Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/f623b6-a198-405c-8326-09f1524a5246/1/7HuKEcn11pNNi_j7aurbEuCjjDM.roa
File: 7HuKEcn11pNNi_j7aurbEuCjjDM.roa (raw, json)
Hash identifier: 8OT555tyTlTc18HbNLWg2B1aOWlJjOFhcAN7/2Lgt4c=
Subject key identifier: EC:7B:8A:11:C9:F5:D6:93:4D:8B:F8:FB:6A:EA:DB:12:E0:A3:8C:33
Certificate issuer: /CN=1f12478b1ca4cba030991bd8cb44d9f24f59c0b8
Certificate serial: 018F3435BDBA1E37C3B4925AB3EB6CF1441D
Authority key identifier: 1F:12:47:8B:1C:A4:CB:A0:30:99:1B:D8:CB:44:D9:F2:4F:59:C0:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HxJHixyky6AwmRvYy0TZ8k9ZwLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/f623b6-a198-405c-8326-09f1524a5246/1/7HuKEcn11pNNi_j7aurbEuCjjDM.roa
Signing time: Wed 01 May 2024 12:51:28 +0000
ROA not before: Wed 01 May 2024 12:51:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202068
IP address blocks: 2001:67c:550::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/f623b6-a198-405c-8326-09f1524a5246/1/HxJHixyky6AwmRvYy0TZ8k9ZwLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/f623b6-a198-405c-8326-09f1524a5246/1/HxJHixyky6AwmRvYy0TZ8k9ZwLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HxJHixyky6AwmRvYy0TZ8k9ZwLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:34:35:bd:ba:1e:37:c3:b4:92:5a:b3:eb:6c:f1:44:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f12478b1ca4cba030991bd8cb44d9f24f59c0b8
Validity
Not Before: May 1 12:51:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec7b8a11c9f5d6934d8bf8fb6aeadb12e0a38c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7b:7f:72:61:bc:00:b9:10:b9:8e:f6:16:83:
b5:09:e0:5c:18:ac:16:fc:ca:92:2e:64:8a:a2:b2:
13:9e:e2:b6:2e:0f:69:7a:1f:7e:65:8d:0c:3a:bf:
65:23:96:32:56:26:30:0e:bd:83:2b:ac:ad:87:9b:
83:3d:60:dc:7c:54:b6:60:59:59:da:61:3a:3e:58:
e5:32:6d:75:25:aa:bc:9f:f1:54:8f:bb:75:9a:11:
ff:f7:77:89:55:f4:f9:3c:a0:1e:47:34:25:77:13:
8b:4b:08:4c:e2:4f:98:63:79:fd:0a:7f:cc:f0:6e:
c3:48:9e:d9:d9:40:c2:9f:21:45:2c:ed:1c:97:ab:
30:d8:fc:df:29:3d:08:08:37:de:ee:9d:b1:37:12:
02:83:74:f7:ce:ab:6a:ae:61:01:c9:6b:4b:a8:2b:
76:8a:e7:4d:5b:60:0f:6c:d5:ab:b0:20:d7:16:ae:
fe:bf:c2:ca:93:04:71:c9:6c:20:c0:23:3d:9b:a1:
b1:ea:c0:37:6f:3d:28:01:a0:a0:32:2e:c5:23:6b:
2f:18:0a:3a:03:05:98:94:37:a2:6c:c6:af:18:6b:
05:df:cf:c6:65:69:f2:3b:d8:26:f6:e9:b0:38:2e:
00:4a:a9:49:f6:43:27:c4:6e:b9:13:c1:f4:f6:4c:
27:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7B:8A:11:C9:F5:D6:93:4D:8B:F8:FB:6A:EA:DB:12:E0:A3:8C:33
X509v3 Authority Key Identifier:
keyid:1F:12:47:8B:1C:A4:CB:A0:30:99:1B:D8:CB:44:D9:F2:4F:59:C0:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HxJHixyky6AwmRvYy0TZ8k9ZwLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/f623b6-a198-405c-8326-09f1524a5246/1/7HuKEcn11pNNi_j7aurbEuCjjDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/f623b6-a198-405c-8326-09f1524a5246/1/HxJHixyky6AwmRvYy0TZ8k9ZwLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:550::/48
Signature Algorithm: sha256WithRSAEncryption
96:4b:2a:d1:0e:a4:71:d8:b4:f9:7b:ac:3f:e9:a6:5c:b5:7d:
f0:07:3b:d3:b8:ba:b7:37:bc:37:ee:1e:75:ed:71:34:e1:b5:
1e:d4:51:fc:1f:da:41:41:da:05:ba:82:f0:58:70:b8:3d:fe:
ab:ff:80:0c:be:9c:17:ea:06:fc:3b:60:20:25:c8:e7:03:4a:
2c:09:e5:cf:35:db:16:d1:e4:8f:9c:b7:2a:4c:17:4d:cd:29:
a2:a1:d7:48:46:f2:28:5c:b8:df:d7:d4:0b:d6:d7:e3:fe:53:
b9:36:e0:7d:f5:00:2f:ef:1b:91:59:4e:3a:bd:ec:fe:03:53:
5e:ef:74:d7:b2:2c:7b:1d:f5:83:f8:ae:f4:f5:e6:db:5d:d8:
17:59:e7:b0:69:f3:5c:e5:53:18:c6:d9:87:3c:5b:8b:42:8c:
03:13:4a:8f:1d:39:17:6f:b8:9b:43:a4:c1:80:96:e3:37:38:
9c:76:d1:98:5c:4d:d2:fa:5c:17:d5:15:c5:51:a0:a0:f0:33:
83:dd:00:85:a4:6f:e8:9f:57:a9:12:5a:74:a8:c1:77:91:cc:
3c:9e:40:c4:98:f2:e1:f9:da:f9:fa:99:44:b6:96:33:53:0e:
0d:27:09:9e:7c:fa:eb:61:f2:9f:d6:0e:bc:c5:f4:17:0d:40:
7d:ab:d4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:57:48 2024 by rpki-client on console-fra.rpki-client.org