Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/EuYJ2gsilnK0OZdkG1OkM8nTvkk.roa
File: EuYJ2gsilnK0OZdkG1OkM8nTvkk.roa (raw, json)
Hash identifier: 8c9T8oAjJbJ+dYCN8m/DwRC31Jv27WShjIDpT9xD7CI=
Subject key identifier: 12:E6:09:DA:0B:22:96:72:B4:39:97:64:1B:53:A4:33:C9:D3:BE:49
Certificate issuer: /CN=f6af433974df373b70abd76b13e1c70c775f554b
Certificate serial: 01920580EFC7586C194BC0AC6264435767F0
Authority key identifier: F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/EuYJ2gsilnK0OZdkG1OkM8nTvkk.roa
Signing time: Wed 18 Sep 2024 14:19:48 +0000
ROA not before: Wed 18 Sep 2024 14:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 2a12:3e80:401::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:05:80:ef:c7:58:6c:19:4b:c0:ac:62:64:43:57:67:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6af433974df373b70abd76b13e1c70c775f554b
Validity
Not Before: Sep 18 14:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12e609da0b229672b43997641b53a433c9d3be49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f2:f7:f8:cf:c0:06:c7:f0:3c:81:73:8b:ea:
2d:b2:3b:72:f4:2f:b3:41:e1:51:be:24:cd:fe:3d:
f4:17:aa:32:6d:5c:a3:9d:7d:91:fc:a9:da:ce:50:
ef:8e:71:f9:d8:07:64:21:3c:b2:1c:23:45:b7:2c:
1b:a6:a6:36:89:e4:32:fb:e4:31:26:57:d0:17:12:
39:3d:09:ce:f4:0e:4e:3a:02:53:14:36:12:8d:2c:
ce:71:33:21:7d:d6:3c:fe:61:20:94:9a:8d:49:5f:
f1:fb:d2:01:0a:0a:7a:a0:1b:a3:a2:b7:eb:c4:a9:
a3:bc:a3:74:d7:83:cf:c8:2c:3d:55:36:58:71:9a:
bb:61:6d:ca:94:4c:82:9d:87:5b:a3:db:52:4b:dc:
c9:7b:2e:86:7d:6c:d1:dd:48:68:75:fa:61:db:ab:
73:b8:90:09:a1:a6:99:c1:40:de:cf:e4:67:73:8e:
ea:21:aa:fd:52:89:f7:eb:db:3b:75:89:56:93:3b:
75:75:1e:2c:12:ce:01:f2:1b:56:79:6d:4b:ae:0f:
9b:f4:23:f4:53:f6:b0:95:29:cc:76:11:f3:a2:32:
42:71:5d:18:ad:ea:a4:18:08:0d:30:08:e6:c3:a6:
02:7d:3c:eb:eb:a3:71:f2:b4:24:41:b5:59:5f:2a:
a3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:E6:09:DA:0B:22:96:72:B4:39:97:64:1B:53:A4:33:C9:D3:BE:49
X509v3 Authority Key Identifier:
keyid:F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/EuYJ2gsilnK0OZdkG1OkM8nTvkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3e80:401::/48
Signature Algorithm: sha256WithRSAEncryption
88:4f:c0:87:a0:b2:2b:ac:98:80:8a:4f:95:06:56:0f:dc:7a:
b7:27:63:ec:2d:12:2a:d1:e1:17:a1:6c:22:27:c8:dc:57:18:
92:0d:37:40:b7:21:5a:89:50:c1:5e:a2:5a:5f:40:45:ed:33:
c9:16:f5:68:ce:00:d4:f0:9c:05:de:71:fa:b4:99:4a:bd:64:
17:dc:74:93:bf:ff:0d:94:cc:0a:56:f4:7d:22:42:d9:8a:be:
6c:3e:e5:a0:e4:40:34:17:75:39:fc:7f:06:11:4d:46:cd:68:
be:ac:5d:f9:03:9b:e4:7e:91:19:29:7d:3d:0f:54:fd:80:01:
12:fd:09:74:1c:a3:be:d3:fd:6c:a9:f3:39:15:c1:e0:d6:47:
10:3f:9b:42:74:f9:85:c9:27:52:fa:5a:67:67:f8:db:12:46:
fb:8c:a5:b9:ac:27:55:e1:24:f4:72:39:fe:3b:e7:ac:03:b4:
b0:e1:10:99:21:d5:f2:b3:d1:46:35:5d:3a:69:07:00:02:be:
0d:23:46:bb:d4:f0:5e:a6:b9:62:f9:7d:ad:b6:d7:ec:8b:ca:
87:46:06:bf:24:83:40:f6:93:fe:23:e1:05:0a:70:af:67:15:
10:ec:9d:58:95:c3:f4:32:15:99:39:c9:a7:d1:07:1c:98:7a:
62:c0:ae:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:57:29 2024 by rpki-client on console-ams.rpki-client.org