Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/N_69-H6Q0iqJ20oPr5GkBu1krPI.roa
File: N_69-H6Q0iqJ20oPr5GkBu1krPI.roa (raw, json)
Hash identifier: LbBUwdk/BwJzq4C9xUYHgO+PXtuJFcqNAUeo4qHsn8U=
Subject key identifier: 37:FE:BD:F8:7E:90:D2:2A:89:DB:4A:0F:AF:91:A4:06:ED:64:AC:F2
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018CC26D2D296084D30ACDF3061876153EC1
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/N_69-H6Q0iqJ20oPr5GkBu1krPI.roa
Signing time: Mon 01 Jan 2024 00:29:44 +0000
ROA not before: Mon 01 Jan 2024 00:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200078
IP address blocks: 2a0e:aa07:e050::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:2d:29:60:84:d3:0a:cd:f3:06:18:76:15:3e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 00:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37febdf87e90d22a89db4a0faf91a406ed64acf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:79:dd:95:69:6f:d3:b9:b2:53:32:4c:7b:09:
21:50:43:96:10:81:79:f5:a1:35:88:dd:b4:f7:1b:
16:cc:7d:42:f7:f6:31:ba:4a:63:77:46:dc:6d:80:
5b:e8:3a:4f:77:bf:3d:e0:0a:80:a3:aa:1a:e1:c7:
9e:6c:72:60:46:1e:77:00:41:09:71:e8:e1:3e:d8:
80:9e:6d:31:ba:20:72:0c:6c:3e:29:50:f2:49:de:
5c:7a:f5:e3:b5:ea:e6:93:73:12:d4:5c:bc:b6:6d:
d6:64:01:79:70:e4:bd:58:b0:6f:f3:fb:b5:3b:35:
e5:d0:35:f4:e2:9e:b1:63:79:a7:5e:d3:23:15:b6:
c3:70:5e:9e:c6:13:36:4b:bd:a2:b4:36:49:11:90:
20:fe:2d:83:d3:1a:a6:da:72:22:17:da:09:70:92:
91:09:91:2d:ae:34:41:2c:d5:cf:bc:70:03:25:5d:
fe:1b:4e:3c:ba:03:30:fa:4e:71:6c:4e:d3:63:70:
35:29:47:d7:90:03:c0:25:dc:08:d6:7c:8d:75:55:
c9:42:80:b0:a3:c4:30:04:a7:22:fc:99:ec:fb:e9:
3a:61:29:3e:a2:ef:d0:d5:f3:e6:46:f1:97:ff:6f:
63:e8:84:a7:0e:ef:2a:8f:8c:d6:f5:93:e1:19:cc:
9d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FE:BD:F8:7E:90:D2:2A:89:DB:4A:0F:AF:91:A4:06:ED:64:AC:F2
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/N_69-H6Q0iqJ20oPr5GkBu1krPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e050::/44
Signature Algorithm: sha256WithRSAEncryption
5e:0d:f9:f5:c9:0d:bd:7b:c1:da:07:b9:41:fc:1f:a2:15:c8:
6e:aa:fa:e8:98:36:3b:22:a8:ec:2b:72:29:3b:c4:82:37:92:
68:ae:59:6a:29:e8:f4:ca:99:34:1b:98:fa:7e:8b:9c:9e:d1:
0b:d6:45:c6:8b:4d:60:2c:ce:16:af:92:f0:db:38:2d:a7:9a:
54:44:10:36:0f:a7:0a:a7:99:a8:c1:52:8c:ef:d3:1c:71:0a:
18:6e:d0:ee:85:42:41:94:35:74:fb:79:9c:f3:cc:e2:71:b4:
c8:06:d9:59:a4:c7:89:93:30:83:40:31:04:cb:69:0c:c8:ef:
0f:5e:c0:12:41:8a:c9:7e:bc:18:ad:e5:3d:23:7c:87:2a:a9:
41:e2:b9:d4:0a:1a:ab:00:96:44:7c:d8:18:69:b6:06:2d:9b:
86:c5:16:c1:3a:3b:43:21:14:de:7b:51:f9:f8:93:51:be:06:
d2:f8:c0:99:5d:7d:88:1b:ab:7c:3a:4a:15:7a:d2:c5:72:50:
03:10:b6:00:cf:88:e4:f2:48:14:51:58:86:40:9b:14:c1:88:
85:ed:c5:f6:8c:ea:4d:bc:1e:59:9a:0d:e1:fe:78:50:d5:5e:
b3:18:0a:8b:7f:33:c0:1c:c3:a9:1d:fe:f0:97:57:77:70:90:
f5:02:24:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:44:03 2024 by rpki-client on console-fra.rpki-client.org