Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/7e34ae-025a-4c99-9841-5d82b6bebc82/1/U-oKHZm-hg9AeVq6BnJ9mwvaplo.roa
File: U-oKHZm-hg9AeVq6BnJ9mwvaplo.roa (raw, json)
Hash identifier: eqM+lfVqg+kBWEDwbau/hK/BcCa7ffjrbU97yTlZK4g=
Subject key identifier: 53:EA:0A:1D:99:BE:86:0F:40:79:5A:BA:06:72:7D:9B:0B:DA:A6:5A
Certificate issuer: /CN=26a3871322d9b5a6e89d71cc17d25c2f3310aa74
Certificate serial: 018CC56ED032D79781476B07000346EBC78C
Authority key identifier: 26:A3:87:13:22:D9:B5:A6:E8:9D:71:CC:17:D2:5C:2F:33:10:AA:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqOHEyLZtabonXHMF9JcLzMQqnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/7e34ae-025a-4c99-9841-5d82b6bebc82/1/U-oKHZm-hg9AeVq6BnJ9mwvaplo.roa
Signing time: Mon 01 Jan 2024 14:30:22 +0000
ROA not before: Mon 01 Jan 2024 14:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 194.59.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/7e34ae-025a-4c99-9841-5d82b6bebc82/1/JqOHEyLZtabonXHMF9JcLzMQqnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/7e34ae-025a-4c99-9841-5d82b6bebc82/1/JqOHEyLZtabonXHMF9JcLzMQqnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/JqOHEyLZtabonXHMF9JcLzMQqnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d0:32:d7:97:81:47:6b:07:00:03:46:eb:c7:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26a3871322d9b5a6e89d71cc17d25c2f3310aa74
Validity
Not Before: Jan 1 14:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53ea0a1d99be860f40795aba06727d9b0bdaa65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1c:95:63:24:ca:62:4c:df:40:4b:86:74:25:
d4:8c:91:f9:d7:c7:03:94:57:b4:bc:43:07:b6:e7:
df:21:7d:1e:9c:32:f0:e6:7b:14:20:6d:0e:9c:60:
8e:c8:98:93:fe:5b:08:eb:ad:17:65:98:ce:79:d3:
55:bd:6d:10:84:8d:6c:8d:70:e1:44:49:6d:54:4d:
c6:ac:39:33:87:20:92:b3:f6:e4:d7:86:74:67:d8:
a4:ac:b1:f0:3d:e8:d7:fa:96:f7:61:d1:1e:db:69:
1c:ad:14:9c:aa:aa:fc:d2:23:1a:aa:bf:17:4e:30:
f0:d5:63:35:ae:00:b3:4f:86:69:52:95:fb:f3:9d:
23:d8:8e:95:16:df:6d:19:1b:be:1e:12:6e:13:0e:
91:a9:c1:df:05:b8:9a:2d:db:3e:f3:33:98:b1:73:
e0:f1:62:71:e9:c6:8a:71:94:2e:9f:64:fe:eb:dd:
22:38:ac:28:ce:ef:fb:27:7e:18:6a:8f:cf:59:cf:
a1:db:38:fb:5c:e7:68:4f:ef:bf:7d:33:59:47:ff:
22:de:09:75:cf:20:31:1d:ed:04:eb:04:51:a7:f9:
0e:46:97:60:6b:63:a2:38:00:19:4e:14:a1:7c:7c:
df:33:c9:5f:84:d5:fb:30:42:c6:c6:07:ed:a4:9a:
71:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:EA:0A:1D:99:BE:86:0F:40:79:5A:BA:06:72:7D:9B:0B:DA:A6:5A
X509v3 Authority Key Identifier:
keyid:26:A3:87:13:22:D9:B5:A6:E8:9D:71:CC:17:D2:5C:2F:33:10:AA:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqOHEyLZtabonXHMF9JcLzMQqnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/7e34ae-025a-4c99-9841-5d82b6bebc82/1/U-oKHZm-hg9AeVq6BnJ9mwvaplo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/7e34ae-025a-4c99-9841-5d82b6bebc82/1/JqOHEyLZtabonXHMF9JcLzMQqnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.183.0/24
Signature Algorithm: sha256WithRSAEncryption
07:95:d7:00:da:71:b8:e2:81:ce:33:55:ca:69:0f:f2:7a:73:
20:13:03:7a:50:c5:fb:a1:92:68:f7:b3:73:ea:fb:8f:c0:69:
87:54:aa:5c:03:5b:2e:57:47:41:85:f3:cc:a1:e9:41:fa:61:
50:48:c9:36:56:65:e4:30:cb:7a:b6:a6:d6:1b:69:73:3a:15:
55:dd:75:15:b2:b7:d0:8b:17:f3:17:ba:57:ca:09:c6:17:d7:
03:d0:53:f7:47:6b:58:4a:56:0a:cc:8b:e1:bd:3a:07:b6:64:
97:8a:03:b2:53:02:48:61:bb:a7:59:35:d2:09:55:7e:b2:79:
f8:fe:06:52:26:1b:51:3e:48:02:eb:57:24:9f:49:d8:9a:54:
bb:ae:9e:e5:ea:ab:c0:d2:a5:11:f4:b6:77:68:48:8c:7f:b6:
2f:61:1d:10:b6:b5:35:b7:1f:b9:bb:30:8f:e7:9e:f6:8c:f3:
fb:5a:d7:b2:bd:1d:fd:f8:34:56:86:c3:19:a0:e0:4a:a8:cf:
1d:2d:3c:e5:8d:f7:bb:5c:3b:b1:42:01:7e:09:36:6c:b1:aa:
d6:e3:be:64:84:dc:8e:c1:11:c0:05:f3:46:62:ca:57:8b:e7:
91:08:11:44:cf:fc:2b:b8:ba:c9:5e:f5:2b:45:7c:ce:e9:e6:
7f:15:31:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 14:08:23 2024 by rpki-client on console-ams.rpki-client.org