Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Svmcg1_STV0uZolac57Qt0ecjOQ.roa
File: Svmcg1_STV0uZolac57Qt0ecjOQ.roa (raw, json)
Hash identifier: eWT40eIR4N0l/Ol/+M+8pNqwQeUORRLdRRXGb7LbVpQ=
Subject key identifier: 4A:F9:9C:83:5F:D2:4D:5D:2E:66:89:5A:73:9E:D0:B7:47:9C:8C:E4
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018F135187F19019ECAC45EAE4D9AA0F3ED8
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Svmcg1_STV0uZolac57Qt0ecjOQ.roa
Signing time: Thu 25 Apr 2024 03:34:21 +0000
ROA not before: Thu 25 Apr 2024 03:34:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203493
IP address blocks: 2a09:6280:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft
rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:13:51:87:f1:90:19:ec:ac:45:ea:e4:d9:aa:0f:3e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Apr 25 03:34:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4af99c835fd24d5d2e66895a739ed0b7479c8ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:85:97:0e:8a:2c:40:fe:75:01:00:6c:ed:15:
cb:53:e7:26:02:16:e0:6f:c8:43:33:e5:18:57:1f:
48:ab:02:fe:6f:0f:6a:5a:26:7d:5e:6a:97:d9:5a:
49:a2:9b:c6:66:f0:91:10:c8:ba:ce:99:13:cf:5b:
ce:e1:a0:55:d5:70:73:a2:c4:7a:cd:26:a3:86:53:
c6:7f:69:8a:c2:6a:76:5b:0e:6c:b3:8d:14:89:07:
d7:9b:43:7b:78:e9:67:03:06:9d:a8:33:2c:ed:41:
54:33:3f:3f:be:a7:cf:d8:a6:3b:db:62:69:dc:3e:
67:1b:91:30:d6:1b:a2:6d:ec:fc:0e:11:37:d7:4b:
8e:56:b6:85:88:36:96:90:30:ec:92:ce:95:7d:9a:
ef:30:83:29:01:75:4c:c7:05:e2:dd:af:64:4f:86:
43:de:b7:f9:de:17:6f:c0:6e:ab:d8:0b:49:77:3f:
5b:0e:27:47:2a:39:10:98:b3:2d:10:e2:aa:69:8d:
3a:c8:13:89:20:5d:48:d0:23:1e:c1:bc:cc:d4:47:
be:ea:7c:70:53:e0:23:8d:c4:27:58:33:bb:c4:bf:
a3:24:09:44:7f:bf:b2:bd:6f:5a:0f:5d:ae:b3:59:
0b:92:94:69:90:6a:4b:0b:91:33:98:ca:63:1d:15:
24:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F9:9C:83:5F:D2:4D:5D:2E:66:89:5A:73:9E:D0:B7:47:9C:8C:E4
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Svmcg1_STV0uZolac57Qt0ecjOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:6280:3::/48
Signature Algorithm: sha256WithRSAEncryption
29:da:13:59:19:41:4d:6a:88:ce:d5:43:58:dc:dc:bd:40:ed:
ec:6c:f6:10:f8:fb:e7:ca:3c:b7:6f:c1:51:bd:e8:02:22:b3:
a2:02:8a:9e:55:2a:c7:6a:37:a3:1d:34:e0:18:8e:36:3e:12:
56:ed:14:75:01:6e:6a:36:9e:6d:fe:92:3b:9c:df:51:e9:71:
16:3c:14:25:51:11:57:57:ea:5c:b2:56:23:69:8a:5c:17:b5:
1d:d6:81:d0:12:00:b6:72:81:e4:d0:1f:50:0d:94:a0:e4:2e:
1d:aa:2c:e7:07:b4:ea:9c:4f:bb:85:2b:49:ee:a6:df:d8:31:
cf:eb:1d:ef:d8:02:80:28:6c:88:20:1b:e8:86:5d:0a:b3:fa:
fb:97:a5:e4:af:11:95:a7:79:a2:5c:f8:e8:f6:ff:7a:11:79:
cd:90:5b:1f:f7:bf:5b:95:e8:3f:ab:03:ad:7e:0c:65:56:57:
3b:21:76:71:fa:a0:a3:21:c3:8b:75:ad:cc:cb:1a:26:1d:59:
4e:00:d7:67:7c:29:05:e0:26:55:fd:f7:29:15:10:9e:a9:74:
52:4a:67:ed:58:6c:4e:9f:54:2a:3e:d6:86:c4:51:a1:30:60:
68:19:66:5d:a1:00:87:31:e7:cd:1d:30:15:ec:ab:a3:42:d5:
77:4d:a8:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:53:24 2024 by rpki-client on console-fra.rpki-client.org