Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/ulOAwKf8VOuvz5zvH4kDkiCCZCE.roa
File: ulOAwKf8VOuvz5zvH4kDkiCCZCE.roa (raw, json)
Hash identifier: f0TIXlBCJaLFRYxtADtJbLsvPhAQEXTVfANfS02C+EM=
Subject key identifier: BA:53:80:C0:A7:FC:54:EB:AF:CF:9C:EF:1F:89:03:92:20:82:64:21
Certificate issuer: /CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Certificate serial: 018CC5DC7D23A02EA362CC94FDFBF57765ED
Authority key identifier: 92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/ulOAwKf8VOuvz5zvH4kDkiCCZCE.roa
Signing time: Mon 01 Jan 2024 16:30:10 +0000
ROA not before: Mon 01 Jan 2024 16:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200953
IP address blocks: 81.177.185.0/24 maxlen: 24
81.177.193.0/24 maxlen: 24
213.59.140.0/22 maxlen: 22
213.59.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:7d:23:a0:2e:a3:62:cc:94:fd:fb:f5:77:65:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Validity
Not Before: Jan 1 16:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba5380c0a7fc54ebafcf9cef1f89039220826421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a0:6d:d5:b0:ea:06:7e:97:fe:40:74:06:da:
77:28:c2:44:1c:be:69:f7:1d:53:34:86:ec:54:35:
f8:96:9a:2e:99:06:45:c0:e4:6e:87:b0:15:a2:fd:
bb:6e:f1:2d:bd:7c:cc:78:cf:59:2a:52:fa:18:a6:
69:c5:06:50:69:77:70:0c:12:b6:d1:cb:dd:b1:93:
97:66:a4:06:d2:78:8d:13:e4:0c:a0:09:18:d6:87:
db:2b:b1:07:5d:0f:dc:79:f5:c7:3b:bb:84:34:3d:
1e:a1:61:99:58:ef:3c:3f:f8:e8:24:43:55:e5:a1:
2d:bd:6e:93:fe:22:07:0b:18:7f:aa:06:57:ff:bc:
7d:51:d2:0e:76:28:e3:d5:85:69:77:89:2c:d1:7c:
d3:12:d4:86:83:75:f0:4e:65:ae:c1:4a:e4:88:5b:
d4:d1:ee:03:d6:aa:20:82:70:fe:54:d8:3c:bf:bc:
41:02:97:44:06:4f:30:99:ae:92:fc:17:61:b4:e4:
12:c8:1e:5c:a7:e2:b1:af:c6:a7:f1:78:c0:4e:92:
dc:ed:43:10:93:26:fc:75:5e:bb:d1:8f:8a:d2:1d:
3c:dd:ad:1f:c3:f5:30:b1:f0:9c:74:9c:33:c6:d0:
3a:11:eb:ff:96:3a:8b:42:f8:a0:11:67:95:be:af:
41:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:53:80:C0:A7:FC:54:EB:AF:CF:9C:EF:1F:89:03:92:20:82:64:21
X509v3 Authority Key Identifier:
keyid:92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/ulOAwKf8VOuvz5zvH4kDkiCCZCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.177.185.0/24
81.177.193.0/24
213.59.140.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:7b:61:5c:03:59:c7:ba:65:27:04:38:fa:7e:b2:4f:43:60:
af:5b:28:b6:d7:84:12:fd:5e:fc:67:18:dc:51:47:dc:f2:5c:
82:24:f1:7e:21:aa:54:dd:c2:2f:79:1b:66:49:9a:97:f8:08:
89:71:b6:2d:4e:0f:8d:3f:41:95:be:8a:8e:1b:41:b4:c9:ed:
88:27:3c:2a:e9:38:7b:ce:79:aa:6b:4f:86:29:00:cd:bd:cf:
c6:6d:b6:da:5e:1c:55:03:45:cf:a9:39:3d:25:8a:73:5c:d5:
7d:68:18:8f:97:15:03:78:0d:6a:0d:ca:b4:56:95:e2:4d:7f:
63:91:90:64:88:21:cc:b6:a3:e5:51:e6:30:c1:13:ce:e5:d7:
35:d4:0e:ee:63:c6:d5:9b:f8:f0:1e:13:8b:9d:01:e1:07:73:
60:51:96:5f:ce:e3:86:09:87:86:47:03:ee:02:5d:18:bb:c1:
bc:57:ea:6d:d7:25:bc:54:bf:c5:67:12:b2:35:4b:96:1a:0c:
6d:ae:9d:b1:0d:ec:d2:8a:8d:ed:44:1f:5d:00:da:10:ea:91:
ce:31:ab:dd:f5:10:13:88:e2:cd:67:15:fe:ac:15:b3:c8:59:
08:9a:a9:88:fe:6a:ae:ae:c8:47:01:36:96:c0:b4:41:47:76:
b3:51:41:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 08:25:57 2024 by rpki-client on console-ams.rpki-client.org