Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/Ui4VJiTOkYD1-Bk0bLVrq2cIzWY.roa
File: Ui4VJiTOkYD1-Bk0bLVrq2cIzWY.roa (raw, json)
Hash identifier: D9d+MSOWsOMv6yefcHoiKuRtPM5X0TuAezL8hOjBZSM=
Subject key identifier: 52:2E:15:26:24:CE:91:80:F5:F8:19:34:6C:B5:6B:AB:67:08:CD:66
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018CC794FA1E9739F52046A0231060EB81EE
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/Ui4VJiTOkYD1-Bk0bLVrq2cIzWY.roa
Signing time: Tue 02 Jan 2024 00:31:18 +0000
ROA not before: Tue 02 Jan 2024 00:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 62.56.208.0/21 maxlen: 24
213.170.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:fa:1e:97:39:f5:20:46:a0:23:10:60:eb:81:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Jan 2 00:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=522e152624ce9180f5f819346cb56bab6708cd66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bf:86:a3:df:f9:8b:78:08:78:49:05:d7:1a:
29:79:85:7c:f3:af:94:3a:c9:ee:06:16:dc:e6:01:
b0:14:0b:5a:e6:90:ca:60:52:38:a2:49:8a:01:aa:
69:cb:2f:a1:25:49:9b:19:ed:8b:1f:21:ae:7d:1e:
1e:91:0e:f1:84:28:ed:72:23:54:3c:b4:03:fe:5e:
09:d7:c9:97:bf:95:48:6b:44:aa:9a:9d:50:f7:0f:
b9:66:3e:76:2b:06:2d:9e:68:76:d0:a6:ab:85:e9:
75:b8:45:63:51:93:c8:ef:39:0c:00:4c:ad:59:5b:
06:7f:1e:ea:9d:c2:d1:11:24:75:0a:9f:01:d8:7b:
00:73:a6:49:ff:59:1f:7f:cb:3d:78:1a:3a:c6:96:
85:aa:66:01:2d:a3:25:4e:4f:f8:fb:8e:44:dc:55:
c4:59:db:14:b2:19:a2:27:a7:be:b8:c0:c9:8c:69:
7c:93:06:84:48:2c:29:69:f0:81:28:a3:25:99:a6:
b7:76:39:fa:c7:09:d3:b1:db:ee:a6:a5:4f:05:f5:
7f:4a:e1:03:d8:19:33:b0:10:00:34:46:fc:22:0a:
e2:3d:dd:da:ef:e2:e6:31:81:ed:b9:8e:f8:08:d1:
d6:2b:2a:68:39:66:92:aa:fb:e8:b2:95:40:b5:ab:
84:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2E:15:26:24:CE:91:80:F5:F8:19:34:6C:B5:6B:AB:67:08:CD:66
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/Ui4VJiTOkYD1-Bk0bLVrq2cIzWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.56.208.0/21
213.170.145.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:55:6b:bc:af:cc:e5:92:53:d2:1f:47:ac:e4:bd:0f:5c:8d:
c0:7b:08:1e:20:b6:34:34:26:12:28:05:e3:39:70:f4:fb:0a:
1e:2b:ce:62:41:77:a2:d5:38:83:f8:99:53:be:44:86:b9:4b:
cd:62:e8:98:b8:3a:f7:d8:b4:60:69:21:b7:6c:0e:72:fe:0f:
be:0a:f1:fc:b4:94:60:91:ae:67:f8:7f:b3:cc:79:c8:4c:82:
c2:4e:73:a1:ee:1e:08:14:d4:4a:f1:81:45:72:eb:31:fd:07:
7b:08:ef:3b:d3:8f:2e:9c:83:89:fb:df:93:1e:91:3f:19:40:
87:cd:35:06:f2:72:2e:aa:36:ec:76:77:53:31:d6:78:8b:13:
71:e2:90:d5:1c:08:09:5a:25:c7:c9:82:18:96:42:8d:fb:9b:
f1:7f:98:ca:fc:16:55:2e:59:72:e3:58:30:bd:6a:86:7a:16:
80:4a:1a:e1:d6:88:5c:51:11:fe:36:2b:20:57:f3:4f:91:be:
d2:5a:8c:74:6e:a7:19:b7:50:07:da:d8:96:86:3a:68:b8:42:
b0:4b:fe:aa:66:ab:31:86:87:d2:ca:f2:2e:ae:d4:26:20:1e:
ae:fc:80:78:a3:dc:82:1b:69:4a:7f:ad:46:a5:f6:24:67:ce:
32:93:b6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 18:16:24 2024 by rpki-client on console-fra.rpki-client.org