Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/1e051e-3cf8-4763-b3cf-a746a8120e9b/1/2Uj8qhc_QzLiWUho8uanAFTkIN0.roa
File: 2Uj8qhc_QzLiWUho8uanAFTkIN0.roa (raw, json)
Hash identifier: jn5u7pUpMdQu5riz74WGmiQHaGW9geHLoo5e6mWq04Q=
Subject key identifier: D9:48:FC:AA:17:3F:43:32:E2:59:48:68:F2:E6:A7:00:54:E4:20:DD
Certificate issuer: /CN=c637cccd5cda01895b189cca95f296b5cb30c7c8
Certificate serial: 018CC4245D79791CA4AE55A1AA7902A8FFAF
Authority key identifier: C6:37:CC:CD:5C:DA:01:89:5B:18:9C:CA:95:F2:96:B5:CB:30:C7:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xjfMzVzaAYlbGJzKlfKWtcswx8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/1e051e-3cf8-4763-b3cf-a746a8120e9b/1/2Uj8qhc_QzLiWUho8uanAFTkIN0.roa
Signing time: Mon 01 Jan 2024 08:29:26 +0000
ROA not before: Mon 01 Jan 2024 08:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30791
IP address blocks: 193.7.168.0/21 maxlen: 21
2a0d:1700::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/1e051e-3cf8-4763-b3cf-a746a8120e9b/1/xjfMzVzaAYlbGJzKlfKWtcswx8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/1e051e-3cf8-4763-b3cf-a746a8120e9b/1/xjfMzVzaAYlbGJzKlfKWtcswx8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/xjfMzVzaAYlbGJzKlfKWtcswx8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:5d:79:79:1c:a4:ae:55:a1:aa:79:02:a8:ff:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c637cccd5cda01895b189cca95f296b5cb30c7c8
Validity
Not Before: Jan 1 08:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d948fcaa173f4332e2594868f2e6a70054e420dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cf:a1:c1:2c:ad:17:53:61:82:5e:40:22:6e:
4d:74:48:ad:35:a0:c9:33:25:42:15:92:00:b4:75:
18:3b:97:c6:6b:a9:ba:7a:d6:54:50:fa:a3:76:00:
6e:78:d4:0f:11:2f:39:a8:22:ee:01:f6:63:08:f0:
59:12:e5:8c:4e:c8:14:85:76:1c:98:84:c1:57:0e:
46:b4:e4:22:b3:c4:00:44:f9:8f:87:5b:43:c6:95:
f5:5c:92:5a:89:cc:85:d9:fd:6b:13:ec:6a:6c:f1:
11:14:e3:c1:1d:32:e5:d7:5f:a4:d2:f3:3a:ca:f8:
16:60:56:0f:00:f4:9c:d8:d2:8e:4d:a7:78:15:ee:
26:6a:49:4c:50:51:8e:04:d7:d0:0b:16:33:33:da:
ce:d2:dd:d2:ce:83:13:6e:16:3f:d1:db:8c:f0:55:
f6:94:85:cf:33:5d:0b:0b:6b:60:da:40:07:0d:09:
d8:69:0e:dc:8f:a6:b4:07:05:ec:a5:83:b1:bc:de:
27:31:90:cf:77:eb:98:9e:e8:33:38:0a:0c:c1:a3:
73:0f:12:64:8c:68:d7:a7:b0:bf:8b:72:71:09:e1:
b5:b0:a7:6c:da:99:c3:a9:dc:e0:03:50:63:05:c4:
34:c8:ec:00:3c:4d:12:37:54:08:cc:9d:6b:92:54:
54:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:48:FC:AA:17:3F:43:32:E2:59:48:68:F2:E6:A7:00:54:E4:20:DD
X509v3 Authority Key Identifier:
keyid:C6:37:CC:CD:5C:DA:01:89:5B:18:9C:CA:95:F2:96:B5:CB:30:C7:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xjfMzVzaAYlbGJzKlfKWtcswx8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1e051e-3cf8-4763-b3cf-a746a8120e9b/1/2Uj8qhc_QzLiWUho8uanAFTkIN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1e051e-3cf8-4763-b3cf-a746a8120e9b/1/xjfMzVzaAYlbGJzKlfKWtcswx8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.7.168.0/21
IPv6:
2a0d:1700::/29
Signature Algorithm: sha256WithRSAEncryption
0f:d4:70:13:bc:96:a5:34:20:0a:5b:36:75:e5:62:64:dc:d7:
2b:e9:be:8d:87:8f:c0:25:7f:60:1b:0e:9b:1c:a2:3d:84:fd:
14:80:eb:29:35:fe:03:28:27:5f:ac:8e:6e:61:13:ca:65:ea:
ba:32:75:9c:80:7c:1f:fb:de:6c:95:88:42:66:37:01:3b:84:
84:f6:99:63:9c:0f:76:8e:31:8c:ec:2f:a7:39:7d:2d:4a:bc:
f3:96:37:de:cd:a5:61:15:d1:4d:77:4b:11:9c:64:37:70:2c:
1c:6a:c5:83:ff:68:e3:da:5d:4c:45:9c:05:32:02:5c:63:25:
4a:28:16:8f:35:76:42:79:c3:cf:c2:9b:e3:50:76:11:b1:26:
f2:17:9b:6c:9c:f3:fa:f5:f0:73:74:45:59:d0:c8:10:8b:9e:
9b:9d:b9:57:04:c4:55:49:3e:10:53:08:ec:64:71:df:02:37:
5c:18:7d:cf:ed:45:4e:37:f2:36:70:30:0c:ae:e3:56:78:53:
f1:2b:2a:16:8c:0d:c5:34:63:9e:e7:8e:02:fa:16:69:5c:04:
c4:34:35:be:0b:fa:9d:1f:2d:cc:32:5f:01:23:19:b7:00:dd:
fd:57:df:cf:38:3c:74:b7:53:81:12:e0:10:f4:52:b3:54:71:
c0:c4:f7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:46:20 2024 by rpki-client on console-fra.rpki-client.org