Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/bjduufRWiVJU-BJkuGgLpNtaxaQ.roa
File: bjduufRWiVJU-BJkuGgLpNtaxaQ.roa (raw, json)
Hash identifier: i9jU62to6dGfLF1XYnuILci4L4yHXpF8FrM9zyCngG0=
Subject key identifier: 6E:37:6E:B9:F4:56:89:52:54:F8:12:64:B8:68:0B:A4:DB:5A:C5:A4
Certificate issuer: /CN=0a5318c58bf5ba74324b25d037404dd8dda9ff24
Certificate serial: 018CC56E38F8EA91F371153BEECD8704A9BA
Authority key identifier: 0A:53:18:C5:8B:F5:BA:74:32:4B:25:D0:37:40:4D:D8:DD:A9:FF:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ClMYxYv1unQySyXQN0BN2N2p_yQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/bjduufRWiVJU-BJkuGgLpNtaxaQ.roa
Signing time: Mon 01 Jan 2024 14:29:44 +0000
ROA not before: Mon 01 Jan 2024 14:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44207
IP address blocks: 195.184.94.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/ClMYxYv1unQySyXQN0BN2N2p_yQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/ClMYxYv1unQySyXQN0BN2N2p_yQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ClMYxYv1unQySyXQN0BN2N2p_yQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 20:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:38:f8:ea:91:f3:71:15:3b:ee:cd:87:04:a9:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5318c58bf5ba74324b25d037404dd8dda9ff24
Validity
Not Before: Jan 1 14:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e376eb9f456895254f81264b8680ba4db5ac5a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5f:77:0d:68:b1:65:93:05:e6:48:f7:56:f0:
b4:85:5e:17:e8:f8:ab:b1:4e:7c:69:80:44:59:eb:
81:00:33:11:04:1e:49:80:fc:14:b5:56:fb:f5:b2:
c2:bd:7a:ef:b0:61:67:c7:0a:a5:65:c6:5b:cd:dc:
a8:fd:4a:6c:73:21:5a:ea:a7:9e:e2:b2:a8:f3:cc:
18:40:10:85:8a:d7:5a:c9:c0:b9:be:85:34:cf:1c:
c7:fa:6c:0b:2b:13:b7:03:7c:07:06:fb:7f:62:fd:
66:20:f2:f6:07:f9:01:2e:bb:7a:ac:da:a8:5e:90:
fa:da:05:01:27:ca:8e:0c:0b:be:06:87:ff:46:6f:
f1:22:ef:ec:ce:c8:13:71:b1:b8:fd:c5:35:cb:83:
ae:73:2c:e9:2a:bf:45:58:2e:60:b9:7e:07:6f:a7:
3c:d5:f4:e7:f5:9b:46:d6:b8:8b:74:eb:7b:1b:b8:
b0:20:fd:42:27:98:d8:43:38:dc:91:ee:3c:24:10:
58:65:1d:f8:e4:4b:3d:c7:3d:78:e7:5a:7d:57:7b:
af:15:e0:b4:b9:61:82:39:67:a8:ed:0e:91:44:aa:
8b:f0:3e:f0:28:9f:dd:66:87:37:dc:c2:25:a5:53:
a9:f7:88:09:ba:b9:91:7b:39:88:6a:ea:84:0a:7e:
8b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:37:6E:B9:F4:56:89:52:54:F8:12:64:B8:68:0B:A4:DB:5A:C5:A4
X509v3 Authority Key Identifier:
keyid:0A:53:18:C5:8B:F5:BA:74:32:4B:25:D0:37:40:4D:D8:DD:A9:FF:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ClMYxYv1unQySyXQN0BN2N2p_yQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/bjduufRWiVJU-BJkuGgLpNtaxaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/852cfb-4471-4290-91f4-6bc4905c42d4/1/ClMYxYv1unQySyXQN0BN2N2p_yQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.94.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:52:8c:1e:dd:01:9e:c4:23:0f:af:2f:fc:f7:81:a1:67:47:
44:e6:d4:11:10:2e:5a:c8:21:b9:d6:26:e4:d6:a4:a4:dc:02:
05:4d:21:a6:fd:4d:82:2c:04:e4:f5:a7:d1:47:aa:06:9b:5d:
9c:d1:76:30:db:3b:f1:d4:fb:99:ab:f6:d8:7f:7a:8a:e6:29:
ac:ef:79:11:b1:6f:0d:6a:ec:73:5b:03:ca:52:ab:cf:dc:62:
61:2e:06:29:e1:8a:e0:41:cc:dc:dd:c7:a9:78:b6:b6:fe:5c:
2b:87:8f:3c:8a:a2:95:7f:e2:ea:5b:52:e5:12:34:93:ad:5e:
9e:f6:95:24:73:12:6e:31:ea:4f:71:f2:5d:3b:6c:ac:cb:7e:
96:a5:35:c4:ba:00:75:0d:74:cb:e0:fc:64:1e:80:be:c8:26:
cd:fc:8e:3b:68:3b:2b:bc:de:d6:91:b0:90:83:39:24:70:6f:
e4:c3:ff:2a:32:15:e4:03:f3:ee:3f:9a:67:23:d6:ba:af:1a:
e1:4b:e1:5c:48:a3:63:be:e0:00:a2:83:77:30:f8:0e:d8:bb:
d8:45:dc:da:ef:25:94:78:a8:b8:9b:2d:fc:4a:d2:fd:f6:37:
cd:11:1f:48:da:75:ca:f5:1c:d1:f4:71:9d:14:33:d7:49:85:
c3:da:ff:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:43:37 2024 by rpki-client on console-ams.rpki-client.org