Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS41780.roa
File: AS41780.roa (raw, json)
Hash identifier: qcN2l1Myz4sNUCu9WQp+dMQC2gqCJ8lspQXHDEN0IaY=
Subject key identifier: 01:BE:93:A5:75:85:2B:9F:0B:40:06:1E:F4:5C:D7:30:0D:9A:87:5C
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 4CCF3B4F74DE2A12AF383CF048D7161704403792
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS41780.roa
Signing time: Wed 20 Nov 2024 21:30:33 +0000
ROA not before: Wed 20 Nov 2024 21:25:33 +0000
ROA not after: Wed 19 Nov 2025 21:30:33 +0000
asID: 41780
IP address blocks: 2a0b:4340:40::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:cf:3b:4f:74:de:2a:12:af:38:3c:f0:48:d7:16:17:04:40:37:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Nov 20 21:25:33 2024 GMT
Not After : Nov 19 21:30:33 2025 GMT
Subject: CN=01BE93A575852B9F0B40061EF45CD7300D9A875C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b8:f9:e0:7c:45:0a:b2:62:fb:a9:37:f5:f2:
1c:90:1e:89:04:bf:39:e7:3b:07:d4:53:73:97:31:
d5:93:d9:e0:db:ba:4c:d4:02:7c:99:6f:33:46:7e:
9f:2a:e8:38:91:90:94:83:03:ce:46:89:8d:1f:fb:
db:27:ef:af:64:22:6f:ab:5a:d9:f9:c2:4e:d6:c3:
ae:79:b5:5d:48:39:ed:14:f7:ed:45:3b:de:20:c0:
5e:5a:f0:52:b8:8e:0b:b5:d1:d9:97:6a:13:51:d3:
44:b0:01:67:9e:4f:90:c6:21:ff:fc:93:b3:d3:0e:
91:fd:5b:72:46:30:a5:19:44:68:45:3f:3a:83:3f:
d2:38:2c:a7:ce:e1:e6:68:44:78:b7:a4:0c:e7:16:
2d:62:7f:57:e1:8e:77:b3:ed:f3:92:29:2e:a1:a3:
d7:83:6c:25:f5:f9:dc:f3:9d:8c:7d:d9:3c:2e:6f:
98:26:19:aa:45:c0:cf:4a:aa:15:d9:71:e0:eb:9e:
cb:ca:0f:ad:cb:2b:1d:12:fb:49:c4:7a:6c:c3:4d:
cb:84:4f:b7:bd:87:ca:61:70:f0:29:c8:c7:ff:dc:
2e:92:d1:ac:79:c0:14:90:68:18:ef:17:b1:47:d1:
46:4c:2b:43:95:df:71:b5:40:fc:10:52:a0:10:47:
16:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BE:93:A5:75:85:2B:9F:0B:40:06:1E:F4:5C:D7:30:0D:9A:87:5C
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS41780.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4340:40::/44
Signature Algorithm: sha256WithRSAEncryption
a3:96:fc:60:ff:90:8c:a4:97:f7:2f:db:63:03:6e:50:1e:85:
47:9d:93:50:a2:98:f5:1d:8e:ca:bf:cc:a9:5a:b7:ef:b4:5a:
f3:06:7f:a5:15:be:71:b5:11:c2:ba:82:5c:93:18:6e:ac:bf:
73:ce:1f:03:ef:a9:68:20:bb:21:6e:5e:6c:fd:fe:16:3a:b0:
8c:14:4b:d8:da:6a:b8:c1:5e:89:40:8f:36:e6:39:de:9f:4a:
9e:82:52:9f:84:f4:91:c8:d7:16:70:0e:ee:7e:01:ed:d2:01:
2c:14:af:9b:c3:39:b9:50:9e:35:fc:71:5c:f8:2f:30:78:04:
9d:4a:f3:1c:3a:7d:fb:08:b2:45:1b:bd:8a:40:cb:a4:cc:f7:
3a:6c:88:ad:f7:e2:11:cc:5a:1e:72:c2:e6:99:bf:1b:0f:b7:
f8:88:aa:0d:f3:94:b5:6a:03:a4:73:2c:53:51:81:91:0e:76:
02:7f:51:80:95:e9:f4:cc:fe:28:cb:aa:58:7f:2c:30:05:f0:
2f:e0:c9:77:f8:77:71:66:51:a7:05:c5:1b:f8:48:4f:25:00:
6f:e2:91:3d:8e:3e:70:2a:98:b0:57:ad:bc:df:1c:18:94:88:
33:35:de:5f:ad:e8:6f:37:bd:3d:ec:3f:dd:a3:84:eb:36:a6:
3f:a6:1b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org