Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/uloD8jS64gFfYfmTNkwIs_kLIW0.roa
File: uloD8jS64gFfYfmTNkwIs_kLIW0.roa (raw, json)
Hash identifier: SdzG9+M5b/x/AcfxzJxdVrLfdKelJi/3glH+S156H+8=
Subject key identifier: BA:5A:03:F2:34:BA:E2:01:5F:61:F9:93:36:4C:08:B3:F9:0B:21:6D
Certificate issuer: /CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Certificate serial: 018CC8DDF47F1A6653CEF16A763CD8BC03D4
Authority key identifier: A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/uloD8jS64gFfYfmTNkwIs_kLIW0.roa
Signing time: Tue 02 Jan 2024 06:30:38 +0000
ROA not before: Tue 02 Jan 2024 06:30:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51050
IP address blocks: 193.53.90.0/23 maxlen: 23
193.53.10.0/23 maxlen: 23
185.98.144.0/22 maxlen: 22
5.83.0.0/21 maxlen: 21
178.217.80.0/21 maxlen: 21
2a01:5cc0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dd:f4:7f:1a:66:53:ce:f1:6a:76:3c:d8:bc:03:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Validity
Not Before: Jan 2 06:30:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba5a03f234bae2015f61f993364c08b3f90b216d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:94:75:08:23:10:2e:76:c3:2a:5c:d6:7c:21:
a4:b7:d2:22:52:1f:d0:ec:68:26:5d:08:3d:3e:f9:
c1:9e:08:14:23:70:fd:e3:dd:08:fa:1f:c3:12:65:
c4:07:77:81:f7:82:cb:86:e1:52:b4:02:04:f9:37:
9f:63:2f:1d:d6:10:1c:5d:71:00:f3:c8:14:1b:dc:
39:da:b6:ef:00:fb:13:c6:cf:88:0b:91:3c:39:31:
d2:7f:9d:ff:94:fd:45:e2:69:97:4c:f4:97:67:80:
2e:b3:5b:d1:a2:04:05:ce:4d:42:87:68:46:8d:d2:
f8:c4:ed:05:2f:a9:e2:6f:f4:06:a1:ca:44:7f:14:
fb:4a:62:f4:71:05:a7:47:e5:b2:ef:d0:b1:c8:03:
3c:53:12:d7:1a:19:5c:65:ed:67:1e:ed:73:d2:6c:
0d:45:d5:2e:4e:ac:f6:b6:f4:4e:f5:7b:28:3b:18:
06:df:30:a9:75:6f:3d:1d:e8:9c:3f:a0:07:38:39:
b1:a9:fe:a2:d5:c5:1d:b8:d1:9e:e3:b7:25:6b:2d:
3b:68:75:ef:68:d8:fb:93:4f:25:7d:cb:73:87:4d:
6b:aa:96:80:d1:45:5f:6c:af:96:18:1c:1c:e5:ca:
ad:a6:3e:94:55:12:99:28:0a:c1:a4:3e:06:30:8d:
9c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:5A:03:F2:34:BA:E2:01:5F:61:F9:93:36:4C:08:B3:F9:0B:21:6D
X509v3 Authority Key Identifier:
keyid:A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/uloD8jS64gFfYfmTNkwIs_kLIW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.0.0/21
178.217.80.0/21
185.98.144.0/22
193.53.10.0/23
193.53.90.0/23
IPv6:
2a01:5cc0::/32
Signature Algorithm: sha256WithRSAEncryption
81:ae:f2:02:ad:40:dc:2e:3a:e7:b2:59:aa:76:1e:30:05:a2:
ee:6f:17:75:d1:19:88:8a:8c:e9:02:4b:e6:12:f0:60:62:ee:
45:17:e6:88:c5:6f:d7:02:cc:67:3a:af:62:53:f6:b9:43:70:
42:07:c0:16:25:23:51:2a:7e:24:ed:4d:83:09:72:fc:b0:43:
5e:09:48:4d:f9:0f:31:d2:c9:39:68:18:6b:52:f8:df:07:3f:
40:13:d5:5d:b7:17:b2:a3:ca:22:28:4c:43:4d:4e:78:a2:55:
48:3c:1d:80:dd:1b:ce:fe:92:f3:4e:73:f8:a6:59:dd:da:06:
cf:74:5a:f9:ed:5c:65:76:d8:b8:c8:9e:80:e0:6b:08:73:eb:
9a:fa:2d:b8:8e:e9:1f:5a:87:e1:f8:43:ce:9c:c4:f3:d4:fe:
46:44:30:7a:0e:cc:66:40:9e:c4:ca:53:7a:5c:53:ba:32:05:
b6:52:ec:4d:e4:c8:c2:b4:80:12:6f:c4:07:ef:22:13:ef:9e:
a2:12:2a:ba:88:e9:ca:ed:1b:7c:c5:04:bd:f4:e8:8d:75:6a:
8a:7a:93:bf:97:89:7f:11:cf:c0:e5:cb:b0:2f:e5:98:18:59:
d1:88:56:63:06:be:40:51:af:e4:05:1d:d7:13:c1:6e:4d:99:
d5:32:a3:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:01:30 2024 by rpki-client on console-ams.rpki-client.org