Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/7L9Bk7RPBjRGmpTBp_ULQJeVjnE.roa
File: 7L9Bk7RPBjRGmpTBp_ULQJeVjnE.roa (raw, json)
Hash identifier: 7rqf2J+X5tuaBE99eXsDlX7DZ6AjyGGh8rI0JpB0N7w=
Subject key identifier: EC:BF:41:93:B4:4F:06:34:46:9A:94:C1:A7:F5:0B:40:97:95:8E:71
Certificate issuer: /CN=4cb224b53ec9c8b17f31895b16a8d4571f0e6970
Certificate serial: 0191574006EFF0A8A3419E546A9F6301A0DA
Authority key identifier: 4C:B2:24:B5:3E:C9:C8:B1:7F:31:89:5B:16:A8:D4:57:1F:0E:69:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLIktT7JyLF_MYlbFqjUVx8OaXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/7L9Bk7RPBjRGmpTBp_ULQJeVjnE.roa
Signing time: Thu 15 Aug 2024 18:14:59 +0000
ROA not before: Thu 15 Aug 2024 18:14:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198373
IP address blocks: 2001:678:c20::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/TLIktT7JyLF_MYlbFqjUVx8OaXA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/TLIktT7JyLF_MYlbFqjUVx8OaXA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TLIktT7JyLF_MYlbFqjUVx8OaXA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:57:40:06:ef:f0:a8:a3:41:9e:54:6a:9f:63:01:a0:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb224b53ec9c8b17f31895b16a8d4571f0e6970
Validity
Not Before: Aug 15 18:14:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecbf4193b44f0634469a94c1a7f50b4097958e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cb:17:b5:aa:c5:6a:ca:ce:a3:55:b8:06:46:
8b:c9:34:97:a6:d9:a5:75:8d:2e:35:34:fd:86:74:
1d:f9:fe:bc:a9:b1:e5:ee:e1:6c:92:e9:55:6e:ed:
27:a0:1c:de:2a:6a:2a:cd:55:98:83:f3:70:cc:95:
30:8b:85:0b:2f:eb:04:9b:02:50:8d:68:41:fa:24:
4a:38:f6:aa:46:35:e2:fa:74:b7:19:3d:7b:bd:13:
60:94:92:83:4e:49:4f:5e:d0:85:29:d8:25:ff:2c:
12:81:bd:99:45:98:75:21:02:ee:c4:d5:b1:45:65:
90:09:ef:fd:d8:39:dc:bc:78:32:59:15:b6:2a:9a:
8e:fc:e9:fc:a3:5a:2f:52:05:dc:4a:0a:3c:de:a1:
82:ab:ad:b2:e1:99:2b:aa:2b:34:5e:b7:25:cc:dd:
23:fe:34:c0:bc:02:02:43:25:b0:f7:be:ca:a9:03:
68:81:5f:4c:8e:5f:93:1f:80:64:05:ba:05:df:29:
f1:3d:ce:aa:cc:33:11:45:2d:e5:64:41:b5:69:cd:
31:c3:cd:62:c7:ee:44:25:b6:34:26:c3:4c:a8:1a:
36:46:ca:21:a6:78:6e:8d:b6:3e:93:f8:df:06:38:
bf:40:72:5d:80:cc:54:ac:30:e8:7d:4c:08:38:c1:
86:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:BF:41:93:B4:4F:06:34:46:9A:94:C1:A7:F5:0B:40:97:95:8E:71
X509v3 Authority Key Identifier:
keyid:4C:B2:24:B5:3E:C9:C8:B1:7F:31:89:5B:16:A8:D4:57:1F:0E:69:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLIktT7JyLF_MYlbFqjUVx8OaXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/7L9Bk7RPBjRGmpTBp_ULQJeVjnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/TLIktT7JyLF_MYlbFqjUVx8OaXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c20::/48
Signature Algorithm: sha256WithRSAEncryption
49:b8:f8:48:3d:b0:d4:9e:d4:ac:bc:9a:03:09:6c:10:14:e2:
ab:3f:b0:62:43:dd:bb:42:d2:0d:6c:81:9d:c4:04:4f:f0:a3:
be:b0:68:d9:8a:d9:c6:a5:66:91:20:99:7f:9c:91:16:27:dd:
d7:3e:98:bc:fb:40:79:0d:79:23:ab:d2:d4:34:d6:6d:72:e0:
72:2e:4d:ca:ce:5e:15:03:c9:59:5f:76:cb:9d:67:8a:39:f5:
66:f0:fa:97:2d:82:fd:6c:91:76:de:da:c2:5e:2f:3e:0d:85:
9e:85:63:e9:b3:21:a6:86:98:a2:89:9b:c3:78:3f:e5:88:75:
3c:d5:ce:57:53:8b:33:14:3a:8b:1e:60:31:02:1a:e9:80:9a:
b7:71:f8:74:34:8f:0f:9e:a5:e3:b9:98:6b:58:db:2b:ab:3e:
69:b7:33:9a:33:b1:72:a5:08:25:97:fb:42:63:c1:9c:a0:d7:
f2:46:5e:32:ba:88:91:1a:b6:ec:36:67:d3:83:42:37:a2:dc:
5f:a6:16:6b:41:3a:b2:af:6e:b9:46:0e:65:aa:9a:76:1f:ed:
8f:cd:4d:63:e7:fc:42:49:67:15:f7:e3:05:cd:45:b3:96:73:
65:f1:eb:2c:c7:b1:d9:58:fe:7e:86:d3:84:5b:12:7e:4a:f2:
e8:41:b4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:01:34 2024 by rpki-client on console-ams.rpki-client.org