Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Luo-unG3Q8lEB17oeZ9ivvt3sXk.roa
File: Luo-unG3Q8lEB17oeZ9ivvt3sXk.roa (raw, json)
Hash identifier: Ogyt0TPjqwGXTsHlC6slqJNSttx2fXg6etKkzR2ME9g=
Subject key identifier: 2E:EA:3E:BA:71:B7:43:C9:44:07:5E:E8:79:9F:62:BE:FB:77:B1:79
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 018DF9DEDBC80A0A8E2F2B7A6C58DBE07DDE
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Luo-unG3Q8lEB17oeZ9ivvt3sXk.roa
Signing time: Fri 01 Mar 2024 11:55:48 +0000
ROA not before: Fri 01 Mar 2024 11:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205552
IP address blocks: 194.40.240.0/24 maxlen: 24
194.40.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.mft
rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f9:de:db:c8:0a:0a:8e:2f:2b:7a:6c:58:db:e0:7d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Mar 1 11:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2eea3eba71b743c944075ee8799f62befb77b179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:84:24:fe:e7:02:23:d0:27:fb:ba:82:d6:8c:
ea:0d:2e:c3:41:fb:50:b2:14:34:35:bf:5f:1c:ba:
2b:63:57:80:3c:74:93:92:ad:8a:1b:6e:2a:d4:b9:
03:1f:02:35:a0:84:16:00:29:f5:22:92:50:09:ea:
1d:dd:3f:3f:91:8c:1d:c8:c2:62:4f:06:bd:44:02:
6e:40:62:cc:68:13:0c:28:36:b9:5e:98:d4:58:ee:
4e:6d:8a:a2:a3:eb:15:45:e6:77:b2:dc:3a:78:df:
3b:92:a5:7b:d7:b7:88:3e:3e:9e:23:5d:ef:a6:09:
3f:c7:3d:21:51:4d:11:71:65:85:ae:d8:b9:3d:af:
3d:0b:ca:c9:92:32:1c:b2:c9:36:57:50:e8:f3:79:
4c:48:31:4a:46:ef:61:35:29:70:0f:65:37:7d:e0:
b6:59:28:67:c9:36:9e:71:f6:18:09:32:48:a2:ed:
2d:28:88:e9:fa:4e:f9:8e:63:2c:e6:b4:e9:bd:c8:
39:34:99:a9:64:1a:d4:c1:10:47:a4:72:40:26:41:
f6:84:72:3d:5e:38:71:3c:20:ae:cc:22:70:d3:11:
cf:df:e2:1b:4c:8d:d3:47:0b:e6:dc:95:bc:93:ed:
02:06:18:3f:fd:c4:99:b7:96:24:72:70:b3:6f:fe:
99:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EA:3E:BA:71:B7:43:C9:44:07:5E:E8:79:9F:62:BE:FB:77:B1:79
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Luo-unG3Q8lEB17oeZ9ivvt3sXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.40.240.0/23
Signature Algorithm: sha256WithRSAEncryption
71:d8:30:2a:5a:03:ce:6b:80:84:00:8d:8e:d9:38:35:c3:5f:
df:f7:19:95:9e:7a:61:1a:41:cf:38:1d:0f:fd:c0:96:d2:fa:
37:1d:b8:6e:94:a3:62:ed:4a:12:f7:12:7e:d2:3b:f6:fc:43:
c2:30:cd:89:c3:45:ac:fc:a0:d1:6d:f2:9c:3a:0c:56:7f:ef:
ac:95:73:2f:c9:13:67:1c:c6:33:01:d2:14:fe:84:6a:7e:6b:
f0:28:1e:7e:b1:96:10:e4:65:be:7c:27:0e:97:89:b8:23:b8:
ac:24:a9:05:78:bb:c7:77:be:7f:fa:4a:6e:42:41:b2:3b:ee:
6c:8e:8b:9e:c6:74:07:83:24:b1:24:47:25:6c:94:71:3c:eb:
36:c4:33:5b:21:f8:b8:60:6d:d2:07:69:c0:c1:90:8c:40:00:
55:7c:9b:f3:eb:94:b5:26:83:55:13:f2:3f:46:89:54:2f:9a:
75:bf:62:9a:c8:36:8e:4a:e6:25:07:63:8e:02:92:a4:a0:34:
4f:d9:d3:63:4f:96:cf:2b:e6:71:7f:97:eb:6a:93:1a:22:53:
0b:82:d6:86:8d:8f:fe:f5:55:03:c9:81:f5:0d:e3:34:16:cd:
38:de:0c:1f:3a:4d:1b:98:4e:8f:96:10:1a:8e:ba:3f:27:24:
68:f2:10:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:31:50 2024 by rpki-client on console-ams.rpki-client.org