Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/5zyfOcwIPRTj30LSpPOg4DpfypU.roa
File: 5zyfOcwIPRTj30LSpPOg4DpfypU.roa (raw, json)
Hash identifier: 61Pux11IMlAOPcbn9LxnkKjFkMmaTfTBWcB2LPDAm6w=
Subject key identifier: E7:3C:9F:39:CC:08:3D:14:E3:DF:42:D2:A4:F3:A0:E0:3A:5F:CA:95
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0192ECAA11A64A4629CC12C8C01049579053
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/5zyfOcwIPRTj30LSpPOg4DpfypU.roa
Signing time: Sat 02 Nov 2024 11:37:01 +0000
ROA not before: Sat 02 Nov 2024 11:37:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8485
IP address blocks: 2a02:e840:1002::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.mft
rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ec:aa:11:a6:4a:46:29:cc:12:c8:c0:10:49:57:90:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Nov 2 11:37:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e73c9f39cc083d14e3df42d2a4f3a0e03a5fca95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:23:8a:04:f4:c4:96:21:4a:ca:08:c2:10:f7:
69:09:a8:63:8d:13:9e:70:b1:aa:25:74:5f:b0:92:
58:83:83:b9:e7:20:6c:44:60:06:65:01:0b:62:21:
78:c4:9d:dc:1f:a2:7a:2f:d7:78:2c:e3:ed:7c:64:
10:aa:1c:b0:91:29:0e:42:98:6a:5c:2d:5e:21:fa:
51:bd:6a:b0:f4:35:73:5e:1e:38:34:e5:a4:85:4f:
58:68:d1:4c:47:e2:17:a1:5e:a2:dc:10:e3:96:35:
90:33:72:fb:1f:8a:0e:d5:d4:7c:92:89:e5:27:f3:
38:16:ee:e2:b8:6c:b8:66:15:9a:b9:4c:e5:38:fd:
8b:ca:74:da:4c:1a:f5:31:d5:38:53:ad:4c:c2:a9:
c6:93:e7:d8:c4:b9:08:4a:0a:fb:26:7c:57:83:76:
e3:b5:27:e6:13:ec:71:65:c5:4d:5a:8c:95:39:74:
27:46:67:75:67:4a:c2:c2:58:15:74:c3:7c:7e:ad:
fb:c1:b1:9b:52:43:c7:d5:29:b2:12:7d:0f:fa:06:
53:24:6f:e1:a7:de:d2:f2:7f:79:ab:0f:4c:27:16:
c0:dd:c9:45:66:44:e0:99:b8:b5:f6:2f:f3:cd:5a:
e5:ee:8a:db:9d:cd:f4:fc:d5:e1:b9:c3:de:1a:10:
e6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3C:9F:39:CC:08:3D:14:E3:DF:42:D2:A4:F3:A0:E0:3A:5F:CA:95
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/5zyfOcwIPRTj30LSpPOg4DpfypU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e840:1002::/48
Signature Algorithm: sha256WithRSAEncryption
4c:f5:55:6c:e8:93:3c:07:c3:2f:c4:cb:f6:12:45:80:b3:5c:
4a:02:b8:06:09:d3:ed:2a:4b:bb:6f:39:0e:40:15:48:fd:5b:
0f:e6:20:db:5f:10:d9:0a:6a:55:ba:5c:26:8a:5a:dc:03:42:
3b:d6:9a:2e:d4:13:e9:de:51:28:f9:fd:ce:5f:99:8d:5d:2a:
f4:b7:c7:50:b0:e6:15:1d:a1:da:67:07:09:1f:96:30:ac:49:
f9:21:11:a8:6a:77:32:b9:2e:19:6a:ac:29:6e:05:c6:8f:4c:
18:d6:d9:43:fa:a1:13:51:a1:dc:9f:91:5d:5f:9e:75:e9:92:
00:a5:0a:45:66:98:49:00:5b:bb:38:19:cc:63:7a:31:23:80:
bb:4f:12:6c:11:13:f2:cb:19:50:d2:ea:ed:15:97:33:6a:58:
b3:a7:1e:cd:73:9f:bc:c7:97:15:d8:73:80:1f:81:fd:bf:42:
53:97:2e:08:da:61:b5:bd:22:3e:08:2c:e6:97:b1:59:02:f8:
8f:43:8c:a1:f6:9c:60:eb:1f:9c:9d:9f:21:ce:90:29:92:e9:
44:c3:d2:47:b3:dc:7b:d7:7f:d9:04:fd:46:d5:7c:37:51:52:
98:c7:79:be:f8:01:2c:ff:fc:f1:d6:bb:29:a9:cc:1b:b1:ce:
8e:cf:94:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:43:41 2024 by rpki-client on console-ams.rpki-client.org