Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/uqbXq2oRR6D9VrUL6KzZ49lc38U.roa
File: uqbXq2oRR6D9VrUL6KzZ49lc38U.roa (raw, json)
Hash identifier: tVR8djlMN8y8WCPxi6P4EGotOOv1+j+Fwu4esGGjCik=
Subject key identifier: BA:A6:D7:AB:6A:11:47:A0:FD:56:B5:0B:E8:AC:D9:E3:D9:5C:DF:C5
Certificate issuer: /CN=3749975439fe4ffa9310262acbdd5f723cee2223
Certificate serial: 018CC64B5C0A7CD17A45F03EEF376F7B8B06
Authority key identifier: 37:49:97:54:39:FE:4F:FA:93:10:26:2A:CB:DD:5F:72:3C:EE:22:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N0mXVDn-T_qTECYqy91fcjzuIiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/uqbXq2oRR6D9VrUL6KzZ49lc38U.roa
Signing time: Mon 01 Jan 2024 18:31:16 +0000
ROA not before: Mon 01 Jan 2024 18:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197886
IP address blocks: 45.12.40.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/N0mXVDn-T_qTECYqy91fcjzuIiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/N0mXVDn-T_qTECYqy91fcjzuIiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/N0mXVDn-T_qTECYqy91fcjzuIiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:5c:0a:7c:d1:7a:45:f0:3e:ef:37:6f:7b:8b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3749975439fe4ffa9310262acbdd5f723cee2223
Validity
Not Before: Jan 1 18:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baa6d7ab6a1147a0fd56b50be8acd9e3d95cdfc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:bf:62:07:db:d3:e0:e9:0b:cd:43:e0:00:d1:
4c:66:e9:82:f8:84:0b:86:46:78:ed:80:a1:34:f4:
18:a9:1c:4b:ad:38:11:e9:bc:5d:cc:17:a0:98:0c:
5c:e4:ab:59:80:9d:7f:5e:91:00:da:b2:70:96:b0:
bb:29:b1:ed:80:f0:db:c1:cd:66:d6:09:e8:d4:b9:
0a:0c:55:18:22:13:04:e1:86:ea:55:1f:86:5a:f4:
8a:3d:50:11:e0:ab:3f:7f:06:f4:0b:cf:8b:89:05:
04:ef:90:7c:60:85:4a:b9:c2:7a:1a:6e:6c:41:ec:
53:d9:bb:b0:04:d1:f3:6f:46:55:a3:c9:69:0e:29:
5e:50:5c:f7:a5:48:28:02:bd:1d:fa:aa:95:a6:16:
f6:6c:58:4a:e5:5c:be:cc:53:62:f8:1f:be:a4:0d:
11:df:21:42:45:55:ef:0c:37:99:cf:59:6a:37:fa:
77:32:8c:ae:c6:f0:ee:c0:31:c5:81:d7:82:7e:9d:
e8:95:18:c9:7c:28:27:72:80:bb:96:39:ae:b3:a8:
41:88:2c:63:82:4e:dd:5c:b7:3a:5e:25:2a:e1:79:
0f:1d:82:41:2e:84:d7:88:fb:b3:47:7c:e0:55:eb:
a6:d9:3e:14:85:76:e3:2f:cd:fa:b2:32:bf:f2:a9:
1a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A6:D7:AB:6A:11:47:A0:FD:56:B5:0B:E8:AC:D9:E3:D9:5C:DF:C5
X509v3 Authority Key Identifier:
keyid:37:49:97:54:39:FE:4F:FA:93:10:26:2A:CB:DD:5F:72:3C:EE:22:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N0mXVDn-T_qTECYqy91fcjzuIiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/uqbXq2oRR6D9VrUL6KzZ49lc38U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/N0mXVDn-T_qTECYqy91fcjzuIiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.40.0/22
Signature Algorithm: sha256WithRSAEncryption
93:3a:23:72:16:f0:9e:9e:29:52:a6:e2:d2:af:a5:23:f4:13:
e9:93:20:84:6c:ec:0a:80:eb:50:65:c9:1d:df:f7:a5:03:dd:
37:df:53:d9:82:da:e3:e9:84:86:e4:3f:f1:9b:37:cf:92:a4:
15:43:1d:d7:51:91:07:29:f1:f9:c6:b0:3a:57:47:56:00:40:
db:1f:63:8d:95:63:d5:b3:e3:c3:96:ef:ee:27:d3:5a:ad:49:
ac:b6:52:0b:c3:ee:2f:1e:4e:94:05:80:20:f1:0c:69:88:0d:
36:f4:5f:54:e5:7d:5f:83:75:dd:ab:f3:35:f3:01:af:4b:91:
6e:77:03:c6:60:5c:c3:05:0f:ff:fb:23:7c:2a:18:a2:0e:48:
ed:f6:43:e2:94:c0:3f:f5:73:83:ed:69:2a:11:94:b7:62:b9:
99:58:48:cf:07:f8:93:00:41:ec:34:c7:53:b8:38:25:8a:b0:
24:f2:ba:c0:8d:db:66:a7:e7:ec:eb:15:17:35:67:9c:8d:ac:
2d:13:ed:a7:cd:62:d9:39:41:b8:e3:08:2b:5b:71:48:ff:4f:
03:7c:5c:2a:4f:72:51:b3:34:22:32:8e:33:ce:c4:01:0e:57:
d2:13:98:85:fa:f4:ad:8b:c5:72:29:bc:b5:e9:68:91:1f:20:
53:4e:56:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:22:42 2024 by rpki-client on console-fra.rpki-client.org