Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Uya7EueLss8_2-VzHfmi7HJMhF4.roa
File: Uya7EueLss8_2-VzHfmi7HJMhF4.roa (raw, json)
Hash identifier: 6H4N0SyY3RUlpWKaeCsyVlEl58zDtn0B19ctVOCCOSg=
Subject key identifier: 53:26:BB:12:E7:8B:B2:CF:3F:DB:E5:73:1D:F9:A2:EC:72:4C:84:5E
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018CD47D91FE23CD34B69DDBC29445924B03
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Uya7EueLss8_2-VzHfmi7HJMhF4.roa
Signing time: Thu 04 Jan 2024 12:40:48 +0000
ROA not before: Thu 04 Jan 2024 12:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204741
IP address blocks: 217.76.253.0/24 maxlen: 24
85.209.74.0/24 maxlen: 24
85.209.72.0/24 maxlen: 24
85.209.72.0/22 maxlen: 22
85.209.75.0/24 maxlen: 24
85.209.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d4:7d:91:fe:23:cd:34:b6:9d:db:c2:94:45:92:4b:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 4 12:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5326bb12e78bb2cf3fdbe5731df9a2ec724c845e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:65:5b:fe:8c:13:8f:1e:8c:2c:db:54:16:d7:
45:25:0b:fa:6e:e9:1e:0e:de:82:b2:2e:ff:68:1a:
99:f0:60:6d:8e:f7:8f:dd:06:c1:f4:e2:1a:67:f4:
f7:c0:c7:a1:f5:a2:23:b8:64:9f:ee:27:ac:57:7b:
22:c8:80:7e:45:aa:13:68:ef:c0:0f:a1:23:94:1a:
a5:05:83:1f:f9:1d:a1:2d:09:8a:0a:db:35:fb:ff:
ee:4b:24:55:22:35:07:7a:d8:26:1e:86:9b:a5:3d:
ea:81:dd:4b:e9:88:f7:50:da:8b:2f:ee:64:6e:30:
38:ee:7d:f2:4c:34:b5:ce:36:6b:83:3f:0c:1e:26:
9e:e7:6c:78:aa:ad:31:07:96:57:77:be:79:6f:d8:
88:b1:ed:6a:54:f6:1d:ef:c1:d2:75:8b:fc:92:df:
65:fe:1b:62:ad:0d:f9:c6:fc:ce:30:e7:f2:6a:ab:
8b:9b:61:b5:70:d7:46:e1:eb:9c:c5:88:c3:ac:b9:
ba:cb:a6:16:56:8d:a3:82:ab:97:1d:ae:da:72:f2:
e9:7f:6f:77:06:57:cb:2b:d8:28:bb:73:44:95:b2:
90:c4:47:52:ae:e6:ec:0b:22:19:2a:ef:8d:c9:92:
0b:67:8d:5f:d3:5b:ea:13:55:48:41:c0:45:fe:14:
18:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:26:BB:12:E7:8B:B2:CF:3F:DB:E5:73:1D:F9:A2:EC:72:4C:84:5E
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Uya7EueLss8_2-VzHfmi7HJMhF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.72.0/22
217.76.253.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:50:14:e2:ac:ff:28:f0:8f:c2:34:f0:37:ab:d6:b7:b9:3b:
b6:39:96:35:6c:f5:e0:86:d5:62:f0:fd:c5:b8:5b:42:ed:55:
65:ae:e3:e6:68:aa:17:0c:92:8b:74:8a:87:f7:4b:4f:93:4b:
fe:7c:69:c9:31:65:48:f1:82:c0:b7:92:5e:ba:8b:1d:90:4c:
99:7d:b1:3f:bb:c7:03:d2:db:0e:23:a6:af:6f:62:fd:fe:93:
7a:a3:17:27:85:87:1c:46:68:9f:1e:2f:39:ae:7b:a2:64:96:
b5:99:78:24:53:c3:18:e0:09:c1:26:f9:de:e2:cb:95:1a:48:
9d:cc:25:ec:49:84:e6:cb:6c:1b:f0:2a:ab:da:37:28:30:b7:
f8:33:2b:65:29:7a:94:43:fe:b4:c8:69:58:db:66:6c:2d:f8:
5f:23:fa:49:7a:f4:0e:7e:64:f2:99:e0:76:c0:24:37:06:ae:
0d:c1:53:53:09:7e:98:2b:ca:9d:87:18:93:1e:01:8e:1f:f5:
e7:3e:26:2b:a1:e7:e1:76:a1:6b:1d:f1:45:9a:5e:4e:5a:bd:
4d:09:2e:60:73:94:3e:de:b4:fb:d7:d6:89:63:c6:18:0c:f8:
78:74:36:bb:d2:d5:df:07:1f:39:e8:09:42:46:c6:11:3a:a7:
5f:d4:7c:79
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzUfZH+I800tp3bwpRFkksDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjQwMTA0MTI0MDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzI2YmIxMmU3OGJiMmNmM2ZkYmU1NzMxZGY5YTJlYzcyNGM4NDVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2Vb/owTjx6MLNtUFtdFJQv6buke
Dt6Csi7/aBqZ8GBtjveP3QbB9OIaZ/T3wMeh9aIjuGSf7iesV3siyIB+RaoTaO/A
D6EjlBqlBYMf+R2hLQmKCts1+//uSyRVIjUHetgmHoabpT3qgd1L6Yj3UNqLL+5k
bjA47n3yTDS1zjZrgz8MHiae52x4qq0xB5ZXd755b9iIse1qVPYd78HSdYv8kt9l
/htirQ35xvzOMOfyaquLm2G1cNdG4eucxYjDrLm6y6YWVo2jgquXHa7acvLpf293
BlfLK9gou3NElbKQxEdSrubsCyIZKu+NyZILZ41f01vqE1VIQcBF/hQYgwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFMmuxLni7LPP9vlcx35ouxyTIReMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvVXlhN0V1ZUxzczhfMi1WekhmbWk3SEpNaEY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCVdFIAwQA
2Uz9MA0GCSqGSIb3DQEBCwUAA4IBAQAqUBTirP8o8I/CNPA3q9a3uTu2OZY1bPXg
htVi8P3FuFtC7VVlruPmaKoXDJKLdIqH90tPk0v+fGnJMWVI8YLAt5JeuosdkEyZ
fbE/u8cD0tsOI6avb2L9/pN6oxcnhYccRmifHi85rnuiZJa1mXgkU8MY4AnBJvne
4suVGkidzCXsSYTmy2wb8Cqr2jcoMLf4MytlKXqUQ/60yGlY22ZsLfhfI/pJevQO
fmTymeB2wCQ3Bq4NwVNTCX6YK8qdhxiTHgGOH/XnPiYroefhdqFrHfFFml5OWr1N
CS5gc5Q+3rT719aJY8YYDPh4dDa70tXfBx856AlCRsYROqdf1Hx5
-----END CERTIFICATE-----
Generated at Thu Jun 13 05:14:57 2024 by rpki-client on console-fra.rpki-client.org