Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/U3BjNRSp7b_kWot0GIRWjwWBzSg.roa
File: U3BjNRSp7b_kWot0GIRWjwWBzSg.roa (raw, json)
Hash identifier: KVJnOCNVRE+dG6rE/DqPqZH+mLpDk6aX/eyn1xauf1k=
Subject key identifier: 53:70:63:35:14:A9:ED:BF:E4:5A:8B:74:18:84:56:8F:05:81:CD:28
Certificate issuer: /CN=b9461987d000d8e618854ce4e3ff819ff8f4d244
Certificate serial: 018DF3DC107583E31740FE58160FB3CF921D
Authority key identifier: B9:46:19:87:D0:00:D8:E6:18:85:4C:E4:E3:FF:81:9F:F8:F4:D2:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/U3BjNRSp7b_kWot0GIRWjwWBzSg.roa
Signing time: Thu 29 Feb 2024 07:55:02 +0000
ROA not before: Thu 29 Feb 2024 07:55:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197837
IP address blocks: 94.154.56.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 07:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f3:dc:10:75:83:e3:17:40:fe:58:16:0f:b3:cf:92:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9461987d000d8e618854ce4e3ff819ff8f4d244
Validity
Not Before: Feb 29 07:55:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5370633514a9edbfe45a8b741884568f0581cd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:05:e8:b5:39:9b:7a:c4:6b:9c:fc:2f:e2:5f:
35:22:cc:e8:cf:5e:d5:fa:06:9b:94:9d:12:f3:1a:
f7:6e:07:b0:4a:db:31:c4:d5:3b:a0:ca:b4:dc:90:
73:be:39:c4:9c:a1:85:65:52:89:4e:fa:f3:82:63:
5b:a9:1a:22:dd:88:1c:c3:f8:b8:5b:6c:f6:6b:e3:
23:40:8f:e0:67:2a:77:54:2b:4e:31:05:e2:39:bc:
eb:35:e8:4a:46:25:7a:c5:07:57:72:e9:e0:3a:b4:
93:0a:1e:2b:df:fb:fe:a5:ea:74:88:07:b0:3f:af:
16:a3:f1:69:65:b0:7b:93:0c:45:1b:8d:2e:69:76:
19:06:76:b7:b5:fd:45:8f:1d:af:41:c6:db:1a:2a:
9a:b1:16:55:0e:3a:d3:a3:ec:8f:6f:c9:92:02:91:
a8:39:44:b7:3b:43:d7:83:5c:4f:50:3a:e0:9e:64:
bf:a4:57:2c:0c:ca:be:1f:24:7e:ce:69:72:19:66:
e9:60:78:5f:d9:68:61:86:10:59:7c:bc:a3:aa:d8:
1a:d9:80:06:e3:29:c0:43:fe:30:f6:52:a4:0b:52:
b1:d4:f5:6b:15:ad:d6:47:fd:57:f5:e0:93:fa:3e:
56:95:f2:e5:bb:0d:e5:e9:55:f5:f1:d2:98:f5:75:
dd:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:70:63:35:14:A9:ED:BF:E4:5A:8B:74:18:84:56:8F:05:81:CD:28
X509v3 Authority Key Identifier:
keyid:B9:46:19:87:D0:00:D8:E6:18:85:4C:E4:E3:FF:81:9F:F8:F4:D2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/U3BjNRSp7b_kWot0GIRWjwWBzSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/2ca7c4-15bb-4728-8c9b-ae1799a3d914/1/uUYZh9AA2OYYhUzk4_-Bn_j00kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.56.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:0e:3e:dc:63:1c:89:67:87:d3:44:53:5a:ca:8b:43:1d:e9:
f8:dd:3d:ec:31:44:76:54:13:54:b8:89:1a:93:3a:2d:d8:e7:
68:15:9c:70:ba:b0:b9:81:a1:40:65:98:df:d7:6c:01:e3:c7:
eb:b7:d8:a7:18:d9:70:4d:33:d7:8b:d4:14:84:91:01:72:11:
fb:35:bb:75:04:c0:7a:d4:99:5c:7e:b3:18:4c:fe:69:d6:36:
ec:90:62:2a:ae:79:d9:28:ae:43:4a:d9:ea:15:bc:9d:05:51:
0f:4f:d1:e4:df:b7:23:51:98:a1:da:4d:b7:d1:4b:36:8a:a3:
d4:b2:7a:d9:e9:d7:63:6f:37:d7:89:53:3f:61:95:f8:cb:06:
37:ee:5b:91:a7:b9:82:68:8d:d6:98:08:30:88:6c:c7:16:14:
ea:7b:a4:24:b9:32:87:af:a7:00:39:94:45:a2:f9:22:d0:bc:
48:5b:1e:e2:ad:e5:e1:18:45:f7:61:00:3f:aa:74:74:b9:08:
0e:92:a7:fc:82:ae:ff:4f:20:0f:7b:4f:d5:d3:6d:29:d6:e1:
af:1e:2a:37:19:81:58:6d:d7:de:c8:cc:3a:8f:db:5c:2f:24:
ca:cd:d9:f4:e2:e9:70:bb:f2:56:84:65:5b:8c:2f:2c:e4:a6:
76:3d:19:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 16:52:44 2024 by rpki-client on console-ams.rpki-client.org