Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/v_7J5B_orAg2-yE4Ot8HtPcymDo.roa
File: v_7J5B_orAg2-yE4Ot8HtPcymDo.roa (raw, json)
Hash identifier: 6Aw06VcPSN9ocbZNierh6T8kzFGNRXmYy8B1a5/oZVI=
Subject key identifier: BF:FE:C9:E4:1F:E8:AC:08:36:FB:21:38:3A:DF:07:B4:F7:32:98:3A
Certificate issuer: /CN=fa7eb1115130fac94091061e31462a565226885a
Certificate serial: 01917A654463472AB77628EE2BD04163537D
Authority key identifier: FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/v_7J5B_orAg2-yE4Ot8HtPcymDo.roa
Signing time: Thu 22 Aug 2024 14:02:22 +0000
ROA not before: Thu 22 Aug 2024 14:02:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57521
IP address blocks: 45.10.39.0/24 maxlen: 24
2a13:bc1::/32 maxlen: 48
2a13:bc2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/1-n6xEVEw-slAkQYeMUYqVlImiFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/1-n6xEVEw-slAkQYeMUYqVlImiFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:65:44:63:47:2a:b7:76:28:ee:2b:d0:41:63:53:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa7eb1115130fac94091061e31462a565226885a
Validity
Not Before: Aug 22 14:02:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bffec9e41fe8ac0836fb21383adf07b4f732983a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:a0:cb:0d:62:03:f3:4c:be:2b:03:4a:37:47:
de:19:12:ce:e8:f6:d5:25:77:b0:5c:e0:4b:02:4d:
ad:aa:84:33:f1:cc:36:f6:87:dc:78:46:7f:0a:9f:
f0:6a:81:11:3b:43:19:98:ce:bb:fa:f7:5d:98:3b:
6e:73:45:8b:fc:37:2a:b2:07:ba:79:7a:f6:ef:7b:
a0:b2:34:38:a6:43:55:99:69:8d:d0:84:f1:cf:24:
a2:08:c9:a8:c6:e7:dc:ee:e7:86:66:85:3e:86:02:
ce:42:c5:43:73:26:d1:f0:93:95:ab:87:f5:d9:3a:
e2:62:8f:f1:eb:13:6f:5a:51:d3:ab:38:d6:49:05:
59:4e:f9:15:47:d8:62:c5:50:eb:63:46:ab:17:cc:
0f:ed:99:d1:f5:d5:d0:5e:6b:c3:94:26:49:90:c9:
64:24:62:c0:48:c8:f6:78:36:43:12:e6:d8:1c:5d:
57:4e:b2:a7:00:16:2e:f9:ef:4a:cc:3f:01:07:37:
61:90:6a:c3:1e:45:3c:ea:5f:14:f0:bb:b0:f3:d6:
7c:39:cd:8a:f0:0f:c2:19:3f:0a:cd:9e:ab:90:57:
af:d5:80:4e:32:a0:1f:c6:78:a6:ba:bd:18:de:4c:
be:49:a7:61:cd:65:c9:6e:03:6d:1f:58:a8:c8:c7:
80:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FE:C9:E4:1F:E8:AC:08:36:FB:21:38:3A:DF:07:B4:F7:32:98:3A
X509v3 Authority Key Identifier:
keyid:FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/v_7J5B_orAg2-yE4Ot8HtPcymDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/1-n6xEVEw-slAkQYeMUYqVlImiFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.39.0/24
IPv6:
2a13:bc1::-2a13:bc2:0:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1f:3a:3a:fd:65:af:6b:20:30:9d:b7:48:7c:53:68:0b:de:d3:
82:3d:66:ed:98:88:06:8c:18:d6:f5:a4:7a:11:c3:77:1c:96:
6b:b7:1e:43:5d:f0:16:43:2c:37:4b:68:b0:fa:57:ad:3f:81:
af:7e:dc:99:ab:04:5e:2e:b3:90:2e:73:13:62:7c:3c:30:6d:
4d:f7:e8:a8:b3:38:1f:28:bb:ef:60:cf:7e:87:e1:09:6b:82:
93:a2:c7:f3:ab:1a:13:f6:c8:9c:40:37:65:29:f1:9f:5f:5a:
62:52:a8:5d:4d:d5:97:2b:e7:e4:a0:0e:ad:da:05:7d:47:d3:
a3:cf:48:07:0e:b8:f2:89:52:15:d7:a4:08:89:f1:fc:be:1a:
02:e2:4d:c4:f0:97:f5:56:87:2c:b0:b6:f7:e9:9f:21:58:63:
48:c9:5a:59:0e:5a:ad:84:cf:b7:10:9b:f1:36:5b:75:3c:05:
06:b3:e3:42:88:d7:3e:34:39:31:f3:79:0d:39:c5:30:11:32:
21:08:85:19:fa:63:c8:cb:37:25:c9:11:1f:83:60:7f:bc:35:
6a:8c:0d:c7:f4:6d:ea:1d:98:bb:78:92:7f:96:2b:bb:0f:64:
bb:18:fc:08:ad:75:0e:ed:ea:8f:d0:8d:c7:37:07:71:78:bb:
1f:31:21:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:57:03 2024 by rpki-client on console-ams.rpki-client.org