Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/2d29e3-ffc7-4212-a23e-6add92a2b61e/1/7ttPpOMIdunQyYrhtIS6qn0bNlw.roa
File: 7ttPpOMIdunQyYrhtIS6qn0bNlw.roa (raw, json)
Hash identifier: ElaXx79XfnBnt/ytNFaJdoYarXboa7BVgHrjFVHESqI=
Subject key identifier: EE:DB:4F:A4:E3:08:76:E9:D0:C9:8A:E1:B4:84:BA:AA:7D:1B:36:5C
Certificate issuer: /CN=59638e13b59fcae91417e027db13e915298f5bbe
Certificate serial: 018CC94C9FB3553E5D8FEA86772D803C300B
Authority key identifier: 59:63:8E:13:B5:9F:CA:E9:14:17:E0:27:DB:13:E9:15:29:8F:5B:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WWOOE7WfyukUF-An2xPpFSmPW74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/2d29e3-ffc7-4212-a23e-6add92a2b61e/1/7ttPpOMIdunQyYrhtIS6qn0bNlw.roa
Signing time: Tue 02 Jan 2024 08:31:31 +0000
ROA not before: Tue 02 Jan 2024 08:31:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 31.41.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/2d29e3-ffc7-4212-a23e-6add92a2b61e/1/WWOOE7WfyukUF-An2xPpFSmPW74.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/2d29e3-ffc7-4212-a23e-6add92a2b61e/1/WWOOE7WfyukUF-An2xPpFSmPW74.mft
rsync://rpki.ripe.net/repository/DEFAULT/WWOOE7WfyukUF-An2xPpFSmPW74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:9f:b3:55:3e:5d:8f:ea:86:77:2d:80:3c:30:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59638e13b59fcae91417e027db13e915298f5bbe
Validity
Not Before: Jan 2 08:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eedb4fa4e30876e9d0c98ae1b484baaa7d1b365c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:11:01:04:ae:e7:a1:27:47:33:d6:b7:07:bb:
6b:70:5e:3b:1b:ed:ef:7d:ef:68:b3:40:61:e2:6a:
45:de:bd:2c:45:93:50:3d:5d:11:b4:53:6d:5d:fc:
ad:43:17:09:5d:31:f5:20:48:e4:82:7d:26:89:fb:
a8:1f:52:94:b7:2e:ef:50:91:65:47:5a:2f:ce:a0:
8c:de:bf:9f:08:85:1f:33:e3:5c:d1:ca:55:99:e4:
36:78:d6:be:2e:38:1c:78:ea:fc:c0:2e:e6:8b:31:
fa:63:24:dc:19:ca:59:6e:62:fb:a7:43:bd:76:b7:
cb:b0:88:9e:2a:1c:ae:85:6c:40:c6:82:34:e7:3b:
3f:fa:2b:68:d4:04:24:f6:46:d2:78:c7:80:e6:91:
82:a3:6c:d8:0c:52:7a:0c:79:88:d9:5f:5f:1d:a4:
e7:6d:a7:29:0d:a2:4d:f2:8d:5c:7e:15:81:66:0e:
0c:54:7f:0e:3a:05:ba:a1:de:0e:ad:2c:5d:70:39:
45:55:d8:a7:85:ac:ba:7d:9b:aa:6b:6c:91:3f:6d:
78:32:9d:a4:27:fc:a8:05:51:26:71:6d:cf:f3:23:
aa:3d:78:d6:34:7d:4f:85:cc:8b:97:6a:0a:fc:f4:
cc:e0:4a:e8:3b:1d:48:bb:e2:80:87:36:1d:7c:0a:
a5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DB:4F:A4:E3:08:76:E9:D0:C9:8A:E1:B4:84:BA:AA:7D:1B:36:5C
X509v3 Authority Key Identifier:
keyid:59:63:8E:13:B5:9F:CA:E9:14:17:E0:27:DB:13:E9:15:29:8F:5B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WWOOE7WfyukUF-An2xPpFSmPW74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2d29e3-ffc7-4212-a23e-6add92a2b61e/1/7ttPpOMIdunQyYrhtIS6qn0bNlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2d29e3-ffc7-4212-a23e-6add92a2b61e/1/WWOOE7WfyukUF-An2xPpFSmPW74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.39.0/24
Signature Algorithm: sha256WithRSAEncryption
94:f0:cf:17:a0:5a:b4:7f:32:b6:3d:5c:39:29:ac:6e:f4:b8:
7c:58:65:17:7e:df:65:24:ba:dd:49:75:1e:d3:d4:63:39:1e:
3e:bc:8e:f6:c9:e5:1e:a6:e2:f2:06:9a:38:f4:ba:14:95:3a:
37:3f:56:e1:b6:3f:f9:43:73:28:5a:68:e4:e2:43:fe:eb:fd:
20:f1:ed:c6:2e:c7:cc:57:55:41:88:28:b5:86:7e:66:ef:7f:
92:d6:98:05:c9:a9:49:c3:84:75:e4:6e:e2:81:fe:34:45:40:
e2:ec:ce:6e:c7:41:48:d3:d7:59:39:e3:8d:00:3b:39:8d:cb:
3d:d7:9b:6f:95:1e:c8:b0:ca:53:d7:f9:d3:72:e9:eb:81:0f:
01:6c:58:75:28:fb:b2:1f:18:52:df:6e:b2:e5:e3:40:d5:f0:
12:34:f0:b3:74:61:79:74:e7:a9:e5:af:a9:11:83:9e:6d:44:
78:54:7a:4b:81:25:80:38:93:23:cc:18:97:93:23:33:c8:5e:
9f:b4:34:ba:b3:31:f2:94:5d:d9:43:3c:d0:16:41:11:6e:9f:
cf:11:e4:ce:2b:d9:d5:23:de:16:87:b6:be:4e:97:18:00:d1:
10:2f:30:25:13:3f:c3:4f:b1:dd:7d:31:62:f5:e6:60:5f:ad:
3f:af:59:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 21:25:54 2024 by rpki-client on console-ams.rpki-client.org