7a:
27:cc:3a:fc:00:d4:31:c4:90:a1:78:a1:c6:80:8b:0d:fc:f4:
ff:5b:6c:a8:6a:3d:c0:b1:ee:ca:80:d4:89:20:56:77:90:1e:
66:f5:1f:06:98:c6:91:5b:44:64:fb:29:b2:c7:77:12:a0:d5:
b7:3a:f5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 15:54:57 2024 by rpki-client on console-fra.rpki-client.org