Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/u02gLdDm94IWMyW0yFmpjc8kNQc.roa
File: u02gLdDm94IWMyW0yFmpjc8kNQc.roa (raw, json)
Hash identifier: OwKuKOBv9jXFqu8xhkxSICW8j24mC95agUgJv5jAEKE=
Subject key identifier: BB:4D:A0:2D:D0:E6:F7:82:16:33:25:B4:C8:59:A9:8D:CF:24:35:07
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC802E350CE30C1C04DFE0EBB7DF38E74
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/u02gLdDm94IWMyW0yFmpjc8kNQc.roa
Signing time: Tue 02 Jan 2024 02:31:21 +0000
ROA not before: Tue 02 Jan 2024 02:31:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25252
IP address blocks: 193.183.230.0/23 maxlen: 23
193.183.228.0/23 maxlen: 23
193.183.236.0/23 maxlen: 23
192.165.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:e3:50:ce:30:c1:c0:4d:fe:0e:bb:7d:f3:8e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb4da02dd0e6f782163325b4c859a98dcf243507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:4a:4c:57:96:52:39:61:a8:fd:10:b5:88:
0f:93:0c:77:4d:02:06:b7:a4:99:cd:2e:9b:8a:b7:
6b:7c:1f:f1:91:3a:75:f7:a7:1f:59:b6:25:ec:f5:
dd:db:74:31:06:29:d5:f3:4a:f8:f4:3e:8b:1c:cc:
6b:13:ec:38:9c:29:92:6b:8a:30:11:cd:20:4e:96:
4d:19:0e:4f:2b:bb:ac:ec:b7:06:21:f6:e7:60:fc:
18:3b:b0:cb:8d:6a:9b:b7:24:5a:81:e9:12:01:88:
a6:71:50:80:4c:dc:55:0b:b4:71:2c:fb:98:5a:98:
1a:9b:39:d1:33:90:7b:22:08:71:6c:32:00:57:1a:
27:d5:eb:80:bf:fb:e0:e1:60:71:cc:22:04:29:72:
88:2f:f4:1a:d0:69:00:9a:c8:40:3c:ae:6e:e9:38:
72:bb:6e:60:74:00:2b:83:18:ce:13:3d:f4:33:ba:
99:40:47:fb:06:d7:3c:8d:b6:d8:59:dd:1e:37:97:
ff:bd:3a:f8:65:49:99:64:0e:b0:2d:73:c4:ec:5c:
cd:b2:38:0f:e2:b5:d2:c7:b9:d0:c8:78:66:68:7e:
48:2f:34:88:1b:95:dc:a1:22:d1:ba:68:a5:09:f4:
1d:66:52:d3:27:84:34:d8:2b:b4:7d:6d:5c:0e:01:
11:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:4D:A0:2D:D0:E6:F7:82:16:33:25:B4:C8:59:A9:8D:CF:24:35:07
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/u02gLdDm94IWMyW0yFmpjc8kNQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.165.12.0/24
193.183.228.0/22
193.183.236.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:8a:75:90:c8:d7:a4:74:52:94:00:ae:5c:fe:5e:f6:8a:91:
75:a5:4b:63:9d:6f:8e:3b:28:e5:a1:3d:c6:92:52:95:cc:ef:
31:96:4a:09:9a:6e:c5:90:1a:37:ad:fe:76:98:55:6a:6a:8f:
80:42:0e:de:58:28:f4:ca:03:a0:ae:fc:45:bc:e8:6e:1f:6f:
9f:17:4f:f6:1a:18:92:ef:27:b0:20:90:4b:7f:86:66:e7:25:
2f:9b:f2:b2:d5:c8:90:d1:18:90:7b:3d:78:04:a8:bd:5b:fb:
89:47:d4:de:23:ff:5a:9b:59:aa:a3:02:8d:d7:05:42:64:df:
ad:6c:ee:1d:52:75:97:b3:ac:f6:db:2b:d7:9b:1e:aa:a9:69:
11:be:3a:a2:4d:d6:9b:8a:53:ca:8d:75:ba:b3:21:1c:a3:25:
af:16:04:61:76:ca:58:e6:be:f0:22:54:86:e7:a5:2e:95:28:
42:46:60:ac:5b:bf:d3:47:e2:e6:b2:04:e6:70:5d:75:0e:d4:
16:31:5c:c2:31:b3:26:a7:97:24:19:57:66:1b:cd:c9:26:4e:
d6:64:94:4c:b4:ab:d8:7b:9b:f1:97:e2:e9:46:ce:76:86:39:
71:87:29:12:3a:e2:9e:7f:db:6e:1a:c0:fb:f6:b5:77:59:a4:
14:2a:14:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 01:56:11 2024 by rpki-client on console-fra.rpki-client.org