Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/DhVfu0gZzWojbcwQ2TEDZtN38gM.roa
File: DhVfu0gZzWojbcwQ2TEDZtN38gM.roa (raw, json)
Hash identifier: /XiuGwh0Sd5TS/mY3c5Wm+gQTY43Qi24MXzwwX32HxY=
Subject key identifier: 0E:15:5F:BB:48:19:CD:6A:23:6D:CC:10:D9:31:03:66:D3:77:F2:03
Certificate issuer: /CN=bab453d97ba2f4a045843e6b4a953b3e5106eaf2
Certificate serial: 018D1B98283C619BBCF8782F123211161D65
Authority key identifier: BA:B4:53:D9:7B:A2:F4:A0:45:84:3E:6B:4A:95:3B:3E:51:06:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urRT2Xui9KBFhD5rSpU7PlEG6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/DhVfu0gZzWojbcwQ2TEDZtN38gM.roa
Signing time: Thu 18 Jan 2024 08:02:53 +0000
ROA not before: Thu 18 Jan 2024 08:02:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29385
IP address blocks: 213.206.32.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/urRT2Xui9KBFhD5rSpU7PlEG6vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/urRT2Xui9KBFhD5rSpU7PlEG6vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/urRT2Xui9KBFhD5rSpU7PlEG6vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 17:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1b:98:28:3c:61:9b:bc:f8:78:2f:12:32:11:16:1d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bab453d97ba2f4a045843e6b4a953b3e5106eaf2
Validity
Not Before: Jan 18 08:02:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e155fbb4819cd6a236dcc10d9310366d377f203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:88:14:6f:b2:5c:5f:1d:d0:d8:bb:42:63:97:
f7:04:cd:c6:19:91:50:8c:ab:73:7a:5d:ca:4d:da:
f8:d2:9e:d4:1e:35:e9:b1:4c:33:bf:78:73:77:4b:
1a:ca:54:d1:c9:22:8b:ae:68:a1:c4:17:6a:d3:34:
47:b0:c7:e6:b4:cd:24:26:2a:ee:aa:7d:2d:80:a4:
87:8c:ad:65:7a:fe:ba:bf:89:1c:1d:12:58:82:75:
2a:de:0d:c7:66:15:fd:83:31:81:17:fb:11:bb:38:
5d:60:c8:29:2f:56:c5:e3:c1:ed:d0:51:e0:f2:0a:
e8:31:2a:a2:d2:87:da:62:e9:d7:af:fb:d3:56:e5:
10:ea:a9:df:2b:ad:ed:50:1f:50:ac:de:4d:9a:0e:
39:b9:32:b6:92:58:81:d3:18:49:49:ed:96:0d:08:
01:a5:cb:2a:57:57:60:51:5a:e6:51:72:bd:53:51:
cc:35:18:b4:40:9c:40:63:e3:8d:bf:47:dc:bf:82:
38:e1:f6:09:3e:bc:b0:50:f8:0e:b4:b6:80:6a:d6:
07:7c:fd:cb:08:28:2f:b3:68:50:07:72:dd:ef:c9:
dc:7f:55:5d:7c:dd:f6:40:cb:59:a5:3f:28:9e:92:
fe:53:ec:5f:b8:01:c7:ef:53:bc:ee:f8:6d:d5:7b:
61:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:15:5F:BB:48:19:CD:6A:23:6D:CC:10:D9:31:03:66:D3:77:F2:03
X509v3 Authority Key Identifier:
keyid:BA:B4:53:D9:7B:A2:F4:A0:45:84:3E:6B:4A:95:3B:3E:51:06:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urRT2Xui9KBFhD5rSpU7PlEG6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/DhVfu0gZzWojbcwQ2TEDZtN38gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/urRT2Xui9KBFhD5rSpU7PlEG6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.206.32.0/19
Signature Algorithm: sha256WithRSAEncryption
72:5f:2a:4e:59:59:64:20:fa:5d:06:87:5c:a9:8a:21:b7:3e:
14:de:76:28:85:c3:5b:94:fe:22:29:a2:05:e5:cb:fd:fb:7b:
f2:a0:ed:93:e2:5c:e3:aa:3e:bf:8f:73:a3:5c:14:6d:66:4d:
7c:97:05:99:8f:d2:27:46:ff:09:8f:0e:19:3a:dc:02:31:93:
f2:84:a1:2b:00:d1:ff:f7:a0:8b:b4:84:02:ba:3f:6a:70:05:
9a:22:00:1c:9a:0c:90:38:0a:cd:11:5b:c0:b5:ff:a9:4a:39:
cc:36:3f:9c:dd:d7:a7:24:ec:74:7b:bc:3f:ec:d3:25:19:bc:
94:0d:68:15:9b:a9:12:56:4b:b1:2f:cb:f6:de:ea:f1:82:ef:
fb:38:9b:87:a0:98:3a:9e:1f:4b:f3:8c:c1:7c:e8:60:12:4f:
00:b7:13:25:8b:e6:91:04:8c:da:8f:2e:d2:66:59:ad:f3:a5:
bc:41:5f:cf:43:68:43:f7:2b:12:1e:9a:55:a8:23:f3:57:e5:
2c:8b:71:2c:9a:c7:8a:d4:ad:3a:49:17:61:d0:dd:e4:33:c7:
ba:fc:62:18:98:f9:11:e2:fe:0c:01:45:60:e6:2f:92:33:da:
d8:8c:95:86:7d:6f:95:ca:87:e6:fc:f8:59:2c:9c:f1:10:23:
1d:f6:24:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:13:11 2024 by rpki-client on console-fra.rpki-client.org