Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/UucdaLtXbkj7u1bVujOQaf7NRTA.roa
File: UucdaLtXbkj7u1bVujOQaf7NRTA.roa (raw, json)
Hash identifier: Snww6KZSHPEuXaL7xfzLSzavsS6EqtgGJXABHdEDxMc=
Subject key identifier: 52:E7:1D:68:BB:57:6E:48:FB:BB:56:D5:BA:33:90:69:FE:CD:45:30
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 0190E8B43E167BCCFE95934ED9A47380E138
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/UucdaLtXbkj7u1bVujOQaf7NRTA.roa
Signing time: Thu 25 Jul 2024 07:04:04 +0000
ROA not before: Thu 25 Jul 2024 07:04:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210148
IP address blocks: 94.76.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e8:b4:3e:16:7b:cc:fe:95:93:4e:d9:a4:73:80:e1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jul 25 07:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52e71d68bb576e48fbbb56d5ba339069fecd4530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:18:8f:2f:bc:33:2b:ec:92:0f:46:ea:1f:fd:
99:a2:35:6b:4e:04:f4:3e:70:a5:79:61:d0:eb:a4:
c4:83:cc:1e:6a:34:fd:88:2f:7a:60:de:11:6f:b0:
34:2a:47:04:ba:cf:1c:9e:ce:86:87:30:ff:90:a6:
fd:9e:7b:a5:5e:c4:81:40:4f:7b:55:6c:41:4b:eb:
a7:72:34:ab:5f:cc:11:c1:99:62:05:9e:dd:b8:3d:
b0:cd:ac:48:f5:8a:4a:cb:9c:c7:cc:6b:ba:a2:8e:
7e:22:19:0a:f1:b7:5e:34:37:4d:1a:1d:3e:f2:06:
65:70:69:f8:e6:a4:ef:eb:84:89:80:ee:ff:1b:50:
2e:ea:c1:34:4d:04:64:08:2b:e2:77:99:e6:6a:d3:
fb:87:c4:ad:ed:b0:3a:62:93:b1:a6:db:a4:4e:10:
18:f8:40:1c:81:0e:70:84:1d:93:e0:95:a9:3f:25:
f7:cd:98:cc:05:0b:c3:29:84:59:3e:2a:65:91:86:
2e:ab:02:45:b0:f8:d1:5c:72:f3:e5:30:e7:4f:19:
50:c4:d8:36:df:8b:c5:ca:75:d9:0f:ea:39:0b:54:
b6:3a:b5:eb:dc:0c:1b:40:9d:5d:d4:2c:53:eb:96:
a6:dd:c3:d1:c9:ea:19:43:c9:a8:01:4e:b7:28:f3:
5a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E7:1D:68:BB:57:6E:48:FB:BB:56:D5:BA:33:90:69:FE:CD:45:30
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/UucdaLtXbkj7u1bVujOQaf7NRTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.76.148.0/24
Signature Algorithm: sha256WithRSAEncryption
28:10:72:6a:50:31:f8:a3:7a:97:5a:8e:c3:01:fa:6b:22:a9:
ac:39:72:8f:95:cc:42:03:9e:70:f1:c8:48:ae:fd:1e:1a:91:
5e:90:fd:53:cd:c1:00:9a:88:8e:35:9c:b3:f5:07:03:2b:6e:
7f:23:17:34:94:88:02:88:6b:3b:aa:d5:ac:e7:fa:bb:07:6a:
19:85:f1:d6:0d:95:5b:d9:3a:e8:00:08:b6:62:c6:1e:22:32:
24:5c:8b:40:77:1e:25:2f:6a:11:6b:4d:d5:ef:20:59:12:9c:
a7:e5:87:54:7f:52:aa:50:51:5f:46:9f:d3:b9:71:81:4c:de:
84:01:21:8f:d6:50:de:eb:c9:42:c2:84:ba:0f:1c:03:99:b4:
0a:79:4d:3a:de:d3:87:82:a1:f7:a6:ea:e1:6c:fc:d3:68:d3:
ab:f6:dc:94:62:3a:cb:54:01:5d:15:8f:b3:b0:36:ff:97:9b:
2d:81:83:60:dc:5a:14:b4:23:a3:59:ef:2d:55:ec:a1:8e:37:
53:37:e9:64:6a:a8:ed:86:d9:aa:be:d0:5c:6f:ea:af:58:25:
2a:ff:94:1e:da:00:b5:8d:a3:40:0c:bf:35:4d:74:bd:d8:28:
f1:71:93:94:29:94:96:34:d5:25:74:53:23:c0:f8:16:d8:b6:
c3:d3:10:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDotD4We8z+lZNO2aRzgOE4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYWYxN2IwMDE1ZGJiN2NkOTkyZjI2Y2RmZjAxYzRlMjYy
MGI3M2UwHhcNMjQwNzI1MDcwNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmU3MWQ2OGJiNTc2ZTQ4ZmJiYjU2ZDViYTMzOTA2OWZlY2Q0NTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhiPL7wzK+ySD0bqH/2ZojVrTgT0
PnCleWHQ66TEg8weajT9iC96YN4Rb7A0KkcEus8cns6GhzD/kKb9nnulXsSBQE97
VWxBS+uncjSrX8wRwZliBZ7duD2wzaxI9YpKy5zHzGu6oo5+IhkK8bdeNDdNGh0+
8gZlcGn45qTv64SJgO7/G1Au6sE0TQRkCCvid5nmatP7h8St7bA6YpOxptukThAY
+EAcgQ5whB2T4JWpPyX3zZjMBQvDKYRZPiplkYYuqwJFsPjRXHLz5TDnTxlQxNg2
34vFynXZD+o5C1S2OrXr3AwbQJ1d1CxT65am3cPRyeoZQ8moAU63KPNatQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFLnHWi7V25I+7tW1bozkGn+zUUwMB8GA1UdIwQY
MBaAFNqvF7ABXbt82ZLybN/wHE4mILc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAt
Y2YwNmQxOTgzYmExLzEvVXVjZGFMdFhia2o3dTFiVnVqT1FhZjdOUlRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAtY2YwNmQxOTgzYmEx
LzEvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXkyUMA0G
CSqGSIb3DQEBCwUAA4IBAQAoEHJqUDH4o3qXWo7DAfprIqmsOXKPlcxCA55w8chI
rv0eGpFekP1TzcEAmoiONZyz9QcDK25/Ixc0lIgCiGs7qtWs5/q7B2oZhfHWDZVb
2TroAAi2YsYeIjIkXItAdx4lL2oRa03V7yBZEpyn5YdUf1KqUFFfRp/TuXGBTN6E
ASGP1lDe68lCwoS6DxwDmbQKeU063tOHgqH3purhbPzTaNOr9tyUYjrLVAFdFY+z
sDb/l5stgYNg3FoUtCOjWe8tVeyhjjdTN+lkaqjthtmqvtBcb+qvWCUq/5Qe2gC1
jaNADL81TXS92CjxcZOUKZSWNNUldFMjwPgW2LbD0xDf
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:18:56 2024 by rpki-client on console-fra.rpki-client.org