Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/l8mYPrR-jELCJBibqLokhN_J9jY.roa
File: l8mYPrR-jELCJBibqLokhN_J9jY.roa (raw, json)
Hash identifier: 0H5gUKT0WzShUM688SCj/Q8gdDDKcvSKx6oaM7oD8EM=
Subject key identifier: 97:C9:98:3E:B4:7E:8C:42:C2:24:18:9B:A8:BA:24:84:DF:C9:F6:36
Certificate issuer: /CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be
Certificate serial: 01931BCA1ABD23AEAE790E999C1DEB5FC96B
Authority key identifier: 1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/l8mYPrR-jELCJBibqLokhN_J9jY.roa
Signing time: Mon 11 Nov 2024 15:14:10 +0000
ROA not before: Mon 11 Nov 2024 15:14:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213877
IP address blocks: 2a01:ecc0:40::/42 maxlen: 42
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1b:ca:1a:bd:23:ae:ae:79:0e:99:9c:1d:eb:5f:c9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be
Validity
Not Before: Nov 11 15:14:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97c9983eb47e8c42c224189ba8ba2484dfc9f636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:00:e5:c7:32:1a:28:4c:f9:65:75:69:51:45:
cf:58:0a:d5:6b:ea:bb:45:5e:1e:11:6f:da:83:45:
10:61:81:66:b8:bf:55:a9:af:c4:53:16:5e:08:c2:
31:ba:84:11:42:cb:4c:a4:88:e2:73:e9:40:39:40:
a7:88:69:91:b0:e0:73:2f:0e:63:e1:7e:14:74:f3:
d4:2a:b8:e5:3a:25:64:2d:98:94:ae:6f:51:3d:1d:
8c:a6:f9:17:c6:87:b8:27:9f:06:3f:5e:3c:f9:e0:
3a:a0:e6:b3:1e:bd:cf:7b:70:74:8f:30:11:4b:13:
e6:a1:74:29:b2:bb:c8:2a:4f:1d:19:f7:b2:bd:68:
9d:16:a3:5c:71:5d:d8:67:d7:1a:7a:fd:2b:a6:d7:
93:73:52:4f:d9:f8:04:c3:3f:5e:5d:39:78:39:ce:
d5:ec:17:2b:87:59:26:f5:b0:0d:9c:7e:73:1d:de:
43:8d:6a:20:c8:23:22:14:86:de:bc:41:e5:ef:5d:
23:bd:d4:4f:61:bf:3a:79:09:f7:b2:c1:e2:eb:f3:
83:9e:92:51:cf:d0:5a:ce:1a:35:a0:a9:c6:19:6a:
f9:b4:0c:a6:6a:9c:3c:ca:12:8d:47:65:7d:1f:0d:
84:ee:12:ec:3b:20:90:82:49:ce:32:28:6a:14:14:
9e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C9:98:3E:B4:7E:8C:42:C2:24:18:9B:A8:BA:24:84:DF:C9:F6:36
X509v3 Authority Key Identifier:
keyid:1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/l8mYPrR-jELCJBibqLokhN_J9jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ecc0:40::/42
Signature Algorithm: sha256WithRSAEncryption
8f:b1:27:00:7b:f4:df:fa:ef:f4:e7:26:5f:6c:b3:4b:de:5e:
7f:ff:8c:01:eb:a8:a5:32:82:a2:37:97:f3:c1:68:83:79:70:
eb:e7:37:c1:6f:80:7b:7a:4c:b0:95:d2:ae:05:a2:b6:79:64:
36:36:09:5b:6e:04:f2:60:a7:92:cf:c9:19:6c:74:c6:cc:66:
3d:06:ce:b5:0b:8f:55:d8:f8:2a:ea:83:ac:90:f1:82:ba:84:
b7:1a:11:29:4d:aa:5a:bd:02:a7:7f:01:01:3f:7c:7a:1a:5b:
b1:d1:cb:d3:a5:5c:ee:24:a3:e0:d9:d4:15:b7:66:18:f5:3a:
fd:e2:0d:bd:6a:df:61:14:d2:37:67:ec:d2:2d:aa:8c:cd:fa:
48:61:ac:68:36:fe:fe:c1:67:b5:36:79:fe:55:a6:08:50:95:
42:26:88:fc:0d:8b:c3:2e:20:38:74:35:b1:f8:41:3e:b3:88:
18:64:01:cf:b8:76:66:48:8e:fb:16:82:cf:bb:b9:e3:44:c9:
5b:96:44:df:31:1c:4f:b2:78:76:12:10:32:e4:f5:16:c5:ba:
2e:bc:f4:82:07:0b:ef:c5:e2:91:15:e7:5f:ae:08:0b:96:c5:
25:b3:64:cf:51:bd:bb:88:2b:92:2e:35:2d:8b:86:0f:6e:c1:
fa:68:96:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:32:31 2024 by rpki-client on console-ams.rpki-client.org