Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/2mXiO6pWPUoKpmRiWaZio_LJHIM.roa
File: 2mXiO6pWPUoKpmRiWaZio_LJHIM.roa (raw, json)
Hash identifier: EZbFhUFwERyFnyrrQ+3oPfEgasxcA2ED7libHl6PCJ0=
Subject key identifier: DA:65:E2:3B:AA:56:3D:4A:0A:A6:64:62:59:A6:62:A3:F2:C9:1C:83
Certificate issuer: /CN=43c77b47363681378face466141d54cc88399cf5
Certificate serial: 018CC2DB3FD837488239569B8987EE8D6EE5
Authority key identifier: 43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/2mXiO6pWPUoKpmRiWaZio_LJHIM.roa
Signing time: Mon 01 Jan 2024 02:29:57 +0000
ROA not before: Mon 01 Jan 2024 02:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200924
IP address blocks: 2001:678:a7c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:3f:d8:37:48:82:39:56:9b:89:87:ee:8d:6e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c77b47363681378face466141d54cc88399cf5
Validity
Not Before: Jan 1 02:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da65e23baa563d4a0aa6646259a662a3f2c91c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:df:ea:ef:57:ce:b7:20:4c:fd:b9:99:b7:ad:
4e:ac:af:ef:4d:45:c6:8f:73:aa:6c:13:9e:8d:b3:
ac:ef:74:19:fe:e5:c4:b4:23:11:20:12:0a:b5:41:
04:22:4c:e5:ae:9f:50:6a:17:51:8c:47:ee:81:d3:
86:49:e1:a7:d3:ce:cb:72:36:e4:6b:cf:94:67:3a:
3d:21:c0:3f:25:c9:e1:82:03:9d:6d:41:49:47:aa:
ea:82:6a:ea:09:34:99:19:89:a9:87:de:77:61:e7:
60:4b:a5:e7:e0:55:e0:30:1e:14:b9:a4:f3:e1:84:
f8:75:4d:50:da:6e:a8:e4:d7:5a:83:e3:f5:6b:8f:
65:d6:fa:87:c9:ad:ac:78:13:f9:c7:18:ee:cb:a8:
9f:84:72:1e:73:32:a4:99:fe:60:e6:ac:28:0d:93:
6a:f2:a9:ce:cb:a6:14:1d:d1:6d:02:7b:8d:53:e6:
a6:cf:de:ef:5e:29:bb:1b:20:63:a3:cd:e7:15:0e:
6a:81:9c:49:d8:ea:23:a0:07:d1:dc:7a:60:09:ac:
78:af:06:a5:e0:20:03:ef:4d:ac:38:9b:0b:c5:25:
0c:2a:70:ea:a8:85:89:df:d3:ad:40:fb:58:2c:d7:
96:ba:cc:e9:01:8b:d2:b4:72:96:bd:4b:18:5f:c6:
67:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:65:E2:3B:AA:56:3D:4A:0A:A6:64:62:59:A6:62:A3:F2:C9:1C:83
X509v3 Authority Key Identifier:
keyid:43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/2mXiO6pWPUoKpmRiWaZio_LJHIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a7c::/48
Signature Algorithm: sha256WithRSAEncryption
36:6c:2b:68:f4:aa:e1:cd:ca:c3:95:1c:ce:18:11:f6:2f:11:
68:18:ad:7c:85:27:a8:a2:9a:d0:06:96:30:d9:cb:7d:7d:5c:
fc:24:52:69:c3:28:e3:ac:51:39:cf:44:c4:97:23:a7:69:d1:
