Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/DjKwq8EY5SWfDAw-_zDzq2Prb4k.roa
File: DjKwq8EY5SWfDAw-_zDzq2Prb4k.roa (raw, json)
Hash identifier: 1DTh0xvVyHoszST9BoCvCmoVIcBaJSZKQ7L2KWShG68=
Subject key identifier: 0E:32:B0:AB:C1:18:E5:25:9F:0C:0C:3E:FF:30:F3:AB:63:EB:6F:89
Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364
Certificate serial: 0191B6FC21798ADC446B4ABC87C82192162B
Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/DjKwq8EY5SWfDAw-_zDzq2Prb4k.roa
Signing time: Tue 03 Sep 2024 08:24:22 +0000
ROA not before: Tue 03 Sep 2024 08:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3573
IP address blocks: 2a02:ee80:404a::/47 maxlen: 47
2a02:ee80:404a::/48 maxlen: 48
2a02:ee80:404b::/48 maxlen: 48
2a02:ee80:4066::/47 maxlen: 47
2a02:ee80:4066::/48 maxlen: 48
2a02:ee80:4067::/48 maxlen: 48
2a02:ee80:415c::/47 maxlen: 47
2a02:ee80:4170::/47 maxlen: 47
2a02:ee80:4170::/48 maxlen: 48
2a02:ee80:4171::/48 maxlen: 48
2a02:ee80:41a8::/47 maxlen: 47
2a02:ee80:4354::/47 maxlen: 47
2a02:ee80:4354::/48 maxlen: 48
2a02:ee80:4355::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b6:fc:21:79:8a:dc:44:6b:4a:bc:87:c8:21:92:16:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364
Validity
Not Before: Sep 3 08:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e32b0abc118e5259f0c0c3eff30f3ab63eb6f89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b6:83:bc:e4:1f:13:49:b7:73:7f:63:7e:ca:
84:a5:4b:24:72:38:65:e5:c9:f0:bc:47:ca:7c:da:
da:14:1a:13:b1:b0:41:7f:08:19:f2:32:1b:70:43:
33:f9:34:ab:ba:bc:4a:3a:5d:5a:f3:a7:2a:dd:67:
f2:84:a9:b7:ed:c4:6d:0a:9d:78:16:7c:04:25:d7:
ba:2c:e4:57:e7:0d:19:b7:1c:2f:b0:29:c8:73:1c:
90:ec:63:2c:86:a4:10:62:38:5f:5b:63:51:8a:f7:
94:2a:aa:c5:71:03:8e:32:90:7c:78:01:4b:cf:43:
24:4c:bd:95:5e:eb:ec:ef:21:7d:7e:8b:b1:4f:8f:
74:60:2c:8c:08:34:04:af:7e:b8:eb:63:4e:82:81:
86:ae:fd:a1:da:6e:28:df:a8:ed:c9:4c:ad:07:29:
54:14:5a:14:2a:a5:ce:d6:22:f2:d2:af:6b:b7:5c:
37:27:72:d0:65:60:17:85:ce:76:bf:70:2d:9c:93:
ab:b3:fe:c8:05:4c:18:cf:21:e3:2a:35:ec:8c:07:
52:cd:88:11:43:28:2a:3d:2f:46:64:b7:14:0c:d8:
f7:bd:b5:df:21:07:91:c7:fd:ec:5f:13:d8:dc:61:
9b:9d:90:33:48:b6:6f:0e:e5:e6:d1:4d:61:37:3a:
39:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:32:B0:AB:C1:18:E5:25:9F:0C:0C:3E:FF:30:F3:AB:63:EB:6F:89
X509v3 Authority Key Identifier:
keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/DjKwq8EY5SWfDAw-_zDzq2Prb4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:ee80:404a::/47
2a02:ee80:4066::/47
2a02:ee80:415c::/47
2a02:ee80:4170::/47
2a02:ee80:41a8::/47
2a02:ee80:4354::/47
Signature Algorithm: sha256WithRSAEncryption
a9:97:b2:64:e6:32:0e:8c:d8:85:3b:91:06:47:6c:a4:48:64:
55:9d:94:c8:97:f0:2a:86:ab:ce:dc:ea:1e:0c:ef:4b:5d:a9:
9f:47:1d:66:20:a9:48:b8:30:2f:ca:ef:64:95:8d:6a:19:e1:
cd:83:5f:55:2d:16:9c:9c:7f:47:71:8e:22:02:6d:9c:65:e1:
ae:a3:fb:e0:c2:f6:b3:46:a3:06:2b:c8:54:b1:1b:b2:6d:e9:
8a:01:d8:52:68:c1:d8:d0:72:c2:8e:1a:69:2f:1e:6a:70:7b:
df:11:94:13:eb:fc:43:57:2b:ca:8d:32:9e:ae:f9:ca:d9:84:
42:b0:71:c2:24:18:18:17:e8:7c:75:3a:d0:18:73:1b:ca:5b:
32:d5:c3:04:4a:a1:b1:52:0e:8a:5c:61:26:83:fe:f0:ad:85:
3f:8e:83:02:a8:54:cb:7d:f5:5c:6e:a6:2e:d2:a1:ee:bb:fc:
3f:c9:ca:9d:57:b1:b4:b7:f5:51:40:ad:d3:40:65:15:12:86:
ff:c1:f7:67:e0:e2:1e:90:1b:ed:28:77:da:9b:74:1c:6c:c9:
c4:fe:29:cc:4f:84:f1:eb:d4:fe:cf:33:3a:82:ac:8b:60:d9:
10:75:fd:56:96:c1:7d:68:8f:4b:f4:9c:73:91:17:2b:30:be:
18:02:44:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:40:20 2024 by rpki-client on console-ams.rpki-client.org