Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/UTHwuRRSRYgE5jL7-vPdsU5HrPU.roa
File: UTHwuRRSRYgE5jL7-vPdsU5HrPU.roa (raw, json)
Hash identifier: Ao/Fqbtw360cb4ZrYqcqXCHYaAAdZUaoHDLsOeq8OaE=
Subject key identifier: 51:31:F0:B9:14:52:45:88:04:E6:32:FB:FA:F3:DD:B1:4E:47:AC:F5
Certificate issuer: /CN=a9807f6d50d97d971dcf2e2e5064e9b907adb3ec
Certificate serial: 018D60639944BDB514D3FCE14A9540D4B21B
Authority key identifier: A9:80:7F:6D:50:D9:7D:97:1D:CF:2E:2E:50:64:E9:B9:07:AD:B3:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYB_bVDZfZcdzy4uUGTpuQets-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/UTHwuRRSRYgE5jL7-vPdsU5HrPU.roa
Signing time: Wed 31 Jan 2024 16:39:16 +0000
ROA not before: Wed 31 Jan 2024 16:39:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60257
IP address blocks: 81.179.96.0/20 maxlen: 24
145.255.240.0/21 maxlen: 24
185.24.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/qYB_bVDZfZcdzy4uUGTpuQets-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/qYB_bVDZfZcdzy4uUGTpuQets-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/qYB_bVDZfZcdzy4uUGTpuQets-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:60:63:99:44:bd:b5:14:d3:fc:e1:4a:95:40:d4:b2:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9807f6d50d97d971dcf2e2e5064e9b907adb3ec
Validity
Not Before: Jan 31 16:39:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5131f0b91452458804e632fbfaf3ddb14e47acf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:cd:f7:a4:45:43:49:4e:5b:5e:9c:25:3e:90:
eb:3a:6b:e1:98:7a:4c:9d:3b:a0:ee:c0:7e:71:5b:
21:57:e6:20:b4:ad:e3:f5:87:bc:ea:4b:ee:43:c0:
48:35:e2:f0:ed:4a:ea:7b:3a:e3:63:01:55:7a:6e:
ae:1e:0e:84:a1:e3:36:cf:fe:3e:35:33:ad:96:0f:
1b:d9:e2:38:a1:c6:84:0b:80:4f:a3:0c:a3:f7:27:
73:b4:54:5e:37:f7:d7:8c:0e:77:eb:85:e2:ec:6d:
8b:1b:e8:8d:cb:f2:98:6a:6b:32:a4:3a:fd:9d:43:
5d:cf:e9:a7:9b:49:fa:99:ed:28:90:07:bb:7e:af:
94:d1:76:f9:44:3b:bb:b8:13:31:79:80:7c:f1:01:
8a:5e:7c:69:97:dc:d3:7b:15:8f:67:96:4d:3e:6a:
1a:81:89:ce:f3:e5:e5:9a:43:75:04:8d:40:a5:97:
c7:a3:75:1a:74:f8:02:c2:bb:78:22:4f:8b:b5:40:
0c:74:1c:de:70:43:18:37:cc:10:66:67:2d:73:62:
3c:eb:b1:32:e1:ca:4e:61:c8:39:c9:d1:04:5a:4a:
4c:17:a9:55:fe:24:de:11:8b:ab:1a:15:f1:ba:31:
c5:dd:e4:85:50:d8:ad:3d:06:ae:ee:b2:6d:2f:14:
69:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:31:F0:B9:14:52:45:88:04:E6:32:FB:FA:F3:DD:B1:4E:47:AC:F5
X509v3 Authority Key Identifier:
keyid:A9:80:7F:6D:50:D9:7D:97:1D:CF:2E:2E:50:64:E9:B9:07:AD:B3:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYB_bVDZfZcdzy4uUGTpuQets-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/UTHwuRRSRYgE5jL7-vPdsU5HrPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/qYB_bVDZfZcdzy4uUGTpuQets-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.179.96.0/20
145.255.240.0/21
185.24.12.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:b8:1d:db:6b:fd:e2:73:53:a9:8f:9d:2a:60:90:3a:bb:ce:
61:1f:87:28:56:67:a4:1c:12:08:32:19:f7:84:e3:0f:47:46:
a4:d5:33:51:88:2c:a4:f8:a2:0a:8d:a3:c3:ed:f0:ef:0f:26:
ab:0f:ae:ba:d6:fd:36:3b:4d:6f:87:f9:26:7f:2c:88:f4:80:
fe:68:3b:c8:dc:fc:9e:b0:20:af:3d:24:cc:84:d7:25:6f:8e:
8f:75:5f:d4:08:b2:d3:e5:ce:7f:c2:17:ce:b4:9a:6f:bb:95:
9d:14:ce:df:c8:e7:d2:98:ac:ef:03:7e:78:c8:86:30:5a:b9:
cf:10:9f:fb:79:d6:a7:64:cc:8f:96:b4:ee:8f:7b:3b:7d:a4:
d8:2c:8d:9e:7a:55:dd:ae:f2:25:14:c7:01:58:4a:73:32:8d:
6b:4b:bc:0b:36:0b:aa:1f:29:a6:16:61:ae:9d:56:d1:54:90:
7d:f8:f3:12:35:e3:b7:4d:45:b3:97:76:b1:31:a2:a4:36:a8:
1a:14:40:54:84:09:08:77:e0:65:51:10:d0:1f:2b:de:49:34:
f9:b0:79:43:4f:ba:ca:32:d1:95:f4:da:72:33:fe:5b:86:b8:
43:f1:0f:ff:59:fd:d3:27:77:81:66:d6:83:c8:e0:de:3a:f7:
44:ea:76:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 14:03:16 2024 by rpki-client on console-ams.rpki-client.org