Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4UUrrkinq3IXrksV17dY7dD-m5A.roa
File: 4UUrrkinq3IXrksV17dY7dD-m5A.roa (raw, json)
Hash identifier: qVQ8taVfVyzj3N3zEb01pu0d35IheG+2qhnTFXlf6wY=
Subject key identifier: E1:45:2B:AE:48:A7:AB:72:17:AE:4B:15:D7:B7:58:ED:D0:FE:9B:90
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018EA83B57574A2C4700C36169A07A095034
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4UUrrkinq3IXrksV17dY7dD-m5A.roa
Signing time: Thu 04 Apr 2024 08:30:44 +0000
ROA not before: Thu 04 Apr 2024 08:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215192
IP address blocks: 2a12:bec0:50e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a8:3b:57:57:4a:2c:47:00:c3:61:69:a0:7a:09:50:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 4 08:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1452bae48a7ab7217ae4b15d7b758edd0fe9b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c1:7c:34:19:6c:aa:ea:78:4e:e3:17:dd:01:
ac:88:11:55:46:8b:ac:b4:39:c4:cd:07:18:ff:c9:
6a:fc:d0:25:ef:6b:05:df:70:4b:98:e7:9f:d0:a9:
4a:12:b6:95:8c:96:d6:6d:92:cd:c4:7d:a7:a1:28:
c8:6b:92:62:55:c3:1d:2f:59:47:20:fb:22:67:9c:
39:d8:09:85:9b:20:f4:c2:10:32:7e:05:ed:7a:95:
34:7e:88:e2:33:9a:42:8f:00:70:87:ba:b8:2a:29:
5a:03:29:e3:b7:3f:a3:f3:81:8f:12:62:80:01:5b:
0a:16:a8:83:40:0c:11:ec:99:45:9f:99:a8:11:e1:
f7:64:7b:b5:0c:28:84:5a:e7:97:06:ee:9a:7e:2a:
89:84:bd:a4:45:ad:ff:f4:ca:79:6a:1b:73:97:48:
92:19:39:5c:ec:29:05:56:ec:ca:d3:6c:65:ed:6a:
33:ba:76:c8:69:b5:73:72:ab:09:45:07:e0:3d:32:
ad:80:b1:ea:19:8b:22:de:d1:76:90:0c:8d:63:15:
81:b8:17:78:56:cb:60:2f:71:ca:ae:6e:fd:9a:04:
94:bf:26:95:da:90:86:2b:1f:61:12:de:56:77:9e:
05:62:f9:76:75:75:bd:fa:9a:63:48:75:66:f0:c0:
b7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:45:2B:AE:48:A7:AB:72:17:AE:4B:15:D7:B7:58:ED:D0:FE:9B:90
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4UUrrkinq3IXrksV17dY7dD-m5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:50e::/48
Signature Algorithm: sha256WithRSAEncryption
62:d6:ea:e3:f3:3c:03:37:ec:79:51:5d:9d:5b:75:a6:f2:c4:
31:50:82:1f:ae:12:1a:30:f2:bb:18:3a:f2:04:60:ee:55:d0:
e0:3d:57:6e:e7:91:e3:bf:e0:5d:ca:4f:2c:d5:0f:87:d8:85:
82:d0:28:b6:11:08:12:82:25:94:b8:7e:d2:96:9a:03:12:7a:
51:e7:90:5a:e7:eb:97:24:11:15:6d:3f:dd:bb:30:a8:00:5a:
12:18:e5:d8:be:20:7d:8d:fe:bb:52:a4:8f:0f:56:bf:18:ff:
f4:88:f1:71:1f:6d:2f:b9:76:fd:e8:70:df:6d:79:af:09:6a:
7f:da:e9:49:56:03:75:8b:bd:ba:0f:2c:09:a3:61:a1:42:c8:
93:d3:17:56:0a:aa:09:d7:3a:2e:48:24:23:7e:55:cd:2b:17:
39:44:c6:ce:2f:5d:ef:f2:04:84:eb:17:a9:2e:98:39:55:95:
6c:9f:0e:47:c2:d1:2b:68:a3:e2:4c:98:5a:ab:ba:3c:64:a3:
8b:e5:be:a9:c6:29:85:1a:a4:60:b6:52:f1:16:06:21:f0:0a:
9b:d1:e9:04:e2:69:c4:4e:b0:64:39:99:ec:40:9a:fc:5a:de:
c8:c2:39:f5:23:fe:fe:5b:59:d9:d9:2d:fe:15:4f:60:e8:a0:
dc:3e:56:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:04:22 2024 by rpki-client on console-fra.rpki-client.org