Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/U0U80ScVCsYNYydZLR0-3ybrNwk.roa
File: U0U80ScVCsYNYydZLR0-3ybrNwk.roa (raw, json)
Hash identifier: rWgzWofx9ehf3jAZ1eFvpb2U9txZCuk8jMihI/Cn5YU=
Subject key identifier: 53:45:3C:D1:27:15:0A:C6:0D:63:27:59:2D:1D:3E:DF:26:EB:37:09
Certificate issuer: /CN=68cc325c8ad9769a1b54da296305fe0c36573775
Certificate serial: 018E582D44B3EFE215DC997A5FAA96B4C008
Authority key identifier: 68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/U0U80ScVCsYNYydZLR0-3ybrNwk.roa
Signing time: Tue 19 Mar 2024 19:25:45 +0000
ROA not before: Tue 19 Mar 2024 19:25:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200185
IP address blocks: 217.61.104.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:58:2d:44:b3:ef:e2:15:dc:99:7a:5f:aa:96:b4:c0:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cc325c8ad9769a1b54da296305fe0c36573775
Validity
Not Before: Mar 19 19:25:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53453cd127150ac60d6327592d1d3edf26eb3709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c3:b2:ac:12:81:dc:3f:8e:8a:7e:d9:6e:81:
af:cf:d0:28:ae:38:f5:8e:48:d8:15:13:9c:3d:ca:
c6:4d:2d:1a:e0:4c:bf:76:cd:83:12:59:ef:d6:50:
4d:75:16:46:94:38:c7:7f:da:db:d0:b9:68:1e:68:
08:82:5e:f0:c0:d4:9c:77:5e:82:ab:16:86:de:3e:
c4:9e:20:73:bd:21:39:2f:78:f2:8d:4d:05:57:47:
d9:97:3e:da:07:34:8e:50:ee:70:67:48:0b:42:22:
ec:21:65:41:c5:55:96:1b:31:1e:ea:7f:dd:7b:54:
93:d9:d0:fa:ae:8a:05:99:69:e3:a4:db:6c:f5:77:
fa:61:a4:ef:e0:54:7d:f8:d6:ad:1b:4a:aa:0f:e6:
a4:0c:d7:5d:47:fe:69:8f:d0:36:53:d8:90:1d:f5:
6b:77:18:13:b6:6e:9b:65:72:94:1e:56:71:05:0b:
ed:84:6f:6d:c4:71:71:57:67:34:85:08:c8:d0:97:
c5:91:ec:f5:1f:5e:3e:b4:57:b3:8c:89:6a:7e:e4:
40:1c:72:91:78:fe:2a:6a:a5:7e:95:16:9e:f8:3d:
a4:ff:33:97:de:b6:e6:92:98:1f:6f:2d:89:5b:6b:
10:3f:cb:60:be:31:8b:4a:49:b9:29:16:97:af:b2:
52:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:45:3C:D1:27:15:0A:C6:0D:63:27:59:2D:1D:3E:DF:26:EB:37:09
X509v3 Authority Key Identifier:
keyid:68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/U0U80ScVCsYNYydZLR0-3ybrNwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.61.104.0/21
Signature Algorithm: sha256WithRSAEncryption
57:ef:a8:ed:8b:c8:4e:fa:db:d8:42:82:fa:a6:5b:0e:02:48:
12:32:7b:61:26:03:b8:fc:01:cf:f0:0b:39:29:83:87:8d:05:
b3:77:6d:19:71:99:81:f9:f1:2f:fa:e5:31:0c:4a:41:58:df:
e4:d4:45:b4:9e:6b:36:0f:35:26:1a:e4:51:75:b3:a4:37:87:
94:67:af:89:85:c4:65:c4:b6:ca:ad:7e:20:cb:3e:87:d8:1f:
18:d0:ba:f6:62:34:d0:5b:f7:c2:e1:66:ef:c0:48:a9:6d:be:
8d:28:f9:47:d8:60:8e:9a:84:17:fa:1a:a8:d8:bd:3a:e7:8e:
9b:a5:b8:b9:4e:09:84:d4:ef:aa:ba:00:f8:10:81:79:29:b9:
54:cb:96:86:2a:4c:69:18:1b:3d:0b:69:46:eb:e7:73:f2:89:
ee:58:d2:5c:dd:70:e6:4d:f0:7e:c0:32:ec:42:ba:6a:d0:f3:
69:33:d7:a5:bc:fa:3e:0e:25:ce:af:ff:01:5e:31:19:a3:7e:
47:ac:ea:99:ce:f2:6d:70:06:4e:aa:a1:4c:76:cd:07:32:36:
2a:53:c0:76:be:51:f0:b3:9f:2a:2f:72:30:63:d2:82:f2:e0:
ad:ae:d1:b7:fc:62:e4:2c:ba:b9:0b:5f:ef:b7:a9:94:0e:b0:
94:d1:ec:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:03:53 2024 by rpki-client on console-fra.rpki-client.org