Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/wvgqp2hQa1c7a-TnkKKM8TPK-Ck.roa
File: wvgqp2hQa1c7a-TnkKKM8TPK-Ck.roa (raw, json)
Hash identifier: 3h7c0FsS/SVt4YUd34nT73y2hFsOpKEzGQJgxX4I+F8=
Subject key identifier: C2:F8:2A:A7:68:50:6B:57:3B:6B:E4:E7:90:A2:8C:F1:33:CA:F8:29
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018CC26D290655FA4F18CAEFC6E6E4D47F4B
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/wvgqp2hQa1c7a-TnkKKM8TPK-Ck.roa
Signing time: Mon 01 Jan 2024 00:29:42 +0000
ROA not before: Mon 01 Jan 2024 00:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 140972
IP address blocks: 2a0e:aa07:e015::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:29:06:55:fa:4f:18:ca:ef:c6:e6:e4:d4:7f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 00:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2f82aa768506b573b6be4e790a28cf133caf829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f6:d5:3b:50:2d:d1:7f:cc:19:27:fc:6f:f5:
46:2f:bb:86:95:98:8e:d0:88:05:19:5a:72:c1:dd:
6e:4d:1e:29:34:84:8a:b0:97:73:c1:19:e7:69:e2:
7b:a3:5b:55:46:ae:cc:fa:1f:59:a8:a8:c8:64:4a:
7f:07:28:85:c6:53:a1:10:29:ff:4f:ff:87:61:03:
54:fa:b5:00:2d:65:38:84:b5:ea:5e:20:f5:7f:e1:
a3:97:5e:8c:d3:ab:ab:25:3d:7b:1a:c8:ac:69:f1:
20:e3:2c:f7:d9:cc:a7:cc:58:f0:5d:f7:1d:52:f5:
85:8b:30:36:c4:00:1f:ad:8a:2b:e4:25:d9:74:d6:
b2:28:e3:0c:ac:72:81:49:cd:1f:53:6f:fe:50:71:
69:55:25:df:60:f4:92:c4:9e:be:33:ca:c3:d3:30:
b3:d5:48:a4:89:02:81:34:34:ef:52:56:bd:3c:b0:
a1:91:e8:41:4a:59:98:29:d4:bd:1f:12:79:64:92:
94:ff:27:21:02:73:e9:ff:40:5b:d6:a0:b3:df:1b:
a5:94:6f:55:1b:90:30:80:03:4d:c7:dc:4e:3e:56:
d3:f9:ec:bc:85:dd:f2:d7:35:cb:99:fb:e8:0f:ef:
5c:00:55:f8:10:3b:f2:20:c4:55:fe:32:2f:0a:a6:
11:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F8:2A:A7:68:50:6B:57:3B:6B:E4:E7:90:A2:8C:F1:33:CA:F8:29
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/wvgqp2hQa1c7a-TnkKKM8TPK-Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e015::/48
Signature Algorithm: sha256WithRSAEncryption
45:15:58:6c:a7:cc:91:a6:eb:15:f4:7e:39:62:74:c2:1a:04:
af:9d:6b:37:d8:4a:47:cd:c1:c5:4f:7e:1e:d3:4c:0e:56:25:
e9:a0:43:5f:05:9d:c6:fd:de:a4:51:cb:8d:66:cc:4c:5f:28:
0b:22:8e:21:29:0d:2c:38:93:79:d9:43:b8:ca:e0:cb:6b:d2:
0a:ae:25:67:b0:f4:74:87:c1:ea:d1:44:a0:2b:e2:8e:99:ed:
ee:ca:29:1c:22:37:3f:ce:0f:e0:ba:d6:fe:a9:46:ae:f8:bc:
61:e0:3d:ae:7b:c3:6c:e6:83:25:a0:ac:5a:43:17:6c:72:ba:
fb:cb:07:80:24:28:34:c3:d6:4a:cd:2a:28:87:77:12:54:a4:
52:bb:c4:91:43:b6:bd:a5:55:d1:3f:27:a9:65:ec:8d:eb:7b:
2e:8d:67:c2:25:52:14:a8:75:5c:0c:2a:d5:04:aa:0e:0e:0d:
b7:76:80:34:13:3b:1d:b7:b4:75:6d:9a:46:f5:03:8a:18:4c:
14:59:95:0f:e1:d4:84:7f:82:3c:b1:ce:a1:59:51:73:ec:09:
c2:88:91:c3:96:55:f2:eb:43:2e:ec:56:ac:64:3f:2a:a7:f9:
40:f2:0e:35:d7:9f:a6:b0:ea:21:ed:f5:6e:18:ae:1d:81:86:
02:ee:ea:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:29:28 2024 by rpki-client on console-ams.rpki-client.org