Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/_t3Hh47h2_Uz41VfSXlqrjPSHh8.roa
File: _t3Hh47h2_Uz41VfSXlqrjPSHh8.roa (raw, json)
Hash identifier: 08SubCC4dvb4jJH+9p+q0GvErSGF81dZUhP4cmORM/o=
Subject key identifier: FE:DD:C7:87:8E:E1:DB:F5:33:E3:55:5F:49:79:6A:AE:33:D2:1E:1F
Certificate issuer: /CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Certificate serial: 018FDDA315AC305EFEFE20B76415FF997164
Authority key identifier: 57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/_t3Hh47h2_Uz41VfSXlqrjPSHh8.roa
Signing time: Mon 03 Jun 2024 10:26:43 +0000
ROA not before: Mon 03 Jun 2024 10:26:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48129
IP address blocks: 81.30.117.0/24 maxlen: 24
81.30.124.0/24 maxlen: 24
81.30.125.0/24 maxlen: 24
81.30.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 16:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dd:a3:15:ac:30:5e:fe:fe:20:b7:64:15:ff:99:71:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Validity
Not Before: Jun 3 10:26:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=feddc7878ee1dbf533e3555f49796aae33d21e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b4:a8:50:dd:e2:46:39:c2:f5:fa:21:98:ed:
a0:7f:bf:8f:14:e9:53:5c:ec:c1:4a:d6:00:c2:1d:
7b:8f:81:d0:b5:d3:bf:4c:4d:1a:ee:d1:3c:da:47:
2c:49:18:c8:d5:a3:22:5d:26:76:30:d7:4e:60:9d:
1c:7a:18:6e:d2:c2:7c:95:d0:7d:d2:d5:3a:76:01:
04:1c:59:e1:2d:26:ed:45:3a:95:27:75:ce:c2:f5:
61:13:f1:9a:d6:de:29:b5:cb:34:72:ea:20:11:63:
17:50:17:cf:52:53:7b:77:5a:66:13:f5:12:4c:9c:
6f:9c:cd:4c:1b:8f:1b:8a:4d:14:7b:44:61:e8:47:
23:6b:de:70:9b:5b:37:49:4e:43:cd:f5:40:8f:58:
25:96:d6:8b:d5:a6:c7:40:8e:4c:7e:4c:1a:a7:d8:
e1:0e:39:27:a6:d8:91:fd:96:8e:51:61:e1:9a:2a:
b7:c0:a4:31:af:1d:4f:be:e5:59:ab:8b:42:66:aa:
e8:76:21:bc:b6:f5:48:fc:02:60:e3:9e:4f:82:d6:
a9:42:75:c3:d3:97:a0:af:66:23:3b:5e:34:09:ef:
25:69:d1:67:9a:83:bc:c4:82:6c:68:7c:30:00:72:
5d:26:3a:5e:b7:c0:97:6f:b6:35:c2:fa:01:8f:03:
02:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:DD:C7:87:8E:E1:DB:F5:33:E3:55:5F:49:79:6A:AE:33:D2:1E:1F
X509v3 Authority Key Identifier:
keyid:57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/_t3Hh47h2_Uz41VfSXlqrjPSHh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.117.0/24
81.30.124.0-81.30.126.255
Signature Algorithm: sha256WithRSAEncryption
18:a1:79:b0:79:1a:7a:41:df:e5:54:85:53:7f:39:ec:20:06:
a6:04:94:ab:5b:39:ea:94:24:4d:f7:70:9f:e3:4f:61:33:65:
1e:28:49:b0:b3:4f:49:db:73:5c:fa:84:01:b9:f5:20:51:6a:
d7:5e:81:eb:a4:93:9d:ee:dd:44:b2:d2:3e:dc:44:11:41:30:
bd:ba:b8:ab:d3:0f:d8:db:a7:43:df:35:37:17:73:65:2f:eb:
03:e9:ad:25:df:04:01:ed:59:c3:72:39:26:02:ed:4a:5a:ec:
a4:6d:92:20:28:ca:3e:e7:6a:0d:46:84:fb:72:93:38:aa:5b:
ba:05:d8:2b:b8:dc:6c:3e:35:45:86:30:71:71:32:9d:41:a8:
f5:bc:a3:22:bd:b1:9a:56:c8:98:71:03:73:25:9a:01:bf:f1:
b8:1d:f7:d6:e8:eb:66:4e:97:84:68:4b:5b:70:08:0c:12:5f:
1d:92:1e:04:3e:09:e1:3c:79:4f:fa:f7:4f:45:e5:5f:1c:e4:
00:64:e6:de:5a:c7:20:3a:13:f4:d1:bf:c7:8d:6c:ed:a3:16:
08:3b:32:bd:18:18:45:01:9f:59:f2:40:b5:e1:98:c7:85:46:
fb:55:0f:e0:a5:c4:61:c9:f0:8d:13:43:4d:e2:3c:73:13:4a:
05:62:70:9c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:51 2024 by rpki-client on console-fra.rpki-client.org