Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/UoJ99cerzzkFQ75RS8f713IqW6M.roa
File: UoJ99cerzzkFQ75RS8f713IqW6M.roa (raw, json)
Hash identifier: cDOEN8C/Vf3nJ5vtsqSsHNahY1mJIFqzu16xPoydo4w=
Subject key identifier: 52:82:7D:F5:C7:AB:CF:39:05:43:BE:51:4B:C7:FB:D7:72:2A:5B:A3
Certificate issuer: /CN=0ecc8ca4bed1955b5155bc090c560efba3f5a9ad
Certificate serial: 018CC8DE0E06B1B54CFF487424D0C715AC5C
Authority key identifier: 0E:CC:8C:A4:BE:D1:95:5B:51:55:BC:09:0C:56:0E:FB:A3:F5:A9:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DsyMpL7RlVtRVbwJDFYO-6P1qa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/UoJ99cerzzkFQ75RS8f713IqW6M.roa
Signing time: Tue 02 Jan 2024 06:30:44 +0000
ROA not before: Tue 02 Jan 2024 06:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20900
IP address blocks: 91.238.150.0/23 maxlen: 24
195.78.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/DsyMpL7RlVtRVbwJDFYO-6P1qa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/DsyMpL7RlVtRVbwJDFYO-6P1qa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DsyMpL7RlVtRVbwJDFYO-6P1qa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:0e:06:b1:b5:4c:ff:48:74:24:d0:c7:15:ac:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecc8ca4bed1955b5155bc090c560efba3f5a9ad
Validity
Not Before: Jan 2 06:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52827df5c7abcf390543be514bc7fbd7722a5ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0e:f2:d8:55:16:41:bf:b5:a4:5c:1a:a8:5c:
25:17:ae:ea:78:a1:f8:83:e8:92:bf:42:e6:97:c3:
67:8c:7d:b8:cc:72:d1:45:e1:50:fc:71:56:ac:bc:
87:36:d3:3b:33:fa:7d:96:76:92:5c:eb:60:5e:ce:
c0:2d:84:09:47:c6:0e:78:10:f3:0c:5d:40:66:95:
39:e1:10:17:9e:c3:77:06:47:2d:41:0c:29:ee:7f:
2f:75:69:1f:bf:96:3d:20:25:b6:d6:99:3b:76:57:
e4:e6:19:28:9f:df:b4:8e:58:18:ea:42:46:9d:83:
ce:89:3c:c9:e9:fe:79:c3:70:2b:af:12:e1:05:28:
e0:96:2f:8b:4a:ae:be:fc:61:01:47:1b:57:c6:48:
37:b8:c3:4f:88:5d:c7:da:de:91:47:3a:67:64:21:
d4:31:60:8e:c8:92:4a:f2:75:77:b3:10:12:81:9e:
e5:09:0a:4e:18:98:38:d5:fb:9e:4a:2d:a0:68:cf:
47:28:71:0d:7b:ee:f1:2f:71:d6:c9:14:40:ec:60:
20:50:05:6b:6f:98:cb:25:54:30:08:fc:31:55:e0:
34:9f:7f:8b:fc:ae:57:ad:48:d8:ff:bf:78:e3:52:
fa:14:77:cd:b2:68:00:1f:d1:04:58:e8:e9:4a:7c:
1f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:82:7D:F5:C7:AB:CF:39:05:43:BE:51:4B:C7:FB:D7:72:2A:5B:A3
X509v3 Authority Key Identifier:
keyid:0E:CC:8C:A4:BE:D1:95:5B:51:55:BC:09:0C:56:0E:FB:A3:F5:A9:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DsyMpL7RlVtRVbwJDFYO-6P1qa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/UoJ99cerzzkFQ75RS8f713IqW6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/DsyMpL7RlVtRVbwJDFYO-6P1qa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.150.0/23
195.78.82.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:2b:3d:0f:9f:02:41:e7:4f:7e:eb:70:c5:ab:51:4a:8d:fc:
3c:75:b7:24:b9:78:23:a6:63:d1:40:49:b7:78:b4:67:59:49:
49:c2:75:4b:4e:7e:d2:b6:3f:57:2c:3a:a1:7b:34:50:1b:4d:
5d:86:ac:60:c0:a5:be:5b:b8:38:d1:78:a9:da:ec:6a:f5:a7:
e2:bb:ed:b7:29:93:b9:35:48:83:5c:37:ba:8f:d9:e8:92:79:
43:fa:73:d4:1f:78:18:c7:84:f6:16:48:3d:22:52:67:e0:56:
36:11:90:41:19:8b:6d:99:df:df:b2:79:cf:12:10:05:e7:25:
31:ce:59:2a:82:15:53:2a:b0:b6:3f:b2:34:b6:e8:66:c6:df:
27:c4:e7:c1:59:5d:13:e0:7f:98:a5:be:10:4e:b6:66:62:d5:
e6:62:59:9b:30:ea:0f:91:2e:16:04:ed:aa:ad:77:2a:97:31:
39:5c:e5:9a:3f:6f:67:c9:c2:65:7f:4f:cb:7a:70:8f:ba:15:
49:83:0f:8b:15:4d:fd:8a:4e:f1:b1:e2:05:c3:69:ea:18:8e:
82:c8:21:0f:18:91:19:fd:5a:2d:fa:31:cb:1b:a5:57:76:15:
df:b6:06:4a:02:40:9c:a6:24:e6:a2:40:c4:c0:20:a1:92:c7:
fd:2f:e4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:37:11 2024 by rpki-client on console-ams.rpki-client.org