Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS205618.roa
File: AS205618.roa (raw, json)
Hash identifier: jXd+k+zCpkgpsG0R1nbesfrasvo3oiC1mGlerD2EnGM=
Subject key identifier: 81:E2:9B:08:88:1D:2C:66:CA:D3:BC:63:E2:A1:C5:D0:4C:01:73:B8
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 338D464112B09DB1FAE08814C12E0ACC8BF3E913
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS205618.roa
Signing time: Wed 20 Nov 2024 21:30:31 +0000
ROA not before: Wed 20 Nov 2024 21:25:31 +0000
ROA not after: Wed 19 Nov 2025 21:30:31 +0000
asID: 205618
IP address blocks: 2a0b:4340:70::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:8d:46:41:12:b0:9d:b1:fa:e0:88:14:c1:2e:0a:cc:8b:f3:e9:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Nov 20 21:25:31 2024 GMT
Not After : Nov 19 21:30:31 2025 GMT
Subject: CN=81E29B08881D2C66CAD3BC63E2A1C5D04C0173B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9c:b7:60:6c:c2:4e:45:51:3a:c8:1d:c7:ab:
c7:e9:6e:1b:87:07:4a:3e:97:14:ae:4b:40:1d:76:
87:cb:c1:16:c3:d1:36:eb:79:ec:eb:80:02:4a:c6:
0f:bb:cc:e5:ec:08:96:27:da:bf:82:b6:30:89:30:
83:66:12:af:3c:87:d9:71:2c:0a:4e:46:db:b7:ed:
ca:7d:ef:b6:be:40:ac:3f:40:bd:cc:9c:88:66:6d:
b2:ed:0f:04:d8:81:11:e9:02:e7:ec:01:9b:dc:8e:
54:d0:ec:ba:8c:cf:32:e1:a5:d9:ed:c2:f3:6c:77:
34:33:1c:23:7b:0a:48:02:75:8f:48:1d:f7:77:80:
d2:3b:c7:d7:70:76:1c:a2:22:d9:13:97:9a:aa:1c:
a1:1f:2a:d4:9f:0c:8f:26:e3:4d:3d:7a:a9:c9:59:
9c:23:8e:e8:e5:35:e0:72:5d:a9:b3:8c:49:b1:e3:
6b:0b:63:51:1d:b0:54:cc:90:08:39:97:f6:68:e3:
db:bc:78:7c:1b:22:95:2a:0a:ed:31:28:84:8b:5f:
83:2d:32:cf:68:43:cd:10:5f:91:15:99:8f:23:09:
40:18:5a:2d:7e:a4:6d:87:e9:fe:44:ed:d4:99:99:
a7:3b:dd:40:e1:51:67:94:28:c2:b7:52:a9:61:e5:
a6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E2:9B:08:88:1D:2C:66:CA:D3:BC:63:E2:A1:C5:D0:4C:01:73:B8
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS205618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4340:70::/44
Signature Algorithm: sha256WithRSAEncryption
b3:c8:90:0a:47:0f:19:b2:30:a5:68:fc:aa:b7:19:19:ee:19:
b3:de:9b:5e:29:12:e1:01:32:45:a4:2a:77:93:01:5d:7e:30:
f8:e4:7b:a2:36:a8:27:a7:e4:a3:fa:4e:98:e3:cb:16:26:ec:
a2:52:73:fc:c3:32:6d:57:f0:ee:c1:68:f2:ce:44:40:49:92:
ef:23:22:e5:dc:5e:52:1f:54:b9:b7:38:58:4f:20:9a:98:8e:
ff:f0:37:7b:0b:0d:a4:db:f5:05:cf:f9:35:80:5e:43:1f:86:
e5:dc:ca:72:22:87:37:a0:bb:d7:f6:6a:e4:42:79:e7:d9:50:
cb:ea:16:e4:57:08:65:c2:87:f0:5e:28:00:41:c3:77:85:fd:
b5:83:00:64:13:0d:ed:a1:06:07:f0:83:0d:8d:52:6b:f1:3c:
34:03:37:86:b2:1a:67:01:7c:52:53:73:87:81:f8:91:16:eb:
e8:52:e3:6c:6d:21:04:44:72:d6:78:78:a8:1e:b6:e7:21:a5:
da:4b:6c:64:51:30:14:92:a9:97:90:47:64:f5:44:a6:5d:c4:
6a:40:24:af:dc:93:4e:83:86:0c:b8:02:94:70:64:b2:1e:7b:
4e:b7:82:97:21:8b:14:f5:b2:f9:01:eb:a9:17:ac:d3:ef:1b:
08:ba:6d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org