Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/lrqYyB4TxtmHyjXyTk_yCzC3iGA.roa
File: lrqYyB4TxtmHyjXyTk_yCzC3iGA.roa (raw, json)
Hash identifier: wFSfw7/2QlGtJmIz4DxRT8rxRLgy9E53NEkIsAj2N1k=
Subject key identifier: 96:BA:98:C8:1E:13:C6:D9:87:CA:35:F2:4E:4F:F2:0B:30:B7:88:60
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 018CC94CF01FC6CB3FED130E6BA5A01847FA
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/lrqYyB4TxtmHyjXyTk_yCzC3iGA.roa
Signing time: Tue 02 Jan 2024 08:31:51 +0000
ROA not before: Tue 02 Jan 2024 08:31:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210075
IP address blocks: 2a06:1e00:27::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:f0:1f:c6:cb:3f:ed:13:0e:6b:a5:a0:18:47:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Jan 2 08:31:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96ba98c81e13c6d987ca35f24e4ff20b30b78860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e9:2b:8d:8b:c8:e1:81:b7:2a:48:2e:fd:a6:
6f:f2:17:17:31:c0:e1:39:75:de:00:cc:cc:22:75:
c9:3c:91:29:a1:24:fc:27:c2:f2:d1:92:eb:53:d7:
88:97:0e:e2:41:8a:cf:c6:d1:be:aa:ae:f6:89:4c:
53:45:4a:91:c4:8d:c1:e4:76:33:65:7a:ea:41:9c:
1c:be:1a:e3:33:1b:6d:39:6c:41:25:3b:51:0e:92:
26:2d:81:42:04:d3:45:2c:cf:10:c6:93:3d:f1:9e:
cb:76:af:96:e4:ad:95:a8:66:34:70:6b:76:71:28:
54:14:8c:0e:24:a3:81:cd:50:42:18:06:9c:4d:84:
64:13:6e:d7:db:b1:1c:de:05:67:3f:4e:b6:40:e8:
54:3d:24:5c:ec:df:33:dd:9f:a3:a1:1d:ec:8c:46:
63:78:e6:0e:c2:b8:cc:33:36:2e:ab:1e:70:2c:35:
cb:21:6c:8f:2b:40:f8:a0:5f:54:69:e4:9e:c4:c5:
72:da:52:5f:c0:1f:64:c3:22:9d:c9:7e:1b:23:a3:
4c:fb:12:eb:e8:23:4d:b0:c8:73:6c:28:51:19:a4:
fc:41:bf:3f:da:c0:c2:4a:a8:cf:34:2d:13:d4:aa:
97:1a:3d:1e:98:5a:26:a0:3a:c9:af:3c:59:6c:25:
75:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BA:98:C8:1E:13:C6:D9:87:CA:35:F2:4E:4F:F2:0B:30:B7:88:60
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/lrqYyB4TxtmHyjXyTk_yCzC3iGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1e00:27::/48
Signature Algorithm: sha256WithRSAEncryption
0f:67:59:4c:99:1a:f6:f7:a5:38:81:5d:3a:ff:e9:6d:bc:86:
c3:b9:64:f8:70:19:7e:17:bc:31:01:21:c2:42:f7:4f:1d:05:
8c:55:cd:da:8d:00:01:f3:45:29:9f:30:a2:9d:84:1b:89:cd:
30:c7:fd:b5:45:82:8b:dc:5f:12:5a:8d:95:0a:f5:f5:8d:81:
f9:18:fd:b9:17:a9:84:51:1b:87:e1:83:f6:9d:61:4c:9e:e1:
fc:29:b2:ae:9b:2f:93:51:4c:09:6c:83:93:4b:18:1d:e2:6b:
4c:88:cc:31:1b:2c:1c:a6:61:70:c8:3e:5f:a5:2d:28:18:18:
12:01:0c:51:c3:73:23:a0:c6:f8:af:c9:2e:d8:6a:ed:32:3b:
e1:56:56:82:99:f4:ef:56:dd:fb:c1:7d:91:e5:d5:e3:5f:fc:
c3:8e:74:57:b1:30:38:49:70:29:40:71:a6:9a:44:d1:06:e7:
77:7c:e1:66:20:4c:36:2a:ef:b4:23:05:e0:6e:4c:1c:46:8d:
07:7f:5b:61:f9:cc:cc:65:94:de:ef:ed:79:12:3d:fd:2a:24:
71:41:50:5f:1e:c5:26:23:5a:a8:62:c1:b3:e7:00:40:af:29:
42:e9:cd:af:52:55:2d:d7:2a:f0:3c:77:2a:7d:d3:fc:63:36:
6b:cd:a2:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:14:44 2024 by rpki-client on console-fra.rpki-client.org