Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/L7awFRj6fWL1hoYLE0ODSZL7Sm0.roa
File: L7awFRj6fWL1hoYLE0ODSZL7Sm0.roa (raw, json)
Hash identifier: Bf18VoNjxaQyIhzX4QJ9VpnCOETPhOrIXNmwfFhEHjM=
Subject key identifier: 2F:B6:B0:15:18:FA:7D:62:F5:86:86:0B:13:43:83:49:92:FB:4A:6D
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190CAE7AEB7C2A7E85069A5D7B77FA31FC2
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/L7awFRj6fWL1hoYLE0ODSZL7Sm0.roa
Signing time: Fri 19 Jul 2024 12:11:39 +0000
ROA not before: Fri 19 Jul 2024 12:11:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 217.144.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 16:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ca:e7:ae:b7:c2:a7:e8:50:69:a5:d7:b7:7f:a3:1f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 19 12:11:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2fb6b01518fa7d62f586860b1343834992fb4a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a4:13:85:5b:3a:27:19:ce:6d:13:1d:8d:19:
7d:b9:74:93:b0:70:69:6a:ba:4b:6f:e7:10:1b:bb:
8e:61:2b:2a:78:df:f7:c9:84:6c:76:14:c5:4e:33:
53:db:e8:c0:0b:3e:28:5d:6a:ab:17:a2:95:ec:5f:
77:e4:70:d9:fd:fc:18:65:1d:e0:41:48:4d:dc:16:
4e:31:de:3a:54:27:e5:90:81:6e:d5:e9:16:69:62:
bf:6f:98:b4:7d:e2:2d:71:46:9f:29:b6:5a:60:2e:
25:c5:fc:f4:5c:7a:b7:51:ea:a7:15:c6:92:9d:1e:
81:be:81:9d:b0:91:65:54:32:3b:83:b7:08:12:c3:
0b:c3:1b:d8:31:a1:1c:b3:e7:0e:a9:ea:e0:a6:90:
bf:02:4a:cd:aa:ea:f0:e7:ae:c7:c2:a9:26:e6:86:
ff:a0:51:55:89:2d:4e:4b:a9:1e:a0:65:10:2c:ce:
eb:94:ca:cd:3e:23:99:db:37:7b:51:c1:7a:0b:fe:
9d:f6:93:23:0f:7e:07:73:15:4d:fe:65:43:a9:60:
4e:29:f8:bb:5f:63:47:05:a4:a6:35:bb:f7:98:ac:
e3:5c:2c:b1:c4:3b:fa:63:9b:05:d8:c7:74:9b:8f:
9b:40:58:cd:b1:c9:1e:2f:89:89:7e:cb:1a:b3:2f:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B6:B0:15:18:FA:7D:62:F5:86:86:0B:13:43:83:49:92:FB:4A:6D
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/L7awFRj6fWL1hoYLE0ODSZL7Sm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.144.154.0/24
Signature Algorithm: sha256WithRSAEncryption
12:06:f4:5d:c3:72:88:11:45:98:1d:58:24:39:89:f3:19:91:
dc:71:e0:5f:48:d2:ed:8f:aa:d0:8e:1a:45:57:a3:45:2c:77:
8b:9f:bb:90:b1:7a:d4:75:6e:f8:43:3f:20:3f:0e:9b:09:19:
88:69:64:4c:93:51:47:9b:57:2a:a4:9d:58:0d:c4:b4:7d:bb:
83:dc:bd:de:3f:59:5f:9e:0f:9b:e2:02:8b:5d:ad:cd:73:79:
36:18:99:c9:75:94:47:2e:45:47:40:2f:5d:bf:15:4a:b1:db:
23:da:26:7d:05:59:94:a6:6f:35:20:cd:4d:77:2b:28:a1:6d:
07:8e:a6:18:bd:14:4e:9d:5c:4d:e2:a6:e9:ea:81:bf:00:35:
06:82:66:2c:cd:2a:94:57:a9:72:52:af:74:93:d7:b8:64:f8:
0a:5b:49:97:42:71:24:06:ca:c7:9d:a1:05:c3:71:0d:de:9c:
d9:7e:f2:d2:29:8f:17:29:03:92:cd:3b:10:1b:19:da:b8:52:
0b:37:06:4c:dd:48:dc:41:60:2b:b4:87:3a:c8:a1:8d:a2:d9:
23:94:df:0d:f2:b6:c4:09:b3:ea:2e:65:dd:52:65:19:e5:8b:
e4:5b:f6:3b:25:66:d4:29:15:b6:0a:27:ed:b5:1f:f0:9d:49:
e8:7b:68:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:17:28 2024 by rpki-client on console-ams.rpki-client.org