Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/uCygwAxuokwfTpXnXl254k6-mRA.roa
File: uCygwAxuokwfTpXnXl254k6-mRA.roa (raw, json)
Hash identifier: tdsQ9VUn8DJZoOaiWA0itYgMupOeNiWO7vJY8QeBU2k=
Subject key identifier: B8:2C:A0:C0:0C:6E:A2:4C:1F:4E:95:E7:5E:5D:B9:E2:4E:BE:99:10
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01917DD6018B4E5F88F3A380759EDE432524
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/uCygwAxuokwfTpXnXl254k6-mRA.roa
Signing time: Fri 23 Aug 2024 06:04:22 +0000
ROA not before: Fri 23 Aug 2024 06:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26548
IP address blocks: 193.233.82.0/23 maxlen: 23
193.233.136.0/22 maxlen: 22
193.233.140.0/22 maxlen: 22
193.233.210.0/23 maxlen: 23
193.233.228.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft
rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7d:d6:01:8b:4e:5f:88:f3:a3:80:75:9e:de:43:25:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Aug 23 06:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b82ca0c00c6ea24c1f4e95e75e5db9e24ebe9910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3e:03:88:f7:e1:68:a8:a7:cc:26:f8:65:e7:
ca:a1:5f:2c:d6:4b:ae:86:a8:91:af:23:b2:e2:61:
12:48:92:61:28:9e:3e:b6:cf:1f:35:90:14:7d:15:
d9:d8:40:cf:30:ae:d2:e8:10:5c:28:4b:35:43:31:
4b:8b:e1:80:15:94:af:72:0e:de:eb:85:58:fa:11:
31:85:42:7e:03:2e:4b:14:f7:c3:cb:4f:9d:cb:64:
23:93:16:91:90:d7:6f:e9:1b:3d:f7:fe:3c:26:35:
38:d6:74:87:d4:05:ec:62:a9:a1:df:ee:05:59:aa:
42:da:09:26:ef:1b:0f:13:2d:5f:bd:f4:77:e5:f1:
3a:44:83:27:36:01:c6:2e:91:75:be:e3:52:3f:17:
30:95:14:cd:df:40:0c:dd:a8:43:89:09:9a:b7:73:
e9:47:a9:e6:01:8b:54:cf:b7:12:25:6e:41:24:58:
8d:43:2a:f2:34:9b:6a:d2:c6:52:57:0f:26:b2:f0:
a2:04:bc:2e:35:98:47:a5:88:78:e9:6f:1a:72:47:
e2:8f:1f:81:de:cc:7f:ec:ee:85:c5:0a:e1:a4:bb:
93:17:91:c7:ae:1d:bd:25:a7:08:05:bd:b8:47:4a:
89:40:c4:ee:ca:35:a7:53:b6:51:bf:57:15:62:4c:
00:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:2C:A0:C0:0C:6E:A2:4C:1F:4E:95:E7:5E:5D:B9:E2:4E:BE:99:10
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/uCygwAxuokwfTpXnXl254k6-mRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.82.0/23
193.233.136.0/21
193.233.210.0/23
193.233.228.0/22
Signature Algorithm: sha256WithRSAEncryption
44:30:22:a9:c7:9d:75:5c:f3:d6:56:d3:59:9e:93:e8:bc:d1:
bb:58:f7:04:29:76:c9:6d:35:80:c8:65:2e:a8:91:20:2b:48:
92:51:d8:0a:da:e6:6a:41:5e:c7:92:26:1f:c7:1d:3f:98:e6:
32:e5:a4:c6:d8:15:14:e5:da:5f:02:dc:ce:17:65:8d:81:81:
1d:7f:20:6c:cd:0d:ca:11:e1:6f:9e:de:41:dc:c5:a4:2a:c0:
e4:be:1d:79:53:5e:88:d6:86:dd:a8:0d:cc:6f:f4:a3:32:55:
92:74:d2:ae:32:1a:e6:13:b0:0e:28:fe:bc:88:a0:ac:da:b6:
20:0e:60:06:57:c1:6e:de:2e:1e:17:37:ec:9f:73:5d:4d:8d:
9e:71:01:08:37:7e:69:66:b9:81:11:b8:96:1b:b8:c5:63:f9:
51:9e:6d:ad:f2:2a:50:81:8f:c8:7e:77:3e:40:08:40:7b:e2:
2b:ef:11:97:d8:8c:08:dc:4d:19:a4:b0:a9:c4:4f:62:51:37:
28:21:00:a8:e9:53:54:02:73:86:75:6c:a9:8b:5d:65:d3:74:
b7:ec:8b:ed:f1:60:28:0d:ab:cb:ec:16:48:72:13:8a:0d:20:
95:3a:b2:6f:97:8a:6b:4e:23:65:5f:1d:2c:fc:79:c7:8f:4b:
9f:1d:64:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:33:08 2024 by rpki-client on console-fra.rpki-client.org