Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ukcD1is3qoMYzGc9hCnTlktb_y4.roa
File: ukcD1is3qoMYzGc9hCnTlktb_y4.roa (raw, json)
Hash identifier: ++zmuG1CRc7PpiiTlHpgFBDd/klr5CJP4qNDjlgw4Wc=
Subject key identifier: BA:47:03:D6:2B:37:AA:83:18:CC:67:3D:84:29:D3:96:4B:5B:FF:2E
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01942828171172B7C2490F7F37176617962F
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ukcD1is3qoMYzGc9hCnTlktb_y4.roa
Signing time: Thu 02 Jan 2025 17:55:03 +0000
ROA not before: Thu 02 Jan 2025 17:55:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43943
IP address blocks: 92.247.110.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:17:11:72:b7:c2:49:0f:7f:37:17:66:17:96:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba4703d62b37aa8318cc673d8429d3964b5bff2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:29:66:8e:99:fe:e2:ca:c9:da:8e:ec:c4:d8:
ab:81:1d:84:b0:bc:17:f8:45:f8:f9:47:70:5e:00:
75:5b:fb:d1:0e:af:bb:3c:87:5a:8a:ca:67:1c:44:
ca:91:4b:b9:12:d4:eb:04:e4:33:fe:14:35:a7:27:
e7:f9:0b:30:68:c5:8a:c4:24:39:0a:cb:df:be:b2:
36:77:9a:17:b7:a8:e2:02:cf:e5:48:cd:c8:6a:9c:
be:4e:68:ec:ae:ef:28:7a:5b:10:c4:6a:8f:d7:2a:
03:92:5c:42:83:e0:41:cb:ed:dc:ad:d2:a5:e0:d7:
e4:7d:94:97:6d:cb:48:27:0c:93:6a:04:67:a0:1c:
fd:2f:7f:cc:eb:ae:bf:9c:55:5b:ae:23:b9:8e:4a:
95:c5:ff:27:ea:ef:29:d7:83:5a:ab:08:52:ab:99:
dc:4b:12:94:b4:3f:fb:a9:ad:b4:ba:24:e8:e7:b4:
9c:73:56:58:25:e0:16:bf:3c:df:12:21:3a:c8:67:
7f:b8:d1:05:21:b6:54:bf:c2:e1:06:83:eb:f7:67:
92:e6:a2:f2:75:c6:ee:9f:15:9c:ba:11:40:3b:9b:
dc:7e:da:8a:f7:8d:b8:db:22:73:38:8b:4e:55:be:
32:3a:6e:89:b0:a3:b4:48:4c:34:58:cc:42:d7:65:
c1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:47:03:D6:2B:37:AA:83:18:CC:67:3D:84:29:D3:96:4B:5B:FF:2E
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ukcD1is3qoMYzGc9hCnTlktb_y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.247.110.0/23
Signature Algorithm: sha256WithRSAEncryption
33:2e:bc:44:d0:24:2b:46:37:cc:d6:a6:66:7c:41:94:b0:2b:
0a:0c:df:a0:f5:3c:e9:af:68:f7:71:8f:50:68:26:4d:57:f2:
ae:52:39:74:ca:59:4d:61:66:08:ed:84:d5:17:87:8d:3c:37:
36:f1:41:52:0b:4f:ac:d5:8c:35:ca:af:7f:55:54:fe:48:5e:
32:10:d3:4f:2c:95:ae:76:52:18:36:3c:ec:3c:8a:4c:6f:c8:
25:50:f2:d1:cc:33:74:e2:a2:5c:30:04:91:da:a8:2a:34:15:
5b:bc:0a:41:d7:06:81:5e:52:6a:db:1a:9c:a5:94:f3:07:5f:
53:be:63:06:1e:a6:80:3d:26:21:41:83:b9:93:0c:af:4c:fa:
51:82:d5:76:21:10:6f:09:c0:af:c7:a5:1f:9e:fa:be:07:f8:
05:a7:d3:52:54:f6:9e:47:7e:5d:12:ea:e7:6a:43:a1:6a:8d:
95:27:e4:0c:44:7a:ed:40:bc:3f:6c:0c:1a:17:1f:05:f0:1d:
67:3e:a1:64:ef:58:4a:49:6e:10:5f:5e:20:3b:1b:21:41:9c:
43:9e:49:3a:4f:aa:33:60:d5:6b:96:1c:a9:be:06:af:e7:c6:
5b:54:5a:66:e1:4a:a2:6e:83:75:86:b3:83:75:08:9b:bb:f4:
92:2d:db:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:03:38 2025 by rpki-client