Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/Uee7ldCTc0DMQGz1EdBtihiprew.roa
File: Uee7ldCTc0DMQGz1EdBtihiprew.roa (raw, json)
Hash identifier: mCp9Iq3E5GnVHb4JMn6nAICscxkX4vNr0/gmxih8YxY=
Subject key identifier: 51:E7:BB:95:D0:93:73:40:CC:40:6C:F5:11:D0:6D:8A:18:A9:AD:EC
Certificate issuer: /CN=4f36103344fcd3b5759f2db3f3c7071376f9e233
Certificate serial: 018CC94E47D226024D80F99938D228BA930B
Authority key identifier: 4F:36:10:33:44:FC:D3:B5:75:9F:2D:B3:F3:C7:07:13:76:F9:E2:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzYQM0T807V1ny2z88cHE3b54jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/Uee7ldCTc0DMQGz1EdBtihiprew.roa
Signing time: Tue 02 Jan 2024 08:33:19 +0000
ROA not before: Tue 02 Jan 2024 08:33:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12301
IP address blocks: 193.194.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/TzYQM0T807V1ny2z88cHE3b54jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/TzYQM0T807V1ny2z88cHE3b54jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzYQM0T807V1ny2z88cHE3b54jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:47:d2:26:02:4d:80:f9:99:38:d2:28:ba:93:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f36103344fcd3b5759f2db3f3c7071376f9e233
Validity
Not Before: Jan 2 08:33:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51e7bb95d0937340cc406cf511d06d8a18a9adec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:96:e9:72:54:6c:7c:54:83:aa:a8:59:a7:
61:4a:15:bc:07:dd:d8:3e:12:61:74:ee:18:94:c5:
1b:91:ae:81:53:16:1e:6c:99:82:80:fb:17:e8:62:
de:21:13:a3:48:ab:97:a2:9b:37:56:73:a0:90:e2:
d6:19:eb:00:a4:0b:c1:ac:f8:9d:29:fd:49:d9:8a:
fe:48:39:e2:cb:08:45:30:83:04:87:ad:f5:af:fb:
70:9c:0a:9c:80:d0:12:12:ee:6c:34:58:5a:31:85:
1d:9d:47:a1:4c:a0:94:7d:4a:f4:1c:f4:84:c2:d5:
4c:0a:4d:89:f3:4d:17:52:0b:d2:88:cf:91:f9:16:
a5:54:da:35:b4:89:0d:95:b7:b5:e7:9e:48:0e:c3:
d6:c0:30:45:21:07:09:ba:77:7e:e2:df:a8:53:34:
90:96:de:ce:af:d9:6b:41:cd:31:4d:26:8e:1c:33:
bb:ec:35:d0:8c:cc:e6:c8:f9:d0:19:a8:e2:80:c1:
ef:71:2e:0a:19:f9:7d:f6:ba:dd:7e:f5:f0:16:ad:
90:5a:9d:1b:0c:32:e3:11:2e:91:9f:d5:25:4e:91:
d7:6a:2f:07:9f:23:0a:3d:08:1d:14:bc:86:50:89:
5b:64:15:5a:99:0e:d0:c0:ba:a0:d9:60:3a:a2:8c:
2f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E7:BB:95:D0:93:73:40:CC:40:6C:F5:11:D0:6D:8A:18:A9:AD:EC
X509v3 Authority Key Identifier:
keyid:4F:36:10:33:44:FC:D3:B5:75:9F:2D:B3:F3:C7:07:13:76:F9:E2:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzYQM0T807V1ny2z88cHE3b54jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/Uee7ldCTc0DMQGz1EdBtihiprew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/TzYQM0T807V1ny2z88cHE3b54jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.194.159.0/24
Signature Algorithm: sha256WithRSAEncryption
58:9a:5c:de:b0:6b:bd:ae:89:79:6b:37:53:75:81:0f:0d:4c:
8a:cf:22:91:69:c9:7a:c3:39:a3:10:0e:4c:8b:c5:fd:bf:39:
f7:41:c1:88:4a:0e:50:d8:a6:30:6e:09:d8:2e:dc:d6:9b:e5:
5c:3f:0e:78:d7:82:64:a1:2f:6e:c9:6a:7c:c5:eb:46:fb:75:
bf:d1:e5:cd:37:bc:89:7b:66:da:a8:8a:ad:4b:e2:a6:96:97:
da:4a:34:ec:cb:5e:5f:be:e9:45:b0:ec:b0:7f:e9:a3:47:1d:
ba:56:8e:a8:ff:aa:00:c7:59:80:8a:7b:17:ad:17:f4:64:8a:
f3:3f:c5:55:9c:39:cf:10:0e:8d:69:e4:51:2d:63:e7:01:8b:
0e:25:ae:8d:1e:b8:f4:3a:51:00:b0:9f:d0:9c:d5:1f:ff:72:
71:75:f5:0c:75:67:d1:8e:74:de:1e:de:46:9e:06:79:65:15:
b0:99:60:e2:4e:64:69:ac:81:5f:fb:0d:ba:e3:6a:65:bd:21:
aa:5f:4d:b9:c0:6f:8b:72:f1:00:23:d7:af:2e:bd:1d:6b:ed:
4e:f0:62:5f:84:cf:2e:c6:19:e4:b3:95:6a:e6:8f:2c:7f:92:
31:b4:85:3b:85:15:65:20:1d:df:ed:ef:04:3f:c8:b0:7c:5c:
09:b9:f8:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 16:46:57 2024 by rpki-client on console-ams.rpki-client.org