Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yF60MXomOPXicQ4dVy_gu3Jce0c.roa
File: yF60MXomOPXicQ4dVy_gu3Jce0c.roa (raw, json)
Hash identifier: 5FKE6qFccFKdKUpBcGBwVGHo07CqDvWyXp8ktMwwG+M=
Subject key identifier: C8:5E:B4:31:7A:26:38:F5:E2:71:0E:1D:57:2F:E0:BB:72:5C:7B:47
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0194258F2B77F0F084AF78FD669246243BC9
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yF60MXomOPXicQ4dVy_gu3Jce0c.roa
Signing time: Thu 02 Jan 2025 05:48:47 +0000
ROA not before: Thu 02 Jan 2025 05:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215567
IP address blocks: 2a13:a440:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 13:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:2b:77:f0:f0:84:af:78:fd:66:92:46:24:3b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 2 05:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c85eb4317a2638f5e2710e1d572fe0bb725c7b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5c:09:76:2f:57:50:49:d1:03:02:21:96:68:
c3:04:1a:44:ce:b3:99:0f:54:ea:bb:ec:d2:74:50:
65:f7:cd:e0:9b:69:eb:e2:e3:f1:20:b4:72:9a:f2:
72:8e:aa:f6:df:c1:06:6a:00:21:ef:42:e9:28:d2:
61:4e:35:02:4c:49:e3:44:2e:4e:e4:07:22:de:73:
e5:65:f2:3f:d9:a3:e0:b7:c6:18:87:e5:dc:1d:ff:
1f:ee:4c:7f:9c:3d:f8:f0:b6:39:e9:2a:ab:07:ee:
14:7e:4d:85:46:8e:36:39:dc:1c:d5:99:9a:4c:6d:
05:01:3f:52:9b:ac:2b:0d:ec:c2:d6:49:d7:8f:62:
d4:e3:8a:52:e8:50:5b:2c:ca:5c:fd:c0:d5:e8:ca:
e6:5c:12:bd:78:45:51:2a:d2:12:02:50:7e:9a:65:
5f:a4:ad:5d:6e:a6:4c:9b:23:0a:75:01:71:7d:99:
2a:3d:b2:ca:64:46:16:16:7f:ef:67:c6:84:58:b5:
26:50:6a:7f:95:41:e6:ea:c5:5c:f2:08:82:e3:f8:
c6:d2:f7:12:72:d6:b5:34:07:7a:49:4b:0d:68:d7:
56:e1:6d:69:cb:a0:6a:cf:85:d3:e0:c4:06:8f:9b:
00:58:b8:e8:4c:40:00:94:72:a0:dd:d9:e3:e9:3b:
ec:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:5E:B4:31:7A:26:38:F5:E2:71:0E:1D:57:2F:E0:BB:72:5C:7B:47
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yF60MXomOPXicQ4dVy_gu3Jce0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a440:9::/48
Signature Algorithm: sha256WithRSAEncryption
7c:33:d0:e5:d4:fb:00:35:13:49:d5:cd:34:a2:67:bb:6c:47:
05:3d:55:de:10:21:bf:e3:e7:40:f9:8c:7f:7a:27:b8:53:16:
04:4f:00:16:89:6f:8d:fc:d2:81:a1:ba:82:fd:e3:84:b5:cd:
94:48:42:9a:2c:68:13:2f:5d:7d:fe:67:6f:cd:a0:4e:d1:4d:
12:63:0c:64:2c:4c:2e:5d:3b:08:77:16:45:ed:2a:1d:35:64:
cd:fd:cc:93:d4:17:95:75:bf:ae:07:a8:d0:e9:01:47:8b:63:
d4:86:4e:df:c1:52:48:59:94:da:5c:1c:76:4c:28:3b:62:6b:
e9:53:e5:0b:63:86:39:54:7e:01:7d:bb:72:92:d2:28:bb:85:
c2:1a:fa:44:8f:e8:ab:7d:63:c1:f6:28:64:71:1b:a3:e3:63:
33:97:bb:31:9f:92:b6:ef:43:b8:a9:34:0e:fe:ad:b0:e0:72:
cd:8f:90:ef:55:fb:c5:46:07:ed:ff:2d:07:cf:d7:2f:d1:94:
0d:7d:ef:cf:a3:37:7d:6f:bd:d6:fa:f1:53:2c:03:48:1d:61:
65:9a:20:a0:11:11:6e:31:5e:97:f3:4b:bf:6a:d9:1c:97:85:
ed:7c:7b:9b:50:1d:de:e8:fd:24:48:e0:1b:8f:49:41:00:de:
cb:99:27:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:01 2025 by rpki-client