Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/30e2a9-01f8-4125-9fdb-58f2875ca0bf/1/BuEruUPGufmD34C46m_hgG9VRVw.roa
File: BuEruUPGufmD34C46m_hgG9VRVw.roa (raw, json)
Hash identifier: 7SfaQnwUTYSSAl7lQuQPMLMXJCjG113Y4fmaBvUf6e4=
Subject key identifier: 06:E1:2B:B9:43:C6:B9:F9:83:DF:80:B8:EA:6F:E1:80:6F:55:45:5C
Certificate issuer: /CN=0134c97fbb0486b5c66d13cab1a8b298460521db
Certificate serial: 018CC9BCF13921760ED9A9DD954CBB6EC7D1
Authority key identifier: 01:34:C9:7F:BB:04:86:B5:C6:6D:13:CA:B1:A8:B2:98:46:05:21:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ATTJf7sEhrXGbRPKsaiymEYFIds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/30e2a9-01f8-4125-9fdb-58f2875ca0bf/1/BuEruUPGufmD34C46m_hgG9VRVw.roa
Signing time: Tue 02 Jan 2024 10:34:12 +0000
ROA not before: Tue 02 Jan 2024 10:34:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2001:67c:2c3c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/30e2a9-01f8-4125-9fdb-58f2875ca0bf/1/ATTJf7sEhrXGbRPKsaiymEYFIds.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/30e2a9-01f8-4125-9fdb-58f2875ca0bf/1/ATTJf7sEhrXGbRPKsaiymEYFIds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ATTJf7sEhrXGbRPKsaiymEYFIds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:f1:39:21:76:0e:d9:a9:dd:95:4c:bb:6e:c7:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0134c97fbb0486b5c66d13cab1a8b298460521db
Validity
Not Before: Jan 2 10:34:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06e12bb943c6b9f983df80b8ea6fe1806f55455c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ec:85:db:0f:37:8f:57:14:32:43:85:bd:fd:
20:a6:2e:5e:c9:35:b9:ea:d0:09:8a:b7:8d:01:ad:
78:d6:9e:d1:8c:63:63:c4:63:47:29:02:e1:67:69:
1d:d5:bc:11:17:2b:d2:70:29:9c:a3:a7:b7:f9:83:
c8:08:9f:06:fa:50:bc:07:36:62:f7:f9:79:f5:3c:
79:ad:e3:6b:a2:f7:48:92:00:f8:6f:1a:9c:77:d5:
5a:78:dc:41:ac:62:72:14:33:56:9e:2b:ce:82:56:
8f:4c:65:84:d2:15:17:e5:d2:15:13:41:44:a5:ed:
6a:5a:79:82:6e:ad:25:55:26:98:1a:fd:ed:27:01:
a5:e5:bd:58:9f:3e:e3:1a:d9:16:d3:19:3e:9a:6f:
b1:77:6f:1b:6d:9e:a7:e4:74:34:78:04:8a:e8:de:
6a:30:02:ea:b5:2e:50:8b:18:3a:5a:45:31:92:9d:
03:92:32:ef:82:a2:3d:01:1e:e5:01:29:2b:13:ff:
1a:77:e5:01:2a:e0:fa:b4:f2:0d:39:80:74:c9:e2:
a7:73:af:ff:4e:0d:6b:49:6a:83:9b:f9:d9:a9:eb:
26:2a:ce:57:97:b6:2f:9c:73:a9:c9:ad:d1:22:1b:
14:df:bf:ef:4d:a5:7b:aa:0f:0f:74:2c:f8:11:4b:
c5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E1:2B:B9:43:C6:B9:F9:83:DF:80:B8:EA:6F:E1:80:6F:55:45:5C
X509v3 Authority Key Identifier:
keyid:01:34:C9:7F:BB:04:86:B5:C6:6D:13:CA:B1:A8:B2:98:46:05:21:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ATTJf7sEhrXGbRPKsaiymEYFIds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/30e2a9-01f8-4125-9fdb-58f2875ca0bf/1/BuEruUPGufmD34C46m_hgG9VRVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/30e2a9-01f8-4125-9fdb-58f2875ca0bf/1/ATTJf7sEhrXGbRPKsaiymEYFIds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2c3c::/48
Signature Algorithm: sha256WithRSAEncryption
14:fc:4b:d8:a5:9a:e7:00:ee:15:e8:af:c7:6d:17:b1:42:0e:
d1:6c:61:53:15:6f:91:05:90:79:f3:9b:41:a8:d7:14:cf:fd:
68:37:fa:9d:8f:1d:06:55:ca:b7:96:56:e2:9a:e5:f1:05:0e:
e2:99:1b:33:2f:7a:ed:9c:bf:75:8d:1b:df:87:23:ef:3f:40:
1b:cb:b2:69:d9:3b:74:8b:8b:f5:0f:58:ab:4a:48:27:d9:22:
88:11:6a:61:18:9b:4d:80:a9:9a:98:f2:34:55:a3:76:96:84:
ec:ef:f9:80:88:73:f4:6f:b6:40:53:1b:dc:83:8f:05:1f:c5:
bb:0e:df:5e:3f:56:e2:dc:4a:50:0c:35:41:e1:a9:31:f5:e7:
24:7a:78:39:3d:e9:c9:c1:40:74:87:f4:05:6a:e9:f8:25:eb:
ec:95:8b:eb:79:c2:b9:68:f4:8f:52:0c:aa:d9:c7:87:13:24:
37:7b:f3:76:4a:b4:e0:c7:2e:57:9a:c1:62:dd:9e:49:56:3c:
65:42:ba:d0:15:f0:0e:07:66:be:1f:83:11:1b:71:a7:17:4d:
74:f8:1c:f6:da:4a:1a:0c:11:30:fe:82:cc:e8:17:1e:f7:c9:
53:d1:3e:4d:29:69:f2:8a:55:20:c3:49:43:4a:64:0b:bb:68:
a8:90:52:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:32:39 2024 by rpki-client on console-fra.rpki-client.org