Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/TEUg6_yp9I4vGQ2ER4KIZ9Qa-Fo.roa
File: TEUg6_yp9I4vGQ2ER4KIZ9Qa-Fo.roa (raw, json)
Hash identifier: Z67AEjsE84BvHCcDza38f7gomJFfF5mRpvY1cVDAq8c=
Subject key identifier: 4C:45:20:EB:FC:A9:F4:8E:2F:19:0D:84:47:82:88:67:D4:1A:F8:5A
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 018F0DD0572A33DF470D163317C6BC91B310
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/TEUg6_yp9I4vGQ2ER4KIZ9Qa-Fo.roa
Signing time: Wed 24 Apr 2024 01:55:08 +0000
ROA not before: Wed 24 Apr 2024 01:55:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197563
IP address blocks: 178.18.231.0/24 maxlen: 24
2001:b28:4::/48 maxlen: 48
2a03:5f80:8::/48 maxlen: 48
2a03:5f80:a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0d:d0:57:2a:33:df:47:0d:16:33:17:c6:bc:91:b3:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Apr 24 01:55:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c4520ebfca9f48e2f190d8447828867d41af85a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e4:52:f4:a4:8c:96:bd:11:35:1a:63:5e:be:
50:e5:83:12:16:1d:35:48:19:0a:96:3c:57:5a:0a:
69:2f:e2:64:e5:69:5b:c0:0f:3f:c7:e7:47:fa:f3:
d9:21:5b:16:6b:e7:8a:b5:f6:14:6b:3f:00:97:96:
37:fe:2f:43:10:62:aa:b9:4c:9c:a9:d3:79:af:82:
91:86:8f:a3:55:23:d4:10:04:e4:36:df:a0:77:9a:
64:53:a8:03:2d:24:22:b0:ce:fc:31:98:e0:79:4f:
7a:2a:73:6f:16:d8:e9:fd:d1:5c:cd:2a:af:12:91:
2a:4d:96:89:a1:e7:1b:68:9c:03:f4:0e:dd:a1:33:
53:44:61:4c:70:5f:b7:8f:46:45:15:93:f0:0f:f4:
99:02:26:ba:bc:46:84:7d:e5:d8:8e:8f:08:82:bb:
c3:bb:d1:a9:3a:f1:c8:c7:03:e8:8a:48:16:68:19:
80:8c:e2:69:55:03:db:fa:a0:83:42:24:cf:52:d1:
e1:3d:bb:2a:76:d0:09:32:9f:94:8f:3f:63:fb:99:
4d:e8:2a:f0:3a:d2:09:d9:87:a7:d4:99:fc:95:15:
29:59:01:87:0e:63:ba:fd:73:33:70:27:69:f5:f2:
62:c2:99:7c:2a:e0:bc:48:8e:4f:86:65:6d:54:b7:
79:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:45:20:EB:FC:A9:F4:8E:2F:19:0D:84:47:82:88:67:D4:1A:F8:5A
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/TEUg6_yp9I4vGQ2ER4KIZ9Qa-Fo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.231.0/24
IPv6:
2001:b28:4::/48
2a03:5f80:8::/48
2a03:5f80:a::/48
Signature Algorithm: sha256WithRSAEncryption
6e:7e:cd:4f:95:6b:84:87:9d:67:dd:da:b1:7a:af:79:c1:cd:
74:4f:ce:a3:0d:5c:f3:3c:58:52:5a:f2:88:f6:27:ce:fc:be:
bf:f1:cb:4d:24:a4:b0:5d:4a:0c:3b:bf:94:f2:47:57:7c:b1:
5d:3d:41:63:77:a7:b6:fe:c8:ab:0d:71:79:12:f4:83:c9:92:
b3:af:1c:60:9a:c3:72:b0:ea:78:0c:81:ed:10:0f:25:10:4f:
74:d3:08:a3:06:0b:0e:67:ea:2e:c7:a3:1c:b6:4a:45:30:db:
7a:3a:55:f3:f1:8a:de:19:b0:2f:de:63:6c:83:5a:48:f4:01:
7f:68:52:6c:65:47:2a:3b:79:1a:a1:86:53:a4:de:e2:07:76:
21:08:7f:e3:db:e8:8b:e0:5a:fe:35:b6:97:8b:f4:13:94:22:
c0:b6:e8:e4:b0:82:d3:25:cc:5b:c7:10:de:4c:7d:d7:c5:e5:
72:0d:2a:ad:1a:12:fa:dc:12:c4:81:26:c3:32:79:cd:f8:9a:
8d:77:a0:58:b5:ec:13:e7:f0:86:92:e8:69:30:c9:6b:23:ac:
59:76:13:75:49:5d:08:2b:c9:ae:7f:58:f8:a1:ed:a7:ff:38:
ca:35:9f:4a:75:66:2d:29:ec:7a:8e:65:bb:cd:7c:aa:51:2d:
ee:74:88:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 18:12:45 2024 by rpki-client on console-ams.rpki-client.org