Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/uuQcYEgiA7ERViPljaDYhQw-5HU.roa
File: uuQcYEgiA7ERViPljaDYhQw-5HU.roa (raw, json)
Hash identifier: hf5SMHEU94t1t6/cycetcwcPV8IsQCIZgJgo1mco3eU=
Subject key identifier: BA:E4:1C:60:48:22:03:B1:11:56:23:E5:8D:A0:D8:85:0C:3E:E4:75
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 018CC64B39E6FC87A4F4CFAD9E69AEAD2E51
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/uuQcYEgiA7ERViPljaDYhQw-5HU.roa
Signing time: Mon 01 Jan 2024 18:31:07 +0000
ROA not before: Mon 01 Jan 2024 18:31:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202255
IP address blocks: 2a12:3fc2:2a00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:39:e6:fc:87:a4:f4:cf:ad:9e:69:ae:ad:2e:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Jan 1 18:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bae41c60482203b1115623e58da0d8850c3ee475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:db:64:7c:7e:fe:ed:f6:d1:55:cb:8d:1a:87:
4d:7d:20:10:3d:83:e7:2a:dc:14:83:da:c7:ed:88:
43:39:99:e7:49:3a:56:5a:ad:8e:45:fd:6e:a6:7d:
cf:b3:c2:dd:9b:14:5c:b0:71:be:eb:cd:cf:55:d1:
00:14:55:2f:e9:9c:f8:c9:4b:1a:8c:7f:3e:79:0f:
42:07:70:85:c1:0c:c8:c4:bd:20:bc:4e:94:94:c3:
d6:83:ae:5c:1a:ca:6a:8a:d3:a7:9b:ec:a8:69:75:
65:19:02:18:c3:1b:3e:58:94:ea:19:c6:42:23:dd:
0e:93:b2:79:6e:11:ed:42:ac:cc:6d:68:55:7f:b1:
8f:b8:10:f6:7f:a4:d2:15:1a:37:37:e2:c9:ac:be:
84:94:fa:37:64:6c:eb:c9:0b:ed:14:eb:73:2b:76:
81:23:39:3d:c9:8d:7e:1d:8f:0b:92:18:c0:16:dd:
3f:fc:11:2e:75:3a:57:af:7a:d5:16:ed:b1:fd:c6:
1f:90:cb:f4:2d:02:dc:fc:c1:e1:a6:ae:fd:2d:42:
f2:32:d9:47:c2:17:b2:fc:4a:84:43:ad:e3:c8:03:
6d:e4:5e:28:37:0c:e2:d8:14:e0:21:30:c9:20:28:
38:ce:05:7a:a5:45:10:2c:fa:af:43:f0:d1:d6:61:
37:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E4:1C:60:48:22:03:B1:11:56:23:E5:8D:A0:D8:85:0C:3E:E4:75
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/uuQcYEgiA7ERViPljaDYhQw-5HU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:2a00::/40
Signature Algorithm: sha256WithRSAEncryption
7a:19:94:32:24:5a:46:50:e0:02:8b:66:cd:2e:59:6e:66:c8:
28:ae:94:f3:52:fd:fb:46:6b:b6:16:25:5a:1e:6a:44:83:d3:
b1:1c:a2:0a:5c:bb:fa:46:9d:2c:2f:00:40:3a:e1:29:9a:12:
ae:df:3d:15:78:11:90:31:6e:94:ca:74:b0:65:ae:1a:97:39:
d6:56:a7:7f:09:4d:c7:80:52:9f:7f:91:9e:6d:09:e3:87:1f:
8e:ea:34:dd:a0:f1:78:13:ef:5e:b9:f3:fa:f3:01:b1:3c:fb:
7a:67:bc:51:d7:22:59:05:18:19:19:18:10:94:a4:5e:dd:bf:
74:3e:17:09:42:68:e6:c2:5a:81:e8:8b:10:ce:6c:3a:ef:35:
92:2d:98:5d:70:6a:2e:c7:f5:3d:91:bb:e0:cd:75:1a:2c:7a:
32:2b:bf:17:d1:b2:1b:f0:a8:d2:58:4b:a1:3a:d5:4c:4f:b0:
fb:85:34:a5:ed:19:e4:09:75:a3:99:36:62:36:c7:52:06:65:
4f:3e:ed:25:6b:4d:3d:a9:15:c5:83:4c:4d:39:97:df:a2:87:
73:e2:aa:04:e6:74:ab:86:38:ea:b1:3d:e0:44:c5:3f:cf:05:
4b:26:fb:bb:92:5d:33:bf:34:36:e6:77:5e:c5:ca:97:69:cf:
ef:76:29:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:29:47 2024 by rpki-client on console-ams.rpki-client.org