Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/uzJJ7YNp54w7AigY03NpDfK0jnQ.roa
File: uzJJ7YNp54w7AigY03NpDfK0jnQ.roa (raw, json)
Hash identifier: b7+yh7G5zgTmUhGoW8OB4xVow0wAGJ9fFdVlMjjtspA=
Subject key identifier: BB:32:49:ED:83:69:E7:8C:3B:02:28:18:D3:73:69:0D:F2:B4:8E:74
Certificate issuer: /CN=de9461c211bf3551c5507c930b4204c6ec43b322
Certificate serial: 0192D1F7E5038D70D079432473F5CBEB44C9
Authority key identifier: DE:94:61:C2:11:BF:35:51:C5:50:7C:93:0B:42:04:C6:EC:43:B3:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pRhwhG_NVHFUHyTC0IExuxDsyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/uzJJ7YNp54w7AigY03NpDfK0jnQ.roa
Signing time: Mon 28 Oct 2024 07:12:17 +0000
ROA not before: Mon 28 Oct 2024 07:12:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211392
IP address blocks: 91.192.106.0/23 maxlen: 23
91.192.106.0/24 maxlen: 24
91.193.58.0/23 maxlen: 23
91.193.59.0/24 maxlen: 24
193.106.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/3pRhwhG_NVHFUHyTC0IExuxDsyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/3pRhwhG_NVHFUHyTC0IExuxDsyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3pRhwhG_NVHFUHyTC0IExuxDsyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d1:f7:e5:03:8d:70:d0:79:43:24:73:f5:cb:eb:44:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de9461c211bf3551c5507c930b4204c6ec43b322
Validity
Not Before: Oct 28 07:12:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb3249ed8369e78c3b022818d373690df2b48e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7f:b3:3a:4e:b9:a4:4d:7f:25:68:7e:98:c8:
23:30:c3:55:b8:ef:03:38:ea:3c:28:dc:f0:3e:36:
2e:9a:0a:0f:70:21:f2:99:97:b7:01:a7:68:5f:d2:
b3:c8:75:1c:1b:82:0c:51:69:aa:a1:c4:ff:5a:6a:
e2:4b:b8:26:5f:8c:8d:e6:f8:a0:e1:3f:37:6d:26:
eb:e6:e4:2a:ab:c4:8d:b0:63:69:74:c6:3a:8a:29:
3e:77:7e:5b:4c:de:97:b1:8f:c0:69:65:93:6d:a2:
3c:e5:ff:4b:74:3f:1b:78:97:ef:41:cd:78:79:82:
c5:9a:08:a6:f1:c1:67:a3:b1:02:cf:43:dd:6b:c9:
d7:be:1c:1d:89:6e:12:80:02:3a:d1:ea:3d:e1:41:
25:d9:57:8d:09:36:48:14:8e:31:00:4b:99:6f:60:
d6:c9:7a:45:1f:11:75:86:f0:31:cf:b3:72:70:c5:
ef:14:a5:2e:11:32:14:8d:95:ad:27:de:88:27:83:
b6:e0:fd:7b:e8:ae:44:4d:c2:54:b3:8c:a3:1d:92:
46:20:f6:0b:ed:de:bb:df:62:d4:ad:f0:a1:ed:5d:
92:3e:4d:79:45:f4:c7:83:72:25:6b:5d:5c:58:48:
74:5e:24:e1:71:e8:8c:40:9f:8e:cd:ac:ac:bd:01:
ab:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:32:49:ED:83:69:E7:8C:3B:02:28:18:D3:73:69:0D:F2:B4:8E:74
X509v3 Authority Key Identifier:
keyid:DE:94:61:C2:11:BF:35:51:C5:50:7C:93:0B:42:04:C6:EC:43:B3:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pRhwhG_NVHFUHyTC0IExuxDsyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/uzJJ7YNp54w7AigY03NpDfK0jnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/3pRhwhG_NVHFUHyTC0IExuxDsyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.106.0/23
91.193.58.0/23
193.106.189.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b8:f3:2f:ff:00:a8:7c:d9:87:ed:65:30:f8:2b:51:76:58:
02:2c:e5:12:6f:71:b1:c2:fe:30:d5:e2:5b:8d:eb:a8:b1:c8:
43:0f:01:d2:bc:03:78:06:5d:14:f4:64:d4:85:5a:69:87:40:
44:cf:22:fb:99:70:f5:59:e3:28:f2:52:31:88:ca:28:b2:45:
6b:97:61:d9:34:e0:a0:9a:13:39:b9:bc:52:eb:f9:6e:98:4c:
b4:71:01:18:df:50:e9:33:23:76:4d:7c:64:56:f1:1d:db:98:
49:29:28:47:4e:d4:5b:cc:61:58:b7:35:6a:af:83:a1:b9:8c:
df:c8:b6:f5:99:ad:5f:89:95:d7:e7:40:43:f5:30:96:e4:0a:
a8:eb:49:8b:75:7a:90:94:f0:b7:20:e3:17:ea:d7:2c:25:f6:
5c:ad:2c:a5:9d:28:4a:73:50:32:69:86:32:7e:87:ab:52:e8:
ae:60:06:40:6b:2b:a7:31:e5:f5:e9:f4:35:91:4e:51:89:46:
de:d5:51:65:0d:31:96:97:b7:f1:e8:88:2c:05:d3:88:96:bd:
7c:ab:53:fb:09:1a:03:d7:3c:c8:ab:79:95:df:28:42:33:b5:
86:a5:03:b2:c3:58:7d:94:12:94:92:7d:9e:05:24:0c:38:9a:
40:40:e3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:53:12 2024 by rpki-client on console-ams.rpki-client.org