Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/Buk8nnH06pPmKNnMwDzmJKt-jKM.roa
File: Buk8nnH06pPmKNnMwDzmJKt-jKM.roa (raw, json)
Hash identifier: Wo3ETB1JYrp5xHWsP4RHIhyNnAcEK4VAGLLwD7GuANQ=
Subject key identifier: 06:E9:3C:9E:71:F4:EA:93:E6:28:D9:CC:C0:3C:E6:24:AB:7E:8C:A3
Certificate issuer: /CN=d6923df4dae91950cf00d235fe39e00eea3816d2
Certificate serial: 018CC56E886245EBBEC0AE3CA1F39C7D3425
Authority key identifier: D6:92:3D:F4:DA:E9:19:50:CF:00:D2:35:FE:39:E0:0E:EA:38:16:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1pI99NrpGVDPANI1_jngDuo4FtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/Buk8nnH06pPmKNnMwDzmJKt-jKM.roa
Signing time: Mon 01 Jan 2024 14:30:04 +0000
ROA not before: Mon 01 Jan 2024 14:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15614
IP address blocks: 178.209.128.0/19 maxlen: 19
213.168.176.0/20 maxlen: 20
2a02:13b8::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/1pI99NrpGVDPANI1_jngDuo4FtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/1pI99NrpGVDPANI1_jngDuo4FtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1pI99NrpGVDPANI1_jngDuo4FtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:88:62:45:eb:be:c0:ae:3c:a1:f3:9c:7d:34:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6923df4dae91950cf00d235fe39e00eea3816d2
Validity
Not Before: Jan 1 14:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06e93c9e71f4ea93e628d9ccc03ce624ab7e8ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:b0:f0:03:47:3c:d1:4b:ff:85:c1:c0:da:43:
92:c0:fb:13:c9:bd:fd:75:21:83:94:f7:eb:fc:7f:
43:20:e2:a6:98:fa:7f:98:1c:51:f6:16:d1:fc:9e:
8c:c1:1c:af:d0:0a:b3:64:1f:4b:95:3e:07:25:ae:
a0:91:a4:3b:17:a5:e5:16:03:99:14:68:41:16:dd:
e5:8e:36:a1:8d:8c:df:28:38:d6:4d:67:36:8a:69:
06:8f:1a:ba:91:fc:26:09:48:ea:05:e1:d2:b8:e8:
ba:5b:66:6a:e0:05:93:46:0d:c1:0e:99:93:f4:1d:
d5:23:01:b3:0a:b7:b5:2d:85:b8:ab:c9:62:ef:76:
6b:08:4b:1d:d3:09:3c:6d:3a:4d:47:68:47:e0:83:
fd:2d:b4:62:88:4e:ab:5a:8b:d6:6b:14:23:fc:10:
9f:b8:02:74:50:47:d9:6d:5f:9d:bf:25:94:ac:07:
6d:a1:61:e9:4f:dc:69:1c:a2:f9:a3:e2:55:49:6c:
bd:72:ce:d7:8a:d0:0a:2e:32:dc:db:db:5a:a0:d9:
36:ed:fd:41:8d:43:82:3c:54:e5:88:dc:9a:dd:4e:
b3:e0:5d:d8:b4:49:f2:bc:6e:ae:a2:be:d3:b4:2f:
8d:82:b9:6a:18:8a:a3:26:54:a3:3b:ac:64:a0:1b:
23:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E9:3C:9E:71:F4:EA:93:E6:28:D9:CC:C0:3C:E6:24:AB:7E:8C:A3
X509v3 Authority Key Identifier:
keyid:D6:92:3D:F4:DA:E9:19:50:CF:00:D2:35:FE:39:E0:0E:EA:38:16:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1pI99NrpGVDPANI1_jngDuo4FtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/Buk8nnH06pPmKNnMwDzmJKt-jKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/1pI99NrpGVDPANI1_jngDuo4FtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.209.128.0/19
213.168.176.0/20
IPv6:
2a02:13b8::/29
Signature Algorithm: sha256WithRSAEncryption
04:f6:e4:a8:e5:00:19:98:25:7e:c2:2b:a5:66:31:af:d8:e2:
cb:b9:79:6f:d8:dd:44:18:39:6b:9c:82:70:e6:9a:1c:4a:f4:
1f:5f:32:b4:ca:2f:60:81:af:63:9b:a8:de:35:f4:f5:df:61:
87:51:ba:6a:b2:04:45:f8:1f:fb:cf:52:3e:ba:4a:f0:25:ba:
c0:06:e8:0d:92:ba:a0:fb:9e:81:8a:6d:d2:ec:f8:6f:93:c5:
b0:7b:a7:7e:cd:f0:b6:25:27:87:6f:b5:ce:7d:e9:72:2e:9f:
e8:a2:28:9d:31:63:32:13:ef:c0:8f:97:38:54:6e:be:ee:16:
de:f8:c9:e0:b6:30:56:c9:eb:40:ca:4f:28:72:aa:61:23:c8:
75:58:47:c9:c5:7a:9a:3b:5c:7c:2b:a7:bb:3e:87:54:cf:76:
60:dd:74:36:ee:1e:72:c6:d0:62:fc:68:29:83:30:0f:39:9b:
ab:45:85:d7:ae:f0:82:25:51:83:59:e1:ed:14:10:93:ea:f8:
84:c0:82:11:fe:21:86:1b:4e:da:26:57:01:74:52:00:6f:9f:
a3:19:1f:50:c3:5a:20:15:8e:26:ba:2d:3e:27:a9:96:85:71:
dc:68:23:4c:93:21:87:88:a5:4e:0f:20:9e:94:61:67:de:6d:
c9:22:c2:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 12:03:13 2024 by rpki-client on console-fra.rpki-client.org