Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/uwY1SDrNMoGxZS-HdiNN8d7xTQs.roa
File: uwY1SDrNMoGxZS-HdiNN8d7xTQs.roa (raw, json)
Hash identifier: oSVW7tPmNqUu+nGI0ajrlNAU0bexrwJa+QDf+mhXm2s=
Subject key identifier: BB:06:35:48:3A:CD:32:81:B1:65:2F:87:76:23:4D:F1:DE:F1:4D:0B
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0191F9EB8BB0D66860F26FEF4BC99CBB732C
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/uwY1SDrNMoGxZS-HdiNN8d7xTQs.roa
Signing time: Mon 16 Sep 2024 08:20:48 +0000
ROA not before: Mon 16 Sep 2024 08:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47447
IP address blocks: 193.160.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:eb:8b:b0:d6:68:60:f2:6f:ef:4b:c9:9c:bb:73:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Sep 16 08:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb0635483acd3281b1652f8776234df1def14d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:95:a2:6b:0e:4d:35:60:33:48:3d:1a:3d:43:
2a:3b:48:01:14:81:f4:0b:9a:09:d4:bc:c9:1c:22:
dd:93:a3:35:95:0c:e1:18:fb:5a:13:73:7a:5e:02:
4f:e1:85:dd:d9:bf:a7:fd:9f:68:97:93:06:11:a5:
b4:1c:f8:7e:38:51:fb:21:07:02:35:e6:e6:92:a9:
4a:60:14:d3:35:b8:a7:c6:47:bf:d1:b8:09:14:e5:
f2:a7:f5:cf:26:c8:d9:97:1c:ca:ee:3e:82:59:5c:
62:27:a0:b2:0f:95:30:9d:2a:75:32:72:83:4f:1e:
70:50:89:b8:8c:be:69:08:59:42:cd:99:2b:55:1d:
b1:02:06:77:cd:b6:76:3a:63:01:44:c7:a2:d2:9b:
1d:c2:30:96:53:da:54:37:93:3a:95:82:96:c4:cb:
e7:20:61:47:78:50:d0:7b:22:2a:7a:3f:51:4e:45:
4c:d5:d9:56:c2:b6:85:00:28:4b:b1:c0:a8:e4:aa:
c4:71:db:9f:97:b4:29:65:79:a1:9c:6d:05:e3:7d:
a2:e0:cd:86:4d:59:61:bb:aa:56:ff:ec:2b:17:3c:
81:31:ec:01:17:78:7b:5c:9f:b9:95:3d:06:e4:29:
ca:e6:b0:9a:11:65:72:c6:43:a2:e0:0f:78:83:08:
9a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:06:35:48:3A:CD:32:81:B1:65:2F:87:76:23:4D:F1:DE:F1:4D:0B
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/uwY1SDrNMoGxZS-HdiNN8d7xTQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.223.0/24
Signature Algorithm: sha256WithRSAEncryption
24:0d:f2:6f:36:33:50:fa:36:b3:c4:55:45:f0:58:5c:98:f2:
4e:be:09:f3:ca:dc:04:20:b5:75:1a:9d:78:27:b9:27:5f:f9:
41:a8:99:71:19:32:de:bc:9a:55:b4:b6:50:00:c3:66:ce:0e:
34:08:6b:c0:f9:e4:8f:5c:d8:d1:b0:dc:9e:99:6f:69:d5:51:
55:b7:75:71:12:be:d8:b9:d2:71:35:a8:00:81:72:27:1f:18:
8c:b2:33:91:1f:0e:db:87:6a:1e:78:b3:7c:53:b4:88:e3:43:
05:5a:30:0d:d7:c9:c7:b2:73:ef:97:3f:48:4e:cd:42:2c:be:
fe:7b:28:5d:36:50:30:47:d0:92:c6:72:08:3b:10:5d:b0:9b:
6f:a8:53:c6:d4:2e:0c:e8:01:f3:05:fb:ec:97:8e:48:9e:6e:
36:3e:fb:c1:ee:75:f1:1c:8d:e1:8b:e7:4c:1a:35:6e:56:15:
27:5f:0d:96:32:b9:9c:5e:5b:b2:df:7e:15:a3:4c:83:6b:34:
6a:55:c3:76:3f:6a:6c:23:e6:29:07:ad:75:92:f8:fb:23:1d:
07:a0:01:09:bf:2d:6f:d3:83:89:89:e4:9f:3f:5e:bb:01:d2:
fd:00:ca:9e:12:6a:12:be:51:16:17:91:d0:d4:22:e8:52:db:
f9:78:8a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:44:59 2024 by rpki-client on console-ams.rpki-client.org