Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/dvD4X5V9MFCmxzx86jTeV4hTAt8.roa
File: dvD4X5V9MFCmxzx86jTeV4hTAt8.roa (raw, json)
Hash identifier: ZZLMTWtJtOJ+aoG3W3AqrHOmWJrO/wrvx3ceODensyg=
Subject key identifier: 76:F0:F8:5F:95:7D:30:50:A6:C7:3C:7C:EA:34:DE:57:88:53:02:DF
Certificate issuer: /CN=a7ddfaf13b7dbe05daa32b5878b8b68024045971
Certificate serial: 018CC500D2180E0545830E8A7E5822890B6A
Authority key identifier: A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/dvD4X5V9MFCmxzx86jTeV4hTAt8.roa
Signing time: Mon 01 Jan 2024 12:30:14 +0000
ROA not before: Mon 01 Jan 2024 12:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202560
IP address blocks: 2001:67c:74::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/p9368Tt9vgXaoytYeLi2gCQEWXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/p9368Tt9vgXaoytYeLi2gCQEWXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:d2:18:0e:05:45:83:0e:8a:7e:58:22:89:0b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ddfaf13b7dbe05daa32b5878b8b68024045971
Validity
Not Before: Jan 1 12:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76f0f85f957d3050a6c73c7cea34de57885302df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:49:0c:fe:f6:46:e1:c7:94:5d:7f:21:6a:1d:
10:6a:53:a1:3c:af:98:e7:78:ec:5b:7d:1d:b3:3d:
75:b2:33:09:24:42:a2:54:88:87:10:22:51:b3:7e:
d4:16:1d:6f:97:99:ec:69:5a:90:af:27:26:7e:78:
1e:b1:70:0c:28:f6:08:29:59:7c:26:e8:a5:71:da:
97:05:7c:02:bb:38:c7:5f:e6:36:c1:3f:2d:69:de:
e0:a2:f6:4c:34:85:5d:18:f1:ab:37:d9:48:39:47:
2a:f1:b1:47:83:31:94:be:8e:47:50:4e:db:9f:22:
f5:b4:0e:08:36:ac:9b:dc:66:59:f2:3a:9f:d1:91:
20:32:39:76:f9:f0:16:92:23:a5:da:83:89:e6:07:
1d:83:4c:1a:d1:e0:86:ad:ec:34:f3:8b:b7:3d:ca:
c0:9b:b5:56:40:4a:8d:33:7f:33:96:21:e3:77:34:
69:88:75:ce:c8:1d:06:8e:77:eb:df:45:7a:4c:cc:
35:b6:f2:0b:4e:d4:f0:06:7b:18:1e:08:d1:a3:6c:
4e:f0:c1:36:07:92:28:38:d7:94:92:d4:fc:86:c3:
7f:19:1d:fc:f7:47:75:9d:e3:fe:45:54:fb:70:a7:
2a:5d:e4:95:41:0a:2d:e4:6e:db:88:e6:2e:f2:f5:
33:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F0:F8:5F:95:7D:30:50:A6:C7:3C:7C:EA:34:DE:57:88:53:02:DF
X509v3 Authority Key Identifier:
keyid:A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/dvD4X5V9MFCmxzx86jTeV4hTAt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/p9368Tt9vgXaoytYeLi2gCQEWXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:74::/48
Signature Algorithm: sha256WithRSAEncryption
cb:fb:3a:c2:42:6e:da:72:36:e5:ea:41:b1:df:3c:82:97:b9:
5a:10:ae:5e:17:ce:9f:3f:96:ba:4c:7f:30:a6:a7:21:51:fa:
c0:95:98:7a:72:66:f6:0f:60:3f:21:88:bb:f6:b5:53:70:57:
61:f0:a1:f8:9a:a0:1a:9e:dc:8c:ff:14:f6:57:31:ed:54:7f:
79:3d:0c:7d:5e:d8:dd:44:f6:85:cf:c0:b2:50:4f:fa:14:e7:
d8:38:64:56:fa:0b:83:01:18:ec:85:a9:6a:75:3c:7f:b4:7a:
15:08:6c:eb:81:61:fc:e4:69:93:dc:29:0a:c9:51:7d:45:43:
87:86:e3:bf:4b:4f:73:28:6e:f3:8f:27:eb:6f:13:ba:7a:30:
89:10:f1:eb:66:7c:0e:9d:8c:72:97:4f:43:e8:36:3f:5b:40:
d0:c0:d0:8c:b5:5a:f4:9f:62:72:a5:42:14:e4:16:dc:2d:d2:
67:9f:e3:78:76:23:33:6d:73:63:c8:05:a6:5a:37:3b:00:58:
91:85:82:59:95:70:69:70:f1:a3:6b:5b:58:a4:65:eb:f1:09:
1d:45:58:b6:11:4f:4e:a6:7b:9e:68:cd:12:10:f7:70:b2:13:
73:3b:33:39:2a:f6:1b:f9:39:02:08:05:98:68:52:b0:f3:d1:
fe:04:fd:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:44:03 2024 by rpki-client on console-ams.rpki-client.org