Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/62633f-2b3f-4072-8f4a-b474970eca66/1/tIoxnX9EZ0XS1x3ldZ1RE5Ynk6c.roa
File: tIoxnX9EZ0XS1x3ldZ1RE5Ynk6c.roa (raw, json)
Hash identifier: sG8F1O/6aXJbU/M1oDE7cggvkpWyf+mHLhsyiwBfHBc=
Subject key identifier: B4:8A:31:9D:7F:44:67:45:D2:D7:1D:E5:75:9D:51:13:96:27:93:A7
Certificate issuer: /CN=8e06f5a7314b2f966b24fc53155ce7bf604c07a6
Certificate serial: 018CC500F6522F9B050068F7BF853879182E
Authority key identifier: 8E:06:F5:A7:31:4B:2F:96:6B:24:FC:53:15:5C:E7:BF:60:4C:07:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jgb1pzFLL5ZrJPxTFVznv2BMB6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/62633f-2b3f-4072-8f4a-b474970eca66/1/tIoxnX9EZ0XS1x3ldZ1RE5Ynk6c.roa
Signing time: Mon 01 Jan 2024 12:30:23 +0000
ROA not before: Mon 01 Jan 2024 12:30:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 2a13:a287::/33 maxlen: 33
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/62633f-2b3f-4072-8f4a-b474970eca66/1/jgb1pzFLL5ZrJPxTFVznv2BMB6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/62633f-2b3f-4072-8f4a-b474970eca66/1/jgb1pzFLL5ZrJPxTFVznv2BMB6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/jgb1pzFLL5ZrJPxTFVznv2BMB6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:f6:52:2f:9b:05:00:68:f7:bf:85:38:79:18:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e06f5a7314b2f966b24fc53155ce7bf604c07a6
Validity
Not Before: Jan 1 12:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b48a319d7f446745d2d71de5759d5113962793a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a8:8e:fc:c8:89:10:66:da:55:67:b1:fa:49:
34:d8:a5:1f:82:ce:b9:e2:e0:a8:40:53:54:0b:ba:
9b:b1:55:0a:08:a8:55:1f:70:68:b6:4f:1a:3b:4b:
73:42:89:fc:7c:89:3e:74:4e:c0:98:69:24:a1:34:
81:18:5d:a4:1e:d1:79:06:ab:3a:21:b1:eb:35:97:
af:96:e9:16:09:96:9a:f1:af:9f:8f:a5:79:d3:8a:
46:ef:3b:d3:e7:25:bf:3a:d3:a0:ff:35:5b:78:7f:
92:0b:1a:7c:1b:1b:4d:79:46:38:b7:bb:fd:76:72:
81:d9:37:35:b7:16:4a:ca:e7:7d:cd:17:a5:37:44:
9d:02:62:47:11:51:44:c3:98:76:fa:2f:01:15:51:
66:eb:fe:39:c9:a7:17:19:9d:b1:ea:0f:0d:09:9e:
ce:64:11:77:19:67:3d:db:85:24:4d:8e:04:92:29:
80:17:91:a3:6f:ba:a4:a2:ef:06:ee:df:85:0a:fa:
7e:9e:ba:72:c7:26:30:ca:ba:af:41:e8:ab:67:3a:
c2:51:37:07:d9:c4:1f:fc:de:78:51:d7:37:b1:22:
05:1c:0d:2d:d9:64:ed:89:d6:4c:d1:bd:70:88:09:
47:b2:6f:d8:76:55:23:42:6f:93:0a:ab:16:c6:c9:
5f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8A:31:9D:7F:44:67:45:D2:D7:1D:E5:75:9D:51:13:96:27:93:A7
X509v3 Authority Key Identifier:
keyid:8E:06:F5:A7:31:4B:2F:96:6B:24:FC:53:15:5C:E7:BF:60:4C:07:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jgb1pzFLL5ZrJPxTFVznv2BMB6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/62633f-2b3f-4072-8f4a-b474970eca66/1/tIoxnX9EZ0XS1x3ldZ1RE5Ynk6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/62633f-2b3f-4072-8f4a-b474970eca66/1/jgb1pzFLL5ZrJPxTFVznv2BMB6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a287::/33
Signature Algorithm: sha256WithRSAEncryption
dc:de:f6:bb:75:2f:93:13:5a:56:72:c6:d3:98:3f:90:b5:c8:
46:14:db:df:88:63:0f:3f:2c:ff:fe:36:04:8e:22:a6:59:25:
df:fc:f1:ca:5c:45:ee:70:e7:ba:57:29:74:ba:ac:7f:d6:0a:
a2:76:4b:4f:52:dd:d9:63:3d:dd:95:a3:b4:56:1a:de:4b:23:
b1:13:d0:72:5e:19:90:0e:41:9f:8e:22:e9:6e:60:a0:13:d1:
39:58:5e:ab:83:20:01:ed:fd:a7:b7:4c:f5:3e:1a:07:1b:82:
b3:82:b5:87:8f:7b:28:0e:0b:14:04:f8:3e:bd:65:b2:1a:e4:
fd:90:87:39:57:82:8a:ca:ed:b4:13:07:1f:6a:af:6b:e3:50:
38:35:1b:c7:58:da:62:e4:93:20:c8:48:1e:77:d8:89:1c:44:
79:9e:7e:ea:43:26:89:07:4e:2b:e8:49:d8:0c:38:19:a0:f2:
89:75:dd:52:66:28:cd:0c:b5:f7:0f:41:eb:53:d0:48:d8:72:
ec:50:8e:36:d5:79:c6:b9:85:f5:a3:f8:bc:62:fb:bb:61:80:
d9:d5:29:1d:ab:e0:fb:47:5a:d8:01:59:31:5d:40:de:be:2f:
03:13:21:ac:2e:4e:54:68:39:90:07:a9:f6:86:49:2a:cf:4f:
75:8b:1f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 21:21:06 2024 by rpki-client on console-ams.rpki-client.org