Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/Ube-e0j4EPbyuwgrAHhm7N2a4gQ.roa
File: Ube-e0j4EPbyuwgrAHhm7N2a4gQ.roa (raw, json)
Hash identifier: WAykVKoWfAR0ceEd1FUZOoRLtK+HqIUUI3ghI3xaafs=
Subject key identifier: 51:B7:BE:7B:48:F8:10:F6:F2:BB:08:2B:00:78:66:EC:DD:9A:E2:04
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 018CC5DC873B0C3066231D2DD83F2040898D
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/Ube-e0j4EPbyuwgrAHhm7N2a4gQ.roa
Signing time: Mon 01 Jan 2024 16:30:13 +0000
ROA not before: Mon 01 Jan 2024 16:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30475
IP address blocks: 193.8.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:87:3b:0c:30:66:23:1d:2d:d8:3f:20:40:89:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 16:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51b7be7b48f810f6f2bb082b007866ecdd9ae204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:99:7a:fb:3c:b1:c6:b6:36:18:42:e0:ba:16:
d6:cf:c6:2e:1f:fa:5a:5b:f6:98:08:bd:46:e9:5e:
94:89:ea:3f:49:fd:c0:c7:89:5c:f3:57:f5:36:1d:
0a:75:e7:16:61:d9:c6:85:c2:af:e0:46:ec:f4:86:
03:ed:7f:55:cd:c3:13:3c:51:ef:68:20:85:0e:06:
bb:ff:33:9c:3d:69:53:cc:92:86:be:c1:7a:7a:80:
05:c8:cc:42:cf:ef:78:61:10:44:dd:44:7b:aa:9f:
99:b6:42:9e:71:c3:f3:db:1d:12:e3:46:ee:33:56:
59:da:44:0b:cd:ed:f5:54:a7:fe:83:eb:84:5d:fb:
f1:f2:20:4e:67:31:78:f5:de:c9:1d:a7:81:5b:ad:
bf:bc:d8:2e:03:0f:80:8f:90:35:c1:4d:88:7f:34:
22:4d:50:24:2a:99:25:6b:5c:53:8c:27:e1:22:95:
e1:e0:8b:26:08:a9:81:a9:f9:32:bb:1f:a3:8f:57:
40:9c:22:ee:02:65:1b:65:46:10:06:bd:92:25:42:
cf:8a:22:cb:21:52:09:2c:3b:c0:5b:5d:30:5d:79:
d0:15:65:40:71:4c:2b:9a:9b:74:7f:06:47:1d:96:
df:b4:7e:37:11:fd:c5:2c:81:55:19:ce:0c:ed:ae:
b5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B7:BE:7B:48:F8:10:F6:F2:BB:08:2B:00:78:66:EC:DD:9A:E2:04
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/Ube-e0j4EPbyuwgrAHhm7N2a4gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.172.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:9f:f7:1a:9e:ef:29:de:6f:e1:24:8a:34:e5:38:87:95:27:
1c:c4:cb:2f:c2:3f:f2:be:f6:ef:00:84:72:fc:e9:24:e1:f4:
66:11:75:b3:4b:73:7f:d1:7f:a3:03:3e:f5:c1:2c:a5:a0:44:
1b:80:f3:11:9d:b7:39:a1:3b:b5:4c:23:c1:d0:08:5c:8f:ab:
36:b5:0c:b6:d0:4e:8f:50:9c:82:8d:59:64:d3:de:07:ee:e8:
3d:f5:07:f6:12:cb:cb:be:a9:74:29:15:e6:43:f2:72:08:63:
0a:96:d1:a3:9d:a7:fe:02:2c:cc:46:e7:5f:1a:5d:4d:99:6e:
76:d8:9d:da:b3:a5:a4:b5:ac:24:60:10:de:ac:8d:1c:dd:6b:
43:c4:6a:49:3b:19:c5:79:4b:e6:64:6e:f0:45:51:4f:97:3e:
fd:a6:7c:88:17:c6:60:4d:10:9c:5d:ae:da:c8:fb:c8:af:b6:
e1:fd:82:b9:8e:f1:48:37:81:08:a0:49:7b:49:6e:00:98:01:
0f:d0:f2:a6:9e:d4:47:17:97:63:86:9e:7d:56:ab:83:61:38:
a5:ea:c6:a4:44:19:b5:53:92:71:61:1a:7b:28:29:88:56:c6:
db:5f:42:8d:1e:02:49:0e:8f:16:55:c2:3e:ad:96:4d:3b:4f:
e3:43:e2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 18:29:10 2024 by rpki-client on console-ams.rpki-client.org