Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/qu7QFHVCLA6guj9fURHliCsYkE0.roa
File: qu7QFHVCLA6guj9fURHliCsYkE0.roa (raw, json)
Hash identifier: M82s3unt+jH6LlnZBIb0NRlb6/BYe3Y0zRuCcWzosvQ=
Subject key identifier: AA:EE:D0:14:75:42:2C:0E:A0:BA:3F:5F:51:11:E5:88:2B:18:90:4D
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 018CC34909DB1F48DA53E38080B3577B608E
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/qu7QFHVCLA6guj9fURHliCsYkE0.roa
Signing time: Mon 01 Jan 2024 04:29:52 +0000
ROA not before: Mon 01 Jan 2024 04:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204571
IP address blocks: 2001:67c:a1c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:09:db:1f:48:da:53:e3:80:80:b3:57:7b:60:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Jan 1 04:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aaeed01475422c0ea0ba3f5f5111e5882b18904d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b7:1c:a2:bd:ad:40:d0:77:ce:f2:36:b7:43:
d0:90:61:a6:ff:68:f2:0f:f4:2b:59:d2:05:07:da:
2a:10:78:47:9f:93:7f:92:97:26:ee:39:4d:19:93:
ef:3a:95:bf:3b:b8:3f:37:71:d0:03:94:ee:26:2d:
f6:ba:e5:d7:b1:3b:6a:30:1f:08:8f:79:97:99:67:
fd:17:c2:7f:79:e8:83:22:d5:8d:2d:1d:b2:b7:83:
95:02:54:1f:d3:43:a1:47:d3:fb:f8:01:68:57:ec:
34:24:bf:5c:d6:0c:9b:22:f7:d4:90:df:5e:48:f5:
90:e6:fb:6f:7b:e8:5c:34:10:b6:de:b2:95:6b:3d:
23:14:e9:17:77:7a:d6:d5:24:92:20:91:cd:21:8e:
65:1b:73:86:58:e8:93:ac:a3:91:72:6a:aa:81:ed:
34:ef:ef:a3:4d:75:a8:0b:36:a7:45:ae:9a:1b:54:
8a:32:13:2a:54:4e:c5:7c:42:3e:cb:d4:73:26:8f:
87:74:72:a2:01:71:a9:80:9f:26:a9:29:d0:30:9c:
a5:21:2e:17:f9:50:7d:31:0d:a7:22:93:1e:73:7c:
89:fb:1f:b5:f2:12:46:1e:90:cb:1c:a7:03:6c:0d:
a1:9c:42:f5:46:fc:33:fc:4c:9e:d3:1c:89:24:1d:
22:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:EE:D0:14:75:42:2C:0E:A0:BA:3F:5F:51:11:E5:88:2B:18:90:4D
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/qu7QFHVCLA6guj9fURHliCsYkE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a1c::/48
Signature Algorithm: sha256WithRSAEncryption
21:63:c2:4e:ec:04:84:8b:37:48:ae:2f:ee:a4:c6:80:86:5d:
49:e3:33:e9:a2:2b:fb:22:37:6b:9f:d9:6e:fc:0e:b0:07:7f:
d3:58:b2:89:bb:87:89:ac:3a:47:9d:d8:cf:26:dc:59:b6:9e:
8d:18:b2:7b:da:e9:b8:61:ba:82:4a:b5:c8:11:25:88:13:7f:
20:ff:ed:5a:a5:fb:2b:51:fb:76:cf:6d:df:80:36:52:4c:d6:
82:e1:e9:f2:99:47:9c:4f:18:46:63:62:42:94:e6:05:e8:8e:
d4:a3:eb:94:1d:f6:ac:4f:19:ad:bd:1a:c9:18:fd:36:f1:03:
50:bc:1c:64:4d:c0:05:9e:63:11:8f:05:da:88:f0:d2:0d:e5:
b1:e7:ae:b1:2e:17:57:95:77:51:4f:f6:e7:22:7d:38:93:75:
b6:4e:c6:fc:9d:af:26:eb:bf:24:16:de:3e:af:66:ad:33:0a:
b5:48:d6:f0:b7:41:60:53:ec:15:cf:e3:20:5c:f1:b0:30:ee:
1e:ae:ba:c3:1a:b7:18:3c:0c:ad:21:93:65:df:c2:70:78:9f:
a0:03:88:26:d7:3f:21:27:33:50:37:7a:7a:06:4b:53:ab:e6:
0d:f4:46:60:18:a2:a1:8b:fc:33:be:c8:2d:7e:c4:57:80:53:
f1:5f:3f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 17:45:26 2024 by rpki-client on console-ams.rpki-client.org