Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/UYn8-ezGhbxALv0aQJAbZ8Hzxqk.roa
File: UYn8-ezGhbxALv0aQJAbZ8Hzxqk.roa (raw, json)
Hash identifier: FSARYULssMI/9UEwGipyx9wQMY6iNqkcQSqEro3waHU=
Subject key identifier: 51:89:FC:F9:EC:C6:85:BC:40:2E:FD:1A:40:90:1B:67:C1:F3:C6:A9
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018E1DAB7B9A2F575502A5873F52084F3B4B
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/UYn8-ezGhbxALv0aQJAbZ8Hzxqk.roa
Signing time: Fri 08 Mar 2024 10:46:01 +0000
ROA not before: Fri 08 Mar 2024 10:46:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 149766
IP address blocks: 45.130.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 03:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1d:ab:7b:9a:2f:57:55:02:a5:87:3f:52:08:4f:3b:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Mar 8 10:46:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5189fcf9ecc685bc402efd1a40901b67c1f3c6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9b:9c:08:16:5b:4d:11:72:6a:a5:f7:72:ca:
04:e3:56:52:da:6f:da:c9:e2:20:61:29:70:9f:34:
76:3b:b3:13:bf:0d:68:1b:75:7f:56:2b:75:19:67:
82:59:92:cd:3f:6d:3e:9f:35:ce:04:a3:ce:77:34:
ff:53:78:53:78:23:63:85:ea:f2:ef:09:87:b2:88:
39:f7:9d:cd:e3:95:7a:eb:54:30:8c:cb:53:1f:27:
24:3b:3a:16:1b:70:50:b5:40:de:e1:da:7f:2f:f2:
c4:10:78:94:58:cd:7f:55:ae:4f:c2:0c:13:00:35:
44:d3:80:87:99:df:f3:f6:b9:59:19:d4:f5:f6:f7:
a2:33:79:8d:18:88:66:9b:7f:7e:6c:c8:d7:93:3a:
8c:1d:18:fa:4f:01:6f:96:9f:9b:d6:9a:87:16:3b:
b3:6f:6d:56:21:33:d3:83:f3:7d:54:47:77:8d:f8:
17:c2:9d:58:62:bc:d5:0a:3c:4e:e7:02:d7:df:c9:
84:0c:61:f3:d2:9f:84:36:bb:d6:f5:0c:52:d0:19:
1f:3a:95:52:3e:32:02:b5:96:61:4f:58:7c:93:07:
78:71:a7:40:5d:62:21:b8:7b:5f:80:13:86:b1:66:
22:79:78:42:2e:c3:ab:83:70:ad:37:4d:87:cb:f1:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:89:FC:F9:EC:C6:85:BC:40:2E:FD:1A:40:90:1B:67:C1:F3:C6:A9
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/UYn8-ezGhbxALv0aQJAbZ8Hzxqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.141.0/24
Signature Algorithm: sha256WithRSAEncryption
57:03:bc:77:64:4e:5c:b5:20:ba:44:15:b1:df:95:ac:71:65:
b8:d3:7d:91:1e:ed:17:90:0b:95:fd:af:aa:52:da:4c:3e:56:
58:0e:98:e1:bd:8e:0c:ae:40:b6:24:b6:6b:5d:7d:2b:bf:47:
79:38:df:fd:4c:66:6a:3b:fb:49:15:a3:b5:96:3c:94:bc:41:
9d:9c:a9:94:d7:ea:b5:32:1c:32:0b:20:8a:68:43:16:59:d3:
1a:ed:0a:9d:c2:79:aa:c7:9c:30:d0:ee:b1:67:ad:e5:7b:c3:
4b:db:d0:9c:39:1e:53:72:f8:64:96:a7:b9:72:22:dc:4e:d5:
33:9e:01:57:96:33:83:41:91:a4:88:ed:3c:52:40:a4:b9:ae:
2a:c0:93:f4:be:bc:57:e4:91:52:0d:2d:1e:d3:e9:7c:20:05:
e9:d8:31:d7:9a:e8:5f:12:1f:cc:29:f3:e3:4d:e5:7b:7d:1c:
b2:ee:8c:95:63:ae:23:e9:26:38:94:1d:e0:4c:b0:06:b0:48:
b6:e2:57:10:26:f8:3e:be:51:17:a6:55:36:1b:0c:03:c7:16:
67:bc:d0:87:87:7d:ba:40:ac:fd:e8:40:92:9d:07:a7:c5:06:
77:d2:68:7d:54:45:0e:05:02:4e:92:50:00:b6:12:00:85:eb:
af:b4:16:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:43:55 2024 by rpki-client on console-ams.rpki-client.org