Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A8eDA4MwsTC8H5cWCfhKNN4RrkM.roa
File: A8eDA4MwsTC8H5cWCfhKNN4RrkM.roa (raw, json)
Hash identifier: OG00KZhyROO1ZL+7nzsK881AncChomKpt4dY07r9mAw=
Subject key identifier: 03:C7:83:03:83:30:B1:30:BC:1F:97:16:09:F8:4A:34:DE:11:AE:43
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 019427B390D6B33687C88BD22BB53AD02B7F
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A8eDA4MwsTC8H5cWCfhKNN4RrkM.roa
Signing time: Thu 02 Jan 2025 15:47:46 +0000
ROA not before: Thu 02 Jan 2025 15:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9312
IP address blocks: 2a07:e340::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 09:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:90:d6:b3:36:87:c8:8b:d2:2b:b5:3a:d0:2b:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 15:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03c783038330b130bc1f971609f84a34de11ae43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8f:1d:5b:be:3d:89:20:63:bb:3e:39:25:9c:
05:63:c8:c2:2a:73:ea:f1:99:1e:ec:27:ad:bc:8f:
04:66:17:43:42:5f:3c:3c:d8:4b:2e:7a:c9:da:e1:
78:be:1d:a5:9d:8b:22:2c:56:10:07:64:07:09:fd:
be:bf:81:cc:a9:0f:c2:0d:eb:e2:c5:b6:8f:19:b4:
b8:66:82:78:95:9f:9f:d7:78:13:e4:58:da:2d:30:
53:80:f4:6e:6f:bf:42:bb:f8:cc:64:7b:6d:a1:af:
5a:94:01:8d:81:27:4f:69:44:8b:6b:8b:39:1d:0f:
2d:f6:a8:8e:31:4c:80:ee:dd:52:5a:6f:6a:1c:25:
36:e2:52:c6:52:69:2a:77:c2:ea:7c:54:78:9a:37:
58:41:80:e0:e2:0c:e3:ba:7c:7b:82:46:bc:db:d3:
db:6d:ae:6d:f5:f7:1d:a6:89:58:5d:87:37:b3:51:
28:e2:d8:5f:90:99:74:ab:ca:25:c0:59:d2:49:7d:
61:59:09:c9:c7:50:cd:2d:fb:b7:b5:6d:a6:32:86:
7d:68:e3:4e:d3:be:22:27:a7:1e:3a:41:90:5c:1d:
2c:3c:60:ea:88:db:eb:3a:46:a2:fb:b3:1b:1f:74:
96:be:c0:9a:ba:ba:d4:00:01:02:6f:aa:fa:6b:ab:
94:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C7:83:03:83:30:B1:30:BC:1F:97:16:09:F8:4A:34:DE:11:AE:43
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A8eDA4MwsTC8H5cWCfhKNN4RrkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e340::/32
Signature Algorithm: sha256WithRSAEncryption
30:0c:0b:6e:62:d6:07:f1:e6:4a:52:a6:7a:8a:2c:cd:52:ac:
93:5e:9e:74:37:5a:96:2e:41:27:7f:8d:d8:c0:03:a0:a3:9f:
45:c1:ea:72:1f:8c:23:85:19:7a:1f:f9:a8:aa:67:49:02:29:
5f:54:34:ff:b6:3d:c1:69:51:49:25:cc:bd:9f:fd:4e:0a:81:
d3:dc:18:62:d5:83:bc:a8:46:62:70:e0:b8:cb:63:0f:1b:80:
77:df:cf:57:95:c9:31:57:a0:9a:5a:ba:40:47:07:3f:d8:91:
7b:50:7d:ae:af:78:00:98:aa:91:49:d5:ff:7a:7a:e2:e8:73:
41:9a:a2:cf:e3:48:8f:ac:e9:19:5b:bc:d0:4c:5e:ac:a8:43:
57:08:78:a3:6a:1c:d9:f1:3a:a5:aa:ad:c5:52:9f:0f:20:7d:
ba:f4:91:23:bd:fb:11:7e:50:70:32:86:7a:3a:e8:49:c3:a4:
14:ce:8e:e5:50:e6:99:28:1e:db:f7:ac:90:73:30:a7:7a:c8:
54:f4:b2:dd:3e:c6:fe:a4:18:e7:a1:d2:1a:15:9c:45:54:ab:
02:25:e9:13:d2:1f:4b:85:b4:99:12:dc:7a:0e:9c:bc:a7:fa:
ff:4d:8e:ea:06:0f:f5:95:49:25:10:45:da:dd:5d:e9:5b:a6:
76:af:ee:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:50:59 2025 by rpki-client