Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/EJ-eyRxuQgtLITxXUtBAVU7WO5U.roa
File: EJ-eyRxuQgtLITxXUtBAVU7WO5U.roa (raw, json)
Hash identifier: /Zq6uNhe6BdmtTGWXqKT4ozj7RggYMLVQmF2Y8BU7lo=
Subject key identifier: 10:9F:9E:C9:1C:6E:42:0B:4B:21:3C:57:52:D0:40:55:4E:D6:3B:95
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018D7E6A5A665E17E3B0AC98D46D16A8B1ED
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/EJ-eyRxuQgtLITxXUtBAVU7WO5U.roa
Signing time: Tue 06 Feb 2024 12:35:15 +0000
ROA not before: Tue 06 Feb 2024 12:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 273000
IP address blocks: 201.77.48.0/23 maxlen: 23
201.77.48.0/24 maxlen: 24
201.77.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 00:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:6a:5a:66:5e:17:e3:b0:ac:98:d4:6d:16:a8:b1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Feb 6 12:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=109f9ec91c6e420b4b213c5752d040554ed63b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ad:92:ca:dd:57:fd:ef:d8:5a:3f:ab:26:79:
dc:df:a6:b4:a5:1f:ff:e3:11:34:ac:48:bf:e9:cd:
f9:c4:66:72:3d:70:f5:79:14:79:64:df:15:36:cf:
ed:8e:ce:b0:eb:62:1d:7e:d4:9f:00:15:9e:97:27:
b9:3b:42:85:22:3b:d4:e6:49:5e:c2:72:d1:d5:12:
d7:96:5f:c3:71:bc:12:f8:26:42:d5:de:9b:6c:e7:
97:da:a1:6f:e6:79:6f:ce:4a:e7:f6:9e:46:45:43:
40:b8:a1:ed:d6:38:86:83:83:c9:c3:8f:8d:59:0a:
0c:ff:31:53:1b:d3:cb:e9:59:c2:5a:d6:af:61:b6:
26:e9:f6:7b:c3:b2:1b:d0:95:19:3a:c4:44:86:ed:
8d:1a:6d:b6:44:47:d3:5a:7e:5d:10:9b:d4:e4:3d:
d5:31:7a:6b:a9:ae:c1:3c:04:49:0c:eb:fb:7d:40:
c5:7a:59:18:65:a8:5c:29:e1:5b:5f:b2:78:7b:89:
8a:77:4f:0d:d1:a6:47:b5:de:1e:a1:58:95:9e:d7:
66:8b:23:08:56:c5:cc:17:1d:d0:8c:8f:43:64:6f:
5d:87:2a:ea:59:fc:bc:17:2d:c2:4a:ea:52:94:d8:
d2:02:9f:c8:bc:8d:f4:fc:ab:74:84:2c:53:b7:32:
78:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9F:9E:C9:1C:6E:42:0B:4B:21:3C:57:52:D0:40:55:4E:D6:3B:95
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/EJ-eyRxuQgtLITxXUtBAVU7WO5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.77.48.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:6b:39:48:bf:eb:cb:b7:b4:1c:ad:50:9e:e2:f8:1e:87:48:
dd:1b:8a:4d:8a:6c:59:f9:b6:3a:0a:fd:7f:51:ba:ff:21:55:
01:e4:8b:e1:35:f2:dc:b0:83:46:5e:b6:71:83:73:94:2f:79:
5a:38:f0:51:2e:23:a8:2e:59:a4:3e:a2:de:3e:b9:01:8b:8c:
49:c4:34:2c:6f:76:b6:b0:b6:e6:13:a9:63:d9:80:33:ea:3d:
34:4e:e8:90:72:99:46:09:9d:5a:8f:a5:5e:38:86:be:0e:54:
8d:04:82:a4:bc:a1:f0:7c:06:61:5e:8d:d7:c4:8f:9a:50:0e:
c4:d2:82:d9:0b:71:74:bd:13:4f:14:dd:e9:aa:4c:8d:2b:8c:
13:0e:7a:b5:c2:81:a1:84:12:0a:87:b2:f1:04:df:fb:3f:2f:
ee:53:68:39:71:a2:92:d9:42:36:ab:ef:4e:c9:6e:a5:b6:ad:
68:f7:b3:c1:f3:b6:31:36:ee:e6:0f:31:be:15:54:0b:2b:2e:
6e:eb:9d:b2:dc:67:b0:15:d9:d7:57:6b:19:46:07:59:cd:fa:
38:ea:5c:f2:62:c5:ee:3d:08:0c:dd:53:9d:39:55:29:4f:d9:
69:13:2a:15:70:8a:5d:1e:19:47:09:e2:b7:6a:ac:4b:57:3b:
af:06:1b:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 05:34:15 2024 by rpki-client on console-ams.rpki-client.org