Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/UaT3TkeaqLCD4mBxDHvKmJqoueo.roa
File: UaT3TkeaqLCD4mBxDHvKmJqoueo.roa (raw, json)
Hash identifier: 9N0u8L7kZyP3wBdb3DdArJc+ZDyndBBI/ibXzoTweyE=
Subject key identifier: 51:A4:F7:4E:47:9A:A8:B0:83:E2:60:71:0C:7B:CA:98:9A:A8:B9:EA
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 018CC9BC8BF4689C7E9E5D55F740AB051466
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/UaT3TkeaqLCD4mBxDHvKmJqoueo.roa
Signing time: Tue 02 Jan 2024 10:33:46 +0000
ROA not before: Tue 02 Jan 2024 10:33:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 275
IP address blocks: 185.84.19.224/27 maxlen: 27
213.130.47.16/28 maxlen: 28
5.158.213.64/31 maxlen: 31
2001:728:0:5000::1532/127 maxlen: 127
2001:728:0:7000::/64 maxlen: 64
2001:728:401:21::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:8b:f4:68:9c:7e:9e:5d:55:f7:40:ab:05:14:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Jan 2 10:33:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51a4f74e479aa8b083e260710c7bca989aa8b9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:23:7b:85:c3:12:77:d8:04:d9:81:58:25:38:
7b:f9:ed:2d:55:46:71:95:53:c3:71:fc:35:36:07:
a7:72:90:9b:b9:48:35:85:4c:d1:21:e4:93:ec:9e:
60:22:71:23:f4:e3:30:c9:89:b6:db:f1:12:b6:7c:
12:0a:16:48:e0:19:d2:f4:71:30:c2:26:97:b9:cc:
82:77:16:26:89:5b:34:59:61:a9:08:a2:1a:0e:63:
4c:ba:2e:17:0c:bb:62:ca:eb:21:b9:b8:44:d3:86:
27:ba:97:d0:57:53:a9:b3:e7:6a:0c:2e:a2:08:67:
9a:0b:c8:84:ae:05:3d:c9:a1:00:dc:e1:ed:8d:21:
ea:3c:74:fd:49:11:18:73:9d:9a:ca:ae:f0:95:bd:
0a:77:38:b4:90:84:66:ca:1b:82:71:30:28:c8:86:
39:a4:35:1b:2f:43:5b:f0:c7:c3:4d:38:ce:89:89:
f5:96:8f:c3:d6:cd:6d:77:9d:60:9c:18:b8:1c:f7:
02:e3:6a:16:00:d4:c3:9b:c3:94:76:8c:cb:80:28:
72:48:a5:1e:37:47:d1:bb:c5:e1:a6:81:02:d6:f2:
23:16:00:0f:bd:33:6a:53:04:2c:e1:32:bf:b3:65:
6c:3a:0e:35:d3:ec:b1:21:36:a2:88:e8:fd:b6:1c:
f0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A4:F7:4E:47:9A:A8:B0:83:E2:60:71:0C:7B:CA:98:9A:A8:B9:EA
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/UaT3TkeaqLCD4mBxDHvKmJqoueo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.213.64/31
185.84.19.224/27
213.130.47.16/28
IPv6:
2001:728:0:5000:0:0:0:1532/127
2001:728:0:7000::/64
2001:728:401:21::/64
Signature Algorithm: sha256WithRSAEncryption
6a:fa:ce:6a:22:29:6f:28:a8:5f:49:24:c2:5c:53:e4:60:3d:
ab:f4:e1:e4:34:90:b8:de:62:2b:09:30:bb:58:41:b7:ba:42:
90:e1:78:49:b9:93:ab:24:23:44:2c:43:98:5a:76:c9:7f:34:
22:79:b6:df:1a:e3:27:b9:8e:89:ca:7d:8f:2e:54:5e:7d:5d:
92:c0:64:c5:38:e6:5a:50:ca:df:28:31:ee:66:22:5b:d3:18:
da:37:64:38:ec:0c:61:73:98:e7:36:24:80:31:69:07:77:50:
42:32:f3:62:bf:4a:97:e9:45:87:3b:5d:67:c4:bd:a2:4f:27:
ce:3a:81:d0:3e:12:52:1e:88:66:3b:75:a4:07:42:9e:90:26:
89:e1:8a:fc:78:aa:d6:30:1d:e5:02:90:46:17:19:e8:d7:f4:
5b:e9:2e:4b:4f:ae:2e:97:6b:01:47:25:c0:e0:77:de:e0:6d:
52:17:36:56:dc:b2:a7:47:54:df:f4:da:f5:ae:22:2c:14:e5:
76:be:87:b2:13:1f:84:b9:72:74:ae:2a:b3:31:6b:2f:1e:a8:
83:df:10:0a:f2:81:08:52:8e:19:84:83:ef:91:24:fa:30:01:
f3:5d:ff:1b:07:1b:91:32:41:5a:31:bf:99:ac:6f:12:b3:a6:
67:3f:d0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:51:57 2024 by rpki-client on console-ams.rpki-client.org