Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/SJ3G-A2iIacP-iNn-e1Vuf6lJnw.roa
File: SJ3G-A2iIacP-iNn-e1Vuf6lJnw.roa (raw, json)
Hash identifier: vFD1Q9XGavl7+uLS5AYYWAR1oebkoEvawfz84+S37AE=
Subject key identifier: 48:9D:C6:F8:0D:A2:21:A7:0F:FA:23:67:F9:ED:55:B9:FE:A5:26:7C
Certificate issuer: /CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Certificate serial: 018CC8DE7D4822A6B797FC4ACC8CBC7BF4D5
Authority key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/SJ3G-A2iIacP-iNn-e1Vuf6lJnw.roa
Signing time: Tue 02 Jan 2024 06:31:13 +0000
ROA not before: Tue 02 Jan 2024 06:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36383
IP address blocks: 2a00:79e0:3fd::/48 maxlen: 48
2a00:79e0:3fc::/48 maxlen: 48
2a00:79e0:2200::/39 maxlen: 39
2a00:79e0:2800::/38 maxlen: 38
2a00:79e0:3200::/39 maxlen: 39
2a00:79e0:3800::/38 maxlen: 38
2a00:79e0:3000::/38 maxlen: 38
2a00:79e0:2600::/39 maxlen: 39
2a00:79e0:3400::/39 maxlen: 39
2a00:79e0:2000::/38 maxlen: 38
2a00:79e0:2000::/35 maxlen: 35
2a00:79e0:3c00::/39 maxlen: 39
2a00:79e0:2e00::/39 maxlen: 39
2a00:79e0:3600::/39 maxlen: 39
2a00:79e0:2c00::/39 maxlen: 39
2a00:79e0:3a00::/39 maxlen: 39
2a00:79e0:3e00::/39 maxlen: 39
2a00:79e0:2a00::/39 maxlen: 39
2a00:79e0:2400::/39 maxlen: 39
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.mft
rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:7d:48:22:a6:b7:97:fc:4a:cc:8c:bc:7b:f4:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Validity
Not Before: Jan 2 06:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=489dc6f80da221a70ffa2367f9ed55b9fea5267c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:68:e7:83:79:85:d8:d7:c4:19:e0:23:2f:e8:
62:44:d3:fd:63:e7:6e:f6:e3:19:68:16:c6:5e:5a:
4d:53:84:7f:08:e4:12:a1:c6:14:79:fa:bf:f4:22:
bf:9f:b0:14:0f:92:35:a0:91:74:7b:d5:21:29:36:
73:32:58:dd:e1:80:41:8e:ee:22:dc:94:82:be:ad:
86:2b:5c:dc:0f:21:2c:37:49:73:ef:3a:e9:48:7e:
d2:87:c0:d4:0f:d0:2b:ff:88:bf:e8:f9:43:6c:72:
87:2e:6c:39:f4:7b:35:4a:f2:fe:68:e8:58:d1:bd:
e1:bd:6d:32:8a:76:7f:28:29:ff:1c:60:bc:a4:ca:
b1:a2:c1:39:a7:06:89:a4:11:87:24:35:de:f2:e8:
c3:23:78:f1:64:a3:79:c7:0b:fe:93:cf:6a:e5:d4:
7a:a9:96:f1:00:60:bc:69:7c:e6:89:ff:96:29:44:
de:2c:6e:f3:c5:40:1a:10:c9:20:fc:f3:dd:91:7a:
14:79:b0:94:f1:7c:01:1d:ca:94:02:a9:2e:ce:5f:
e1:c8:b7:a8:e3:62:49:91:da:70:30:c2:cc:52:21:
d1:30:69:92:a5:2b:0b:a3:bd:55:5a:82:1c:98:1c:
9f:77:21:67:0a:2b:58:5a:70:ee:01:75:13:13:de:
5c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:9D:C6:F8:0D:A2:21:A7:0F:FA:23:67:F9:ED:55:B9:FE:A5:26:7C
X509v3 Authority Key Identifier:
keyid:C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/SJ3G-A2iIacP-iNn-e1Vuf6lJnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:79e0:3fc::/47
2a00:79e0:2000::/35
Signature Algorithm: sha256WithRSAEncryption
90:1e:0d:47:0f:97:a2:05:8a:3f:ba:3a:84:1d:f0:73:9a:d4:
a3:3e:f0:d2:a7:07:56:52:b4:31:5a:90:2c:e5:9e:52:07:25:
bb:12:67:01:6c:3d:f9:02:5d:4a:d0:2e:88:22:54:67:33:81:
64:ae:dd:45:97:2e:b2:9b:38:80:ea:7a:dc:4c:08:f9:da:62:
8b:ce:e5:89:ee:b0:d7:af:c6:7e:5a:ef:58:f0:15:29:8a:d2:
ba:b4:df:90:93:21:46:07:24:ba:1b:15:ad:f0:24:56:2e:49:
ee:a1:0b:47:08:e7:ca:13:8a:02:9d:c3:28:4c:60:42:35:00:
0c:ba:43:d1:25:6a:af:31:f4:a6:79:dd:21:78:ca:ac:64:44:
05:20:b6:c4:83:ae:75:f7:66:63:77:db:62:fa:5d:0b:70:31:
57:66:ca:dd:0c:98:4b:ea:c2:7b:38:46:20:12:70:5a:88:3c:
91:d2:8d:db:17:bd:0f:dc:0b:81:14:f2:60:ec:9c:2e:c6:53:
84:d4:db:07:ce:d2:67:a4:f2:f7:54:b0:bf:2c:7b:7c:cd:18:
48:1f:ba:52:13:4a:92:62:24:00:d2:44:37:5f:11:fe:00:6f:
4e:05:21:25:a8:43:c8:d0:3f:59:20:3d:f8:da:52:95:bf:6a:
8a:28:d7:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:35:59 2024 by rpki-client on console-fra.rpki-client.org