Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/4MjSKdazJYADb_CIsGIGlYRGGec.roa
File: 4MjSKdazJYADb_CIsGIGlYRGGec.roa (raw, json)
Hash identifier: 1EzQ7A+If3jGgFbBiO4x2W2ZrXROLznfxv7qfMzIY9g=
Subject key identifier: E0:C8:D2:29:D6:B3:25:80:03:6F:F0:88:B0:62:06:95:84:46:19:E7
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 018F5C6160A117DE667D74490641821ED66D
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/4MjSKdazJYADb_CIsGIGlYRGGec.roa
Signing time: Thu 09 May 2024 08:03:56 +0000
ROA not before: Thu 09 May 2024 08:03:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59794
IP address blocks: 2001:14e8:6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.mft
rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5c:61:60:a1:17:de:66:7d:74:49:06:41:82:1e:d6:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: May 9 08:03:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0c8d229d6b32580036ff088b0620695844619e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:53:61:26:e4:60:08:97:92:7f:52:5d:31:ad:
54:14:0f:e0:60:03:87:6b:22:e6:18:4f:28:c9:c8:
a8:22:b0:b2:b5:de:61:c2:f8:e2:83:29:be:68:1b:
4a:3a:90:fe:be:19:17:51:8e:ff:b7:29:a7:62:b3:
f4:da:f3:99:8a:43:8e:34:e1:88:75:df:7c:63:b5:
c4:ca:3f:23:71:79:68:40:e4:07:8c:aa:db:fe:b0:
59:6b:76:30:e0:e4:d6:f3:e8:9b:f7:de:ab:05:2a:
25:f6:24:4b:f8:60:87:57:ff:5b:23:3e:5f:01:68:
b4:a9:2b:68:55:1c:b0:9b:19:01:73:ae:0d:e5:03:
83:db:e3:4b:a3:48:1a:11:5c:68:0c:8a:07:17:29:
03:1b:fa:c1:cb:52:02:bc:aa:53:98:6b:8c:65:8b:
a9:fe:a8:fc:ec:0c:6c:22:38:d7:1b:6c:06:e9:24:
26:64:8e:75:89:88:9e:49:7a:16:a1:3a:0e:fe:e6:
0a:0d:72:cc:36:9f:91:0f:dc:57:b3:0a:29:40:ec:
a3:1e:29:84:d5:da:20:e3:20:9d:4c:09:72:db:58:
04:41:7f:51:a6:e0:50:f2:0f:75:42:a4:b3:56:a4:
59:b3:22:97:bf:b5:74:75:4d:8b:46:0f:a7:f2:0a:
56:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C8:D2:29:D6:B3:25:80:03:6F:F0:88:B0:62:06:95:84:46:19:E7
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/4MjSKdazJYADb_CIsGIGlYRGGec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:14e8:6::/48
Signature Algorithm: sha256WithRSAEncryption
45:1a:b9:3a:b8:21:46:c4:6e:ff:5e:79:a2:21:99:6f:35:72:
9f:34:18:09:02:32:78:ef:08:b6:fe:15:5b:05:ed:8a:f0:51:
8c:4b:14:fb:bd:68:8d:ce:0d:69:84:c1:42:5a:f3:b8:41:be:
6b:5a:d4:40:4f:1a:00:04:47:17:0b:f2:ca:1c:08:d9:4a:8c:
ae:68:df:1b:08:34:98:3e:95:51:7a:67:11:0c:a4:1e:56:bf:
e2:f5:85:6a:80:39:34:cd:2e:c3:b7:7a:14:90:db:0a:5d:7f:
b2:ab:8f:6e:df:29:f7:7e:14:98:3b:53:45:3c:7a:a3:39:9a:
6d:fd:a3:42:ac:00:67:de:23:8a:f4:51:96:09:eb:9a:5a:5b:
3e:1f:04:04:53:ad:15:2f:ff:19:b1:1e:bf:c8:c2:59:85:fe:
f4:21:36:f1:e0:5f:d7:8b:9b:6e:99:a9:1b:c6:7f:6f:27:a0:
5c:3a:cd:b2:6d:b6:fc:3d:1b:b2:d1:87:41:32:0e:1e:a4:01:
0f:5c:3c:84:78:15:4a:6d:dc:af:f2:60:ee:06:c0:31:b8:63:
85:5d:6c:93:36:81:e6:3c:4b:f0:ca:50:c3:aa:45:18:f2:c5:
17:52:35:5c:aa:35:ea:19:22:2a:fa:c3:a3:d3:c9:a5:56:a3:
e6:04:60:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 00:05:53 2024 by rpki-client on console-fra.rpki-client.org