Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2f5dc5-65eb-4c08-ac4d-f46b5d57a685/1/uOHLoMuE8T-H-y_h_9kWqt1NM_M.roa
File: uOHLoMuE8T-H-y_h_9kWqt1NM_M.roa (raw, json)
Hash identifier: d+aNC1Ajdty9J6dI6kNYZAO5ni/NoQLjnL7xx5pKRbY=
Subject key identifier: B8:E1:CB:A0:CB:84:F1:3F:87:FB:2F:E1:FF:D9:16:AA:DD:4D:33:F3
Certificate issuer: /CN=7cb3a34e3dd0a71d4d9eaf358eb43d8b68e5e0e8
Certificate serial: 018CC8011881DBC7EBF37E044D3145AD672B
Authority key identifier: 7C:B3:A3:4E:3D:D0:A7:1D:4D:9E:AF:35:8E:B4:3D:8B:68:E5:E0:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fLOjTj3Qpx1Nnq81jrQ9i2jl4Og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2f5dc5-65eb-4c08-ac4d-f46b5d57a685/1/uOHLoMuE8T-H-y_h_9kWqt1NM_M.roa
Signing time: Tue 02 Jan 2024 02:29:23 +0000
ROA not before: Tue 02 Jan 2024 02:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43623
IP address blocks: 194.127.132.0/23 maxlen: 23
194.127.132.0/24 maxlen: 24
194.127.133.0/24 maxlen: 24
194.59.34.0/23 maxlen: 23
194.59.35.0/24 maxlen: 24
217.66.33.0/24 maxlen: 24
217.66.32.0/24 maxlen: 24
217.66.32.0/20 maxlen: 20
217.66.36.0/24 maxlen: 24
217.66.35.0/24 maxlen: 24
217.66.38.0/24 maxlen: 24
217.66.37.0/24 maxlen: 24
217.66.39.0/24 maxlen: 24
217.66.43.0/24 maxlen: 24
217.66.42.0/24 maxlen: 24
217.66.44.0/24 maxlen: 24
217.66.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2f5dc5-65eb-4c08-ac4d-f46b5d57a685/1/fLOjTj3Qpx1Nnq81jrQ9i2jl4Og.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2f5dc5-65eb-4c08-ac4d-f46b5d57a685/1/fLOjTj3Qpx1Nnq81jrQ9i2jl4Og.mft
rsync://rpki.ripe.net/repository/DEFAULT/fLOjTj3Qpx1Nnq81jrQ9i2jl4Og.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:03:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:18:81:db:c7:eb:f3:7e:04:4d:31:45:ad:67:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cb3a34e3dd0a71d4d9eaf358eb43d8b68e5e0e8
Validity
Not Before: Jan 2 02:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8e1cba0cb84f13f87fb2fe1ffd916aadd4d33f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:07:38:b2:e1:a5:f8:c8:ac:fb:23:10:fd:8e:
50:85:95:6b:90:c4:07:3d:0d:00:06:77:00:a6:2c:
5d:cf:be:ba:87:ff:94:de:9a:dd:41:e0:72:e8:76:
56:8d:32:56:7c:fb:c2:07:f8:fb:d8:e3:85:db:ff:
e7:a9:eb:05:5a:0d:0d:09:11:c9:88:52:b0:6c:d5:
a6:b5:07:c3:7d:2f:ec:4d:06:a8:5d:cb:8a:1a:d2:
98:81:2c:a9:75:6d:96:cf:9d:34:d4:ba:74:4a:f2:
32:6c:09:a9:c1:3c:3a:c4:c8:7f:2e:64:33:3e:3b:
65:63:6e:b5:9e:a2:14:8f:09:3c:d5:1b:0d:80:15:
0a:f9:5a:ed:ce:ad:66:ca:19:61:d5:a9:dc:0e:e4:
f1:83:e5:86:c2:9f:f4:23:81:64:a5:97:b2:00:54:
30:a2:db:6c:16:eb:00:c1:80:28:6f:72:3a:32:7a:
16:2a:a3:f5:ff:e3:1a:e6:21:5c:7c:c8:56:db:6e:
ae:6a:1d:b5:ee:a8:0d:56:7b:02:d3:02:60:3f:41:
16:90:33:b0:f3:2f:4d:29:f9:97:0c:fd:e8:d2:cd:
9c:9d:a6:8b:3f:9e:ae:92:02:44:da:0b:6d:60:f7:
06:31:c5:a0:19:bf:bc:12:da:39:85:c3:2c:ac:02:
10:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E1:CB:A0:CB:84:F1:3F:87:FB:2F:E1:FF:D9:16:AA:DD:4D:33:F3
X509v3 Authority Key Identifier:
keyid:7C:B3:A3:4E:3D:D0:A7:1D:4D:9E:AF:35:8E:B4:3D:8B:68:E5:E0:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fLOjTj3Qpx1Nnq81jrQ9i2jl4Og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2f5dc5-65eb-4c08-ac4d-f46b5d57a685/1/uOHLoMuE8T-H-y_h_9kWqt1NM_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2f5dc5-65eb-4c08-ac4d-f46b5d57a685/1/fLOjTj3Qpx1Nnq81jrQ9i2jl4Og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.34.0/23
194.127.132.0/23
217.66.32.0/20
Signature Algorithm: sha256WithRSAEncryption
3c:d6:58:18:79:69:6c:23:e3:b0:69:e6:d1:d6:4b:a9:84:3e:
37:7b:24:99:09:dc:01:3e:7f:9c:80:09:95:b1:7d:47:28:42:
ef:3c:cd:1d:1e:81:72:88:aa:e5:34:6e:3a:fa:5a:ce:87:e2:
d5:e4:8f:41:45:57:d6:37:ec:dc:d2:05:a5:9a:28:62:0f:73:
01:df:65:13:0b:b0:4b:aa:c3:e0:b9:4c:af:15:5d:5d:72:48:
97:d8:bb:22:53:d4:0c:0a:c1:74:3e:12:a3:51:cb:ef:8d:a9:
c3:b2:73:20:73:7e:cb:48:28:7e:d9:e8:1a:08:b9:aa:54:8a:
da:16:3a:8e:95:dc:36:42:d8:2a:91:74:4c:67:45:49:e6:2c:
10:a3:0d:6f:22:b3:e8:c7:8d:a2:ee:8f:6e:96:d0:46:ae:55:
2c:0a:2c:ac:9e:2f:50:e9:1b:64:93:44:46:b3:cb:d8:18:36:
dc:6b:22:fa:9b:cf:9b:f5:21:8f:c9:3e:63:c8:94:5d:9d:4f:
8e:fd:44:a9:5e:14:c6:77:b5:f4:12:66:b9:68:ca:29:3c:ae:
2b:53:34:0e:23:ed:41:fd:d3:be:97:ab:70:82:6e:eb:ee:f4:
52:a5:e8:ab:b0:e3:ee:e0:c1:00:b4:1b:74:2a:45:90:8e:36:
d0:a0:00:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 19:10:11 2024 by rpki-client on console-fra.rpki-client.org