Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/sm8eGXlmnjlhHrGFcOyNPni8N0c.roa
File: sm8eGXlmnjlhHrGFcOyNPni8N0c.roa (raw, json)
Hash identifier: JhuFsnTEFbU/SgfA48jCKMpQ621qFl0fRg2xA8cFGa4=
Subject key identifier: B2:6F:1E:19:79:66:9E:39:61:1E:B1:85:70:EC:8D:3E:78:BC:37:47
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0192BA0EAD35C3288BF64A5DD916E6DB68C7
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/sm8eGXlmnjlhHrGFcOyNPni8N0c.roa
Signing time: Wed 23 Oct 2024 15:46:16 +0000
ROA not before: Wed 23 Oct 2024 15:46:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 967
IP address blocks: 2a06:5040:2000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ba:0e:ad:35:c3:28:8b:f6:4a:5d:d9:16:e6:db:68:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Oct 23 15:46:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b26f1e1979669e39611eb18570ec8d3e78bc3747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e2:44:fc:c8:06:fd:f4:cd:63:fb:a2:23:6f:
1e:3e:b0:89:3b:d1:12:99:a7:b1:84:1d:50:a5:28:
f4:f4:33:81:2d:b3:90:89:dc:84:d5:aa:b2:be:34:
85:55:b6:8b:7d:b4:77:30:bc:c1:ea:8c:0e:5a:f9:
1b:fa:30:05:bf:a7:91:9d:0d:f0:c4:b5:9e:f5:a6:
8e:6c:82:ac:a4:49:b8:de:9b:8d:b7:7d:04:1a:33:
12:42:54:8e:c0:75:04:4f:5c:e2:24:11:64:9c:61:
93:4c:5c:84:c2:14:7e:23:36:8d:2a:71:f8:1c:99:
2e:07:fa:48:9a:b8:6e:f3:bf:78:54:e2:58:85:30:
b8:37:71:11:4a:43:1f:5c:88:55:70:79:f3:ea:2a:
38:9f:2a:a8:f8:00:dc:7b:e9:15:b7:d7:02:50:13:
70:f7:ba:ca:7a:e1:60:90:d7:de:04:6e:25:28:66:
df:5d:3c:d7:33:31:9b:be:f0:07:d2:f3:5f:6a:73:
1d:18:ad:d5:29:ad:dd:11:9e:bc:0a:26:e7:a5:18:
b0:6b:af:98:9b:39:40:03:a7:dc:04:e9:c9:a9:83:
64:bc:2a:47:b9:7a:4b:59:c2:9a:17:df:2d:31:06:
86:60:11:30:e0:78:39:71:40:97:a0:2f:81:57:6a:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6F:1E:19:79:66:9E:39:61:1E:B1:85:70:EC:8D:3E:78:BC:37:47
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/sm8eGXlmnjlhHrGFcOyNPni8N0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:5040:2000::/36
Signature Algorithm: sha256WithRSAEncryption
66:c8:13:20:e0:07:69:cf:e8:54:b9:2c:99:11:7d:9f:39:0b:
79:61:cb:a9:00:e4:35:ab:1d:a6:92:39:f1:6d:ac:66:b4:a7:
45:62:2d:c4:42:19:c1:09:c6:00:2b:80:e5:36:98:ca:59:9d:
39:19:c9:b5:32:da:c7:a9:43:7e:d6:29:80:52:c7:42:b7:23:
0d:cd:a9:a8:57:ae:53:d4:4a:f6:71:48:1d:33:15:7b:20:dd:
c6:22:0e:67:b7:a1:5d:8a:b5:f5:1e:7d:c9:8a:87:95:d8:e3:
db:7b:dc:b0:df:93:7b:eb:80:d3:41:c9:ad:8c:9a:be:9a:81:
84:59:b5:29:30:47:45:8a:f1:f0:83:aa:44:84:29:e0:a4:40:
15:ad:ee:e2:71:09:0b:8b:09:8b:4e:11:c8:13:0f:41:87:28:
82:70:07:4e:07:95:e9:91:52:aa:ec:92:95:02:5c:b3:7b:89:
53:3b:a2:f5:30:4f:7a:87:ee:ca:da:87:b1:a3:02:21:54:46:
88:bc:dc:a7:4a:9a:1b:99:d5:b2:82:ba:69:42:0f:be:6e:79:
a2:6f:02:db:eb:5f:50:fd:ca:73:1b:0c:c0:8b:94:dd:b6:81:
6b:37:3d:d8:6e:45:a4:c8:44:1f:ae:5d:ee:a8:e6:b6:fb:78:
47:e6:1f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:04:47 2024 by rpki-client on console-fra.rpki-client.org