Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/VloUCkknW5gRuMIPHVyAXxnenZU.roa
File: VloUCkknW5gRuMIPHVyAXxnenZU.roa (raw, json)
Hash identifier: g0RsiXVJiCl1vS+GHZyzZ1XnK2sywF/Hd7AR0FRHxZk=
Subject key identifier: 56:5A:14:0A:49:27:5B:98:11:B8:C2:0F:1D:5C:80:5F:19:DE:9D:95
Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Certificate serial: 018CC3B6AD9D63CF639ED0ED74EDA95291D3
Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/VloUCkknW5gRuMIPHVyAXxnenZU.roa
Signing time: Mon 01 Jan 2024 06:29:38 +0000
ROA not before: Mon 01 Jan 2024 06:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 680
IP address blocks: 139.6.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:ad:9d:63:cf:63:9e:d0:ed:74:ed:a9:52:91:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Validity
Not Before: Jan 1 06:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=565a140a49275b9811b8c20f1d5c805f19de9d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:60:1d:74:ca:70:95:31:58:43:0d:61:9e:c1:
cc:86:f0:b2:4d:39:fb:b2:b5:e5:8c:a0:53:32:ce:
f0:f3:6a:79:d2:f7:c3:ce:f5:74:dd:7d:e8:23:f4:
71:eb:62:00:c9:81:d8:20:a7:a0:74:33:d7:91:8e:
a2:27:71:60:d5:f4:f0:55:68:6a:30:c0:c7:f2:b3:
79:03:e9:93:a9:a9:d1:a8:86:16:ef:11:09:49:fd:
b1:98:a2:87:be:6f:d1:8c:4b:d7:0f:de:53:f5:62:
54:7b:c8:c2:a6:51:e3:2e:67:c9:2e:c8:15:89:a3:
f1:5e:d0:0d:28:16:c2:63:fd:6d:c8:d3:d3:16:9c:
af:58:a0:4a:b8:0f:75:b3:fc:af:e7:30:fb:8d:70:
3e:fb:8f:01:6e:54:25:15:45:82:e2:4a:83:9c:5f:
5a:d1:93:d5:82:56:89:07:e9:8b:67:db:f5:a4:85:
2c:75:ef:94:8a:de:66:c0:94:31:d8:c6:15:1c:49:
fb:b6:1b:80:d6:77:9c:22:30:b1:ab:a2:9b:d5:8b:
1c:b1:4d:2e:a9:61:2a:cd:32:8a:43:3b:cd:48:04:
57:93:80:88:94:46:81:d5:f4:26:c7:67:5b:fb:96:
28:7c:97:b3:7b:ff:cb:5a:f0:2c:42:82:15:1d:0b:
63:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5A:14:0A:49:27:5B:98:11:B8:C2:0F:1D:5C:80:5F:19:DE:9D:95
X509v3 Authority Key Identifier:
keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/VloUCkknW5gRuMIPHVyAXxnenZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.6.0.0/16
Signature Algorithm: sha256WithRSAEncryption
92:85:33:0b:da:c5:d8:88:12:a4:4f:ca:25:b5:5e:f0:14:1a:
44:59:a7:eb:4b:ee:13:e8:bc:61:15:83:15:27:36:e5:91:09:
bf:3a:a8:57:ff:03:e2:a0:34:ba:e8:f7:b8:22:57:41:98:9c:
98:74:ba:86:bd:50:c0:94:d9:ec:06:7a:e5:9f:48:a7:1a:7e:
af:e3:bf:31:36:aa:35:43:0e:02:bd:72:ee:a7:3e:1f:cd:9e:
84:c9:fe:e5:0d:33:e8:3a:05:86:88:94:73:9e:cb:24:7e:a7:
c7:e9:dd:b8:21:09:33:3b:b2:a3:6b:c7:3e:8a:06:7b:84:d4:
0f:1e:f8:25:9b:80:6f:57:df:8b:73:34:a2:ef:0d:fa:0b:41:
10:0e:60:b3:4b:0d:a6:11:a8:2b:63:c4:f0:3e:ef:74:1a:f8:
74:e5:e0:b4:9a:5f:39:77:3e:49:36:55:da:d3:f7:51:f5:db:
56:a2:96:54:a5:41:06:88:ff:ec:3e:5e:60:91:f8:fc:05:08:
3c:16:ac:95:8c:5f:cf:e1:1c:d2:8f:43:74:6c:ac:e5:22:15:
22:ff:c5:50:3f:ad:39:e8:01:af:c7:e3:d0:9d:9f:d4:d3:ee:
e5:4e:2c:3d:a5:46:83:81:ec:b1:a6:2a:84:71:4e:a4:dd:1c:
94:27:21:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:34:13 2024 by rpki-client on console-ams.rpki-client.org