Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/fnovhY2eSkWq47t_m2yMZwnNcXc.roa
File: fnovhY2eSkWq47t_m2yMZwnNcXc.roa (raw, json)
Hash identifier: FnVdd+6t6917DMfe34iE8i0yn16VnQsxDAPXU+9Gf3o=
Subject key identifier: 7E:7A:2F:85:8D:9E:4A:45:AA:E3:BB:7F:9B:6C:8C:67:09:CD:71:77
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018CC8020112ABD333295D203D216738EA15
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/fnovhY2eSkWq47t_m2yMZwnNcXc.roa
Signing time: Tue 02 Jan 2024 02:30:23 +0000
ROA not before: Tue 02 Jan 2024 02:30:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21403
IP address blocks: 46.61.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:01:12:ab:d3:33:29:5d:20:3d:21:67:38:ea:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 02:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e7a2f858d9e4a45aae3bb7f9b6c8c6709cd7177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:15:c1:62:49:ce:c9:af:d8:57:a1:4b:b5:
8b:7d:a9:73:7b:5e:c5:dd:27:b0:0e:bf:b7:b6:76:
5b:ec:3d:6d:5e:5d:26:e5:cb:40:a6:af:1b:56:6a:
48:7a:76:eb:c9:4a:9e:fb:28:86:76:47:fc:3c:86:
13:e3:c8:f4:be:dd:27:1c:4d:ff:e7:c2:16:f9:88:
e1:b3:4b:8f:e8:06:13:8e:35:7b:ff:cf:a2:6a:52:
df:3e:6e:75:81:fe:23:80:c8:88:1b:44:77:a4:f3:
01:14:e3:8b:55:c1:77:2a:50:87:67:d8:24:87:40:
8b:7f:07:6c:ea:b8:d9:44:90:61:31:8c:f6:42:4e:
84:a0:24:b8:f9:25:cf:a8:58:af:82:68:65:6c:68:
f2:42:46:00:47:00:e6:4a:9d:96:df:b8:1f:a0:8a:
70:da:ea:d3:95:17:9c:b5:91:f0:8b:5b:1e:bc:24:
db:9d:38:a2:ff:2f:cf:9e:ff:6a:8e:00:5b:d8:51:
64:d4:4d:f3:7b:70:1a:ee:86:98:e4:f1:94:75:91:
c2:1e:4a:8f:0c:3f:a2:51:0b:d6:94:84:fe:82:a1:
f6:cb:65:dd:ea:c2:f6:77:31:bb:db:9b:cd:02:87:
ac:e7:eb:0f:20:06:15:a6:59:d8:4a:21:c4:c9:d9:
11:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:7A:2F:85:8D:9E:4A:45:AA:E3:BB:7F:9B:6C:8C:67:09:CD:71:77
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/fnovhY2eSkWq47t_m2yMZwnNcXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.61.137.0/24
Signature Algorithm: sha256WithRSAEncryption
71:68:3a:67:51:3a:43:89:a1:fe:7b:bb:3c:e5:01:d1:85:f4:
81:e6:3d:3f:e9:c2:c8:55:0b:5a:4e:06:68:84:a1:78:88:58:
23:e2:69:44:ec:6d:28:1c:59:c3:37:09:2a:5d:9f:4a:04:e9:
8c:28:3f:97:77:23:4e:9d:4a:6b:06:f9:9a:94:db:86:49:7e:
27:ca:a4:1e:b1:16:16:8b:bf:85:2f:42:67:f6:c1:1f:6f:26:
39:a5:35:f8:62:d0:df:29:53:5e:61:f3:d2:65:86:74:d9:44:
c5:e0:2f:a5:c7:b4:8c:51:cd:a9:9a:4d:8b:c7:73:ec:b4:55:
ae:01:33:af:95:b9:2b:05:ee:10:4c:db:27:dc:f9:19:e2:3e:
b1:4e:56:44:d3:8d:bc:ed:28:40:d5:51:3c:bd:4a:be:f9:d1:
61:f0:a2:f5:87:cf:fa:7a:18:97:6d:bf:a2:1b:56:b9:c5:4a:
55:1f:fc:c2:b9:c4:c7:83:32:d7:f9:b3:4b:7b:73:47:94:2a:
d7:68:0c:05:02:61:21:ee:b9:18:a3:ab:b1:eb:a8:69:5e:aa:
72:13:75:13:7b:04:b9:e4:a4:25:cb:da:b0:cb:37:1c:c2:60:
8e:bc:ad:68:da:26:08:4b:fd:bd:7c:6c:75:22:43:61:71:28:
84:f3:9e:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:29:32 2024 by rpki-client on console-ams.rpki-client.org