Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/GuUK2-cR4kgsD8ZcSDR9mkBlTJA.roa
File: GuUK2-cR4kgsD8ZcSDR9mkBlTJA.roa (raw, json)
Hash identifier: 1RIcSNB7G43B3GsXLCais8nF2DKeB7/8awjQ42CQZhM=
Subject key identifier: 1A:E5:0A:DB:E7:11:E2:48:2C:0F:C6:5C:48:34:7D:9A:40:65:4C:90
Certificate issuer: /CN=26e94ce0b4954108b15c4f295938f8c1af0727c4
Certificate serial: 018CC64B8BE75B7823A68783DB619BE59D96
Authority key identifier: 26:E9:4C:E0:B4:95:41:08:B1:5C:4F:29:59:38:F8:C1:AF:07:27:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JulM4LSVQQixXE8pWTj4wa8HJ8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/GuUK2-cR4kgsD8ZcSDR9mkBlTJA.roa
Signing time: Mon 01 Jan 2024 18:31:28 +0000
ROA not before: Mon 01 Jan 2024 18:31:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203821
IP address blocks: 217.28.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/JulM4LSVQQixXE8pWTj4wa8HJ8Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/JulM4LSVQQixXE8pWTj4wa8HJ8Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JulM4LSVQQixXE8pWTj4wa8HJ8Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:03:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:8b:e7:5b:78:23:a6:87:83:db:61:9b:e5:9d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26e94ce0b4954108b15c4f295938f8c1af0727c4
Validity
Not Before: Jan 1 18:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ae50adbe711e2482c0fc65c48347d9a40654c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8c:e8:eb:93:e4:bd:eb:9b:9a:aa:ac:ea:e6:
4c:83:ff:87:27:6c:88:4c:ec:05:34:f1:30:55:50:
7a:7b:bd:7e:05:41:d6:6c:fd:bb:d8:ee:cc:70:e9:
aa:3e:1a:5c:77:3a:13:ea:c1:f6:a5:18:d8:05:f7:
03:20:0f:00:18:8c:9f:63:a4:fd:34:b7:0b:25:21:
3a:35:41:18:0b:bc:74:c6:d2:b1:68:54:ae:fb:aa:
c3:e1:7c:24:5d:cf:1d:3a:e0:48:5e:37:af:57:c0:
47:25:5f:0f:47:0f:43:dd:94:d0:7a:34:cf:df:6f:
87:87:3e:4a:ec:d5:d9:aa:c4:ca:84:df:32:a0:af:
6d:4f:b5:03:28:1d:48:3a:f9:ea:5b:13:e8:d7:79:
94:e4:2f:10:b7:5e:86:c7:d6:28:db:c3:53:dc:dd:
cd:72:8b:24:ae:c5:39:1b:f8:6c:42:f2:e8:74:81:
f3:04:ee:fd:c4:d5:45:15:22:c8:cd:ca:63:92:6c:
2b:f6:ca:bf:ce:11:99:6c:90:14:85:9f:7d:51:1b:
a5:7b:b4:24:d6:b5:fe:c9:6a:ef:8e:cf:cc:16:eb:
f0:97:38:f5:58:e2:50:20:f8:bd:4d:0f:9a:31:12:
44:9d:fb:94:c6:dd:c8:98:a7:11:ef:a1:af:6b:f7:
b6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E5:0A:DB:E7:11:E2:48:2C:0F:C6:5C:48:34:7D:9A:40:65:4C:90
X509v3 Authority Key Identifier:
keyid:26:E9:4C:E0:B4:95:41:08:B1:5C:4F:29:59:38:F8:C1:AF:07:27:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JulM4LSVQQixXE8pWTj4wa8HJ8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/GuUK2-cR4kgsD8ZcSDR9mkBlTJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/JulM4LSVQQixXE8pWTj4wa8HJ8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.134.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b7:5d:5c:97:43:81:05:71:72:71:86:d8:01:96:43:d7:01:
40:7c:34:ce:3a:14:7e:a3:e4:1e:5b:78:86:56:79:22:64:51:
cd:b0:5d:85:cd:69:72:1c:23:f5:cb:d9:7d:e7:5d:89:95:e0:
cc:74:e1:af:b2:6a:eb:fc:85:fc:fe:25:ea:c8:ca:0a:04:fe:
fb:c2:d0:44:5e:06:86:89:31:cc:6d:d3:e9:02:15:8a:f0:c1:
19:ad:49:d5:2a:85:64:75:9b:3b:f2:0d:46:8a:d9:4f:ae:86:
a3:3c:1d:c7:8f:9d:ca:31:bb:63:ef:cd:83:51:d1:8b:2b:d6:
22:bc:4a:1d:3c:d6:15:7c:07:e5:ce:6d:8b:4f:78:16:bd:41:
69:20:83:87:83:58:cb:46:8e:2e:17:b7:b3:bf:25:d0:1e:71:
36:c3:71:10:94:93:29:e1:2b:db:33:2f:ba:fa:1b:5e:77:95:
af:2e:a3:b1:53:ab:c5:6d:a2:bd:45:62:3b:14:7b:9d:93:79:
25:2f:76:4a:7f:56:f8:58:3e:7a:b9:5e:72:ab:94:be:98:5d:
6f:c8:5e:db:7a:80:45:56:8f:c2:3b:7a:2c:2b:07:7e:5d:8f:
6f:7e:4d:d6:4a:79:72:68:72:4c:b6:02:41:e7:17:7d:62:05:
8d:e9:a4:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:03:30 2024 by rpki-client on console-fra.rpki-client.org