Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ffe07c-16f0-4999-8894-10f0093eaae0/1/jOqiqqxaNfB8TxN-na4UJIl1VPo.roa
File: jOqiqqxaNfB8TxN-na4UJIl1VPo.roa (raw, json)
Hash identifier: wf32aHX6iqdpxypUVEB6XvXpwQ5/nT1NKquu+Z2Atfc=
Subject key identifier: 8C:EA:A2:AA:AC:5A:35:F0:7C:4F:13:7E:9D:AE:14:24:89:75:54:FA
Certificate issuer: /CN=f753a19b5dce1d4159352229426a9fdb7d9f9a3b
Certificate serial: 018FC92E413DA0C06C0EF7E2C42326EEA317
Authority key identifier: F7:53:A1:9B:5D:CE:1D:41:59:35:22:29:42:6A:9F:DB:7D:9F:9A:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/91Ohm13OHUFZNSIpQmqf232fmjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ffe07c-16f0-4999-8894-10f0093eaae0/1/jOqiqqxaNfB8TxN-na4UJIl1VPo.roa
Signing time: Thu 30 May 2024 11:06:42 +0000
ROA not before: Thu 30 May 2024 11:06:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30830
IP address blocks: 80.73.128.0/23 maxlen: 24
80.73.130.0/23 maxlen: 24
80.73.132.0/23 maxlen: 24
2a01:5140::/32 maxlen: 32
2a01:5140:a::/48 maxlen: 48
2a01:5140:b::/48 maxlen: 48
2a01:5140:128::/48 maxlen: 48
2a01:5140:129::/48 maxlen: 48
2a01:5140:130::/48 maxlen: 48
2a01:5140:131::/48 maxlen: 48
2a01:5140:132::/48 maxlen: 48
2a01:5140:133::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/ffe07c-16f0-4999-8894-10f0093eaae0/1/91Ohm13OHUFZNSIpQmqf232fmjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/ffe07c-16f0-4999-8894-10f0093eaae0/1/91Ohm13OHUFZNSIpQmqf232fmjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/91Ohm13OHUFZNSIpQmqf232fmjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c9:2e:41:3d:a0:c0:6c:0e:f7:e2:c4:23:26:ee:a3:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f753a19b5dce1d4159352229426a9fdb7d9f9a3b
Validity
Not Before: May 30 11:06:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ceaa2aaac5a35f07c4f137e9dae1424897554fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cf:c5:28:32:b4:92:34:19:e0:e2:51:ad:d9:
d1:9c:5d:f7:fb:2c:54:a4:20:0b:e9:21:80:69:6e:
de:47:36:1d:75:68:3e:d7:08:6f:fe:3c:73:14:aa:
ae:a2:73:38:38:cc:82:33:53:2b:2d:8a:9b:a3:b0:
63:45:64:79:f1:51:b1:b3:73:21:c8:d5:5f:7d:02:
3b:ea:11:12:53:c7:4b:62:bc:81:48:5f:2e:f6:d3:
e4:29:ca:32:fd:69:6a:52:df:f5:c9:10:62:a2:49:
17:7b:8c:3f:ce:9f:10:93:d4:11:26:ee:e6:87:f9:
74:0b:2f:87:cb:02:cc:3f:38:4c:cb:b7:04:1b:18:
6d:85:aa:c5:dc:53:fc:08:df:a6:94:b1:42:dd:4a:
2e:d0:ec:8e:13:65:db:76:2f:dc:7b:a0:f5:f4:64:
ba:e3:b8:e7:29:1d:b6:6f:60:99:49:4b:c6:4f:36:
26:28:35:78:da:91:9f:bc:ac:c5:27:3d:9a:33:cf:
88:0f:97:a0:88:e9:9c:af:74:07:b9:be:06:0b:59:
53:87:db:18:21:83:bb:af:d6:b1:e2:b7:4e:04:f2:
e8:05:35:f6:cf:91:02:a0:89:60:70:4e:ca:1d:b0:
ec:8f:34:32:fc:34:c9:6c:f7:65:df:3c:20:da:34:
b3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EA:A2:AA:AC:5A:35:F0:7C:4F:13:7E:9D:AE:14:24:89:75:54:FA
X509v3 Authority Key Identifier:
keyid:F7:53:A1:9B:5D:CE:1D:41:59:35:22:29:42:6A:9F:DB:7D:9F:9A:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/91Ohm13OHUFZNSIpQmqf232fmjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ffe07c-16f0-4999-8894-10f0093eaae0/1/jOqiqqxaNfB8TxN-na4UJIl1VPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ffe07c-16f0-4999-8894-10f0093eaae0/1/91Ohm13OHUFZNSIpQmqf232fmjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.128.0-80.73.133.255
IPv6:
2a01:5140::/32
Signature Algorithm: sha256WithRSAEncryption
6a:e7:76:6c:c2:d0:47:73:0b:0d:95:cf:3b:cf:e0:aa:f3:9c:
5f:9b:de:24:85:0e:15:ee:df:50:08:a4:5d:07:3f:ba:63:11:
d6:49:ea:03:31:43:7c:2c:c1:e6:92:64:b7:f3:02:09:af:d4:
ca:76:63:8d:25:96:c8:22:4d:e8:86:ed:a4:59:c8:88:bc:bc:
6d:1e:f6:56:1a:22:da:23:d4:c4:04:cd:bd:dd:6d:9b:7b:8b:
9f:49:df:6c:8c:d5:4f:d5:10:9e:2b:3c:0d:00:7f:89:fa:28:
d9:58:ee:31:dd:76:6b:44:9e:f4:24:d3:38:e1:e2:50:bb:57:
82:d1:29:c4:19:e8:f5:51:5a:85:aa:6e:34:ca:16:40:4f:9b:
82:a2:3e:1d:44:ec:07:fa:e4:fc:2c:e6:77:5f:a5:ab:e3:57:
89:f4:96:79:ae:98:ef:a6:86:e7:2b:19:cd:e9:ae:d5:30:8e:
7c:fe:4c:88:78:a4:c2:47:6e:8d:96:fb:0d:93:0b:e9:0a:08:
da:f8:22:ab:cd:8c:94:2c:4a:e2:70:ec:2e:ea:4b:3e:ec:9e:
8e:ef:53:2e:b4:53:7e:35:9d:0b:8c:46:72:e5:11:3f:5c:5b:
48:07:1a:e2:44:3e:b4:3d:09:65:d7:f6:0c:ff:ba:2b:d5:dc:
83:d3:b1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 03:11:20 2024 by rpki-client on console-fra.rpki-client.org