6f:01:e2:b8:ac:42:84:bc:9d:14:c1:1f:21:65:c6:42:56:7e:
7a:80:54:23:8c:a2:f4:b1:1d:3e:1b:ed:31:7d:93:a7:c6:ab:
f3:0d:72:73:3d:88:ac:95:8c:f0:dc:c4:79:c3:80:5b:45:95:
3b:f8:5e:48:2f:15:d5:bc:f6:5a:f0:10:e0:5f:e2:1b:92:4d:
36:35:e6:50:34:76:63:56:bb:d4:f3:03:98:25:d8:bc:3a:f2:
10:cc:1d:15:51:e0:8c:ab:6c:05:d0:ac:d3:34:8b:05:a7:c7:
20:68:8b:99:c4:63:c1:81:d8:29:2f:96:95:6d:1f:7f:08:25:
f5:f9:95:7c:33:50:e8:4d:61:77:31:05:9d:35:83:81:7a:b1:
0e:d6:ab:73:c1:be:5e:7b:52:05:16:3b:86:5d:41:35:1c:da:
c5:a5:c9:bc:c8:aa:89:e3:49:f3:34:95:b4:13:f9:20:08:1e:
0f:3f:77:f0:3f:f6:64:91:4a:b6:c0:21:b6:07:5f:f2:c3:0c:
8e:b5:bf:9d
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzC2z/YN0iCOVabiYfujW7lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzYzc3YjQ3MzYzNjgxMzc4ZmFjZTQ2NjE0MWQ1NGNjODgz
OTljZjUwHhcNMjQwMTAxMDIyOTU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYTY1ZTIzYmFhNTYzZDRhMGFhNjY0NjI1OWE2NjJhM2YyYzkxYzgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9/q71fOtyBM/bmZt61OrK/vTUXG
j3OqbBOejbOs73QZ/uXEtCMRIBIKtUEEIkzlrp9QahdRjEfugdOGSeGn087Lcjbk
a8+UZzo9IcA/JcnhggOdbUFJR6rqgmrqCTSZGYmph953YedgS6Xn4FXgMB4UuaTz
4YT4dU1Q2m6o5Ndag+P1a49l1vqHya2seBP5xxjuy6ifhHIeczKkmf5g5qwoDZNq
8qnOy6YUHdFtAnuNU+amz97vXim7GyBjo83nFQ5qgZxJ2OojoAfR3HpgCax4rwal
4CAD702sOJsLxSUMKnDqqIWJ39OtQPtYLNeWuszpAYvStHKWvUsYX8ZnAQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNpl4juqVj1KCqZkYlmmYqPyyRyDMB8GA1UdIwQY
MBaAFEPHe0c2NoE3j6zkZhQdVMyIOZz1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUThkN1J6WTJnVGVQck9SbUZCMVV6SWc1blBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS8wMTgwOWItNDJkZC00MTM2LTk2YjEt
MWZkMTBkOGUwNzVmLzEvMm1YaU82cFdQVW9LcG1SaVdhWmlvX0xKSElNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS8wMTgwOWItNDJkZC00MTM2LTk2YjEtMWZkMTBkOGUwNzVm
LzEvUThkN1J6WTJnVGVQck9SbUZCMVV6SWc1blBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAp8
MA0GCSqGSIb3DQEBCwUAA4IBAQA2bCto9KrhzcrDlRzOGBH2LxFoGK18hSeooprQ
BpYw2ct9fVz8JFJpwyjjrFE5z0TElyOnadFvAeK4rEKEvJ0UwR8hZcZCVn56gFQj
jKL0sR0+G+0xfZOnxqvzDXJzPYislYzw3MR5w4BbRZU7+F5ILxXVvPZa8BDgX+Ib
kk02NeZQNHZjVrvU8wOYJdi8OvIQzB0VUeCMq2wF0KzTNIsFp8cgaIuZxGPBgdgp
L5aVbR9/CCX1+ZV8M1DoTWF3MQWdNYOBerEO1qtzwb5ee1IFFjuGXUE1HNrFpcm8
yKqJ40nzNJW0E/kgCB4PP3fwP/ZkkUq2wCG2B1/ywwyOtb+d
-----END CERTIFICATE-----
Generated at Sat Nov 23 13:14:29 2024 by rpki-client on console-ams.rpki-client.org