Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/B4UUf-S_pU6PL9UBCqy02mxXf48.roa
File: B4UUf-S_pU6PL9UBCqy02mxXf48.roa (raw, json)
Hash identifier: MPAbIHaQiyFYihtFpZzfGcNS/BNceORGyloB/TDIqZo=
Subject key identifier: 07:85:14:7F:E4:BF:A5:4E:8F:2F:D5:01:0A:AC:B4:DA:6C:57:7F:8F
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 018CC794210C13DB155924FB52ED946E5E41
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/B4UUf-S_pU6PL9UBCqy02mxXf48.roa
Signing time: Tue 02 Jan 2024 00:30:22 +0000
ROA not before: Tue 02 Jan 2024 00:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15995
IP address blocks: 194.176.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 21:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:21:0c:13:db:15:59:24:fb:52:ed:94:6e:5e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 2 00:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0785147fe4bfa54e8f2fd5010aacb4da6c577f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e3:f2:59:79:12:be:db:62:47:3a:8d:28:01:
19:1e:b4:f7:d9:48:de:49:a0:2f:eb:4a:bf:1a:10:
10:e4:d3:e8:27:26:08:3d:3b:c8:58:b3:3a:a9:1b:
e2:8f:06:1b:11:81:ba:49:70:21:48:b6:5e:69:e3:
d5:60:ef:0d:02:8c:75:92:78:5f:12:41:e9:48:a4:
35:90:40:4f:46:97:af:2f:35:1e:99:49:cd:ae:69:
ea:a7:61:29:59:9a:e2:da:38:c2:e6:fb:0c:25:de:
53:71:0b:3b:48:ad:8a:0e:0f:c7:81:74:ce:7f:f4:
a9:c9:99:f2:8a:61:87:ef:06:66:6f:79:d0:37:16:
78:cf:3d:07:62:73:9b:0a:ea:6c:5a:ae:d5:0f:43:
e8:0e:0f:56:48:5e:af:5e:d2:55:73:ee:c3:28:99:
91:6d:61:11:b1:7b:8a:a2:b5:69:a1:7f:e5:a6:5a:
ed:9d:77:2b:29:e5:b5:21:1b:3e:3d:09:9e:bf:f6:
01:47:a5:69:f5:ed:dd:07:f1:1e:19:7f:b0:86:6e:
0e:76:75:12:f4:40:ba:7d:e5:02:c1:0e:c0:e9:3e:
6c:02:3c:e2:52:32:7b:f8:8e:96:23:75:5b:b2:a7:
bb:4f:4f:2f:7e:6c:60:68:99:4c:30:b5:bd:77:1a:
86:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:85:14:7F:E4:BF:A5:4E:8F:2F:D5:01:0A:AC:B4:DA:6C:57:7F:8F
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/B4UUf-S_pU6PL9UBCqy02mxXf48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.176.58.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ec:07:f1:20:e0:cb:71:a0:8a:e5:5c:3a:c9:2e:48:8a:7d:
b6:6a:c2:d7:5d:ed:e5:d9:04:61:28:85:4f:3e:b3:d3:43:bb:
8c:e2:21:bf:62:d9:0e:9c:a9:fa:8d:54:36:ee:73:09:9a:3b:
ef:ea:0a:2c:49:c5:43:80:b3:86:9c:10:47:8d:56:9e:41:b5:
f4:44:3c:28:dd:8b:e0:e2:35:90:cf:92:d3:61:9c:7e:cb:3a:
42:39:5d:79:f1:d5:51:e4:83:7c:f0:e7:88:04:ee:bb:ab:38:
9e:c3:e7:68:50:13:b1:df:7e:b6:96:1f:fd:b4:12:b2:00:ee:
9c:90:73:47:be:76:ee:ba:d2:d6:1c:c5:36:f8:62:8e:72:01:
84:3b:4c:b9:77:bb:ee:83:d2:e0:a0:38:23:ee:6c:1e:c8:00:
19:53:21:cc:11:dd:2d:f4:9a:e3:b0:7f:ec:1f:60:06:37:bc:
52:07:b5:eb:66:69:f2:c0:6e:7b:ca:3d:70:9a:57:5a:cf:03:
95:c2:11:b1:f2:47:18:47:cd:3e:56:e4:05:16:82:57:c5:53:
35:0f:eb:77:70:63:71:52:2f:2c:88:63:d6:df:2e:e4:7c:67:
bf:43:a6:58:e7:43:59:43:e8:6d:46:a4:06:87:1f:13:81:97:
7b:ba:63:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 23:53:18 2024 by rpki-client on console-fra.rpki-client.org