Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/7QB7SUtQl9J2uLJn8htv7Q-Geow.roa
File: 7QB7SUtQl9J2uLJn8htv7Q-Geow.roa (raw, json)
Hash identifier: 34/ziGDMjf6f7Da0KnL4ny0oMPPsZLD5BzErA0xVZDo=
Subject key identifier: ED:00:7B:49:4B:50:97:D2:76:B8:B2:67:F2:1B:6F:ED:0F:86:7A:8C
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 018DECA7FB88C9401F0B93C7B1A84D500433
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/7QB7SUtQl9J2uLJn8htv7Q-Geow.roa
Signing time: Tue 27 Feb 2024 22:20:48 +0000
ROA not before: Tue 27 Feb 2024 22:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3257
IP address blocks: 81.188.0.0/16 maxlen: 16
212.100.160.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ec:a7:fb:88:c9:40:1f:0b:93:c7:b1:a8:4d:50:04:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Feb 27 22:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed007b494b5097d276b8b267f21b6fed0f867a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e3:68:78:ce:c7:37:4d:cb:9b:3c:54:e6:bb:
c1:08:98:a8:fa:0a:0b:ef:fa:c6:41:57:15:15:40:
b8:d8:a9:e6:3b:91:73:89:fb:a2:84:fa:2c:9a:39:
f2:c7:d9:59:36:6e:35:93:8d:6c:86:47:c7:30:04:
6e:d2:57:9a:73:92:58:7b:d5:2f:ec:f8:0b:92:8e:
9c:7c:40:a2:f7:c9:ff:68:a4:72:72:f6:e4:09:6a:
f2:ca:fd:78:e9:7b:d4:16:3e:3e:70:24:89:bc:a4:
ff:aa:62:40:48:41:93:4e:7d:50:af:bf:08:95:fc:
5c:70:35:22:79:b3:17:6f:8e:78:37:31:8a:e5:27:
ce:55:51:b1:47:3f:37:c3:97:ba:fc:2a:ac:85:f5:
7f:9e:c7:d7:2a:23:8f:f2:b8:27:e6:d2:8d:af:7b:
81:75:cf:1a:67:69:11:dc:b0:20:f3:4c:0b:a9:40:
1e:c9:9d:6d:2c:4d:8f:50:70:16:5a:26:2b:bf:fb:
52:f2:38:bd:e8:96:c0:6d:fc:1b:78:6f:93:31:a9:
f0:30:41:e6:e2:66:1c:d7:cd:7d:d7:32:c8:fe:fc:
6f:78:d2:dd:59:ea:06:08:e4:82:37:fd:95:d1:ee:
86:85:4f:e8:3d:49:c2:21:f1:eb:dc:ba:4b:76:88:
7a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:00:7B:49:4B:50:97:D2:76:B8:B2:67:F2:1B:6F:ED:0F:86:7A:8C
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/7QB7SUtQl9J2uLJn8htv7Q-Geow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.188.0.0/16
212.100.160.0/19
Signature Algorithm: sha256WithRSAEncryption
17:4d:1e:92:6e:93:c5:9f:a3:19:ff:68:fd:17:8f:00:b2:4a:
27:d1:39:69:ff:c4:cb:a3:e5:01:00:e4:9c:9f:75:fe:21:77:
61:b5:67:43:9c:ef:5e:36:da:39:4b:17:96:ba:b2:2e:27:fa:
2a:d8:a0:26:46:df:37:83:35:b7:e9:7c:72:32:18:0a:8e:49:
05:9c:76:24:6d:aa:56:62:af:a6:3d:0f:5c:b5:91:74:f7:19:
c8:4d:81:1a:f4:7a:19:31:38:6d:42:dc:cf:57:8d:44:e6:ac:
80:3d:4d:73:86:ff:1a:5e:c2:91:05:25:dd:6e:21:78:c9:70:
b4:fc:c2:ca:1c:d7:bf:68:33:2a:c1:af:b6:8b:80:e7:12:a4:
c5:f9:3e:b2:42:03:f0:02:c8:a0:21:3c:dc:3b:69:65:2d:2c:
7a:6d:ad:69:29:d1:99:36:3d:4e:37:66:c4:a3:a2:35:2e:11:
b3:a0:aa:fb:62:b5:d2:91:91:d2:78:2c:23:a8:38:f2:06:e5:
da:6b:4c:4a:f3:41:7d:ca:2c:ec:a2:98:26:09:7f:33:07:80:
4c:2a:3d:c6:98:96:1c:1b:50:54:47:10:37:a3:c7:d1:9b:44:
e1:b9:fd:66:ee:cf:fe:ab:96:3f:f0:b0:fa:fd:94:04:e6:ab:
bc:7f:7d:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 16:38:01 2024 by rpki-client on console-fra.rpki-client.org