Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UY7eywcZTmjQY-rX5HuL4XBL8qs.roa
File: UY7eywcZTmjQY-rX5HuL4XBL8qs.roa (raw, json)
Hash identifier: h7SlAM2FRlJC/MLsBuWwmdQo/Z6KIDj8wJpTo6EIjNY=
Subject key identifier: 51:8E:DE:CB:07:19:4E:68:D0:63:EA:D7:E4:7B:8B:E1:70:4B:F2:AB
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01914F99B890FEA3C582860EE77FC4E9BD5F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UY7eywcZTmjQY-rX5HuL4XBL8qs.roa
Signing time: Wed 14 Aug 2024 06:35:59 +0000
ROA not before: Wed 14 Aug 2024 06:35:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 217.60.242.0/24 maxlen: 24
217.60.244.0/24 maxlen: 24
217.60.245.0/24 maxlen: 24
217.60.247.0/24 maxlen: 24
217.60.249.0/24 maxlen: 24
217.60.252.0/24 maxlen: 24
217.60.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4f:99:b8:90:fe:a3:c5:82:86:0e:e7:7f:c4:e9:bd:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 14 06:35:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=518edecb07194e68d063ead7e47b8be1704bf2ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f4:f8:1e:c0:10:56:d3:fe:9a:ee:01:a3:16:
cd:84:c1:90:6d:84:35:a9:6d:f6:44:15:67:d3:19:
a7:27:3c:a1:a5:4c:75:bd:b1:36:91:73:45:30:69:
0a:e9:22:97:28:d9:d8:e0:70:03:6b:dc:48:98:89:
56:25:34:45:70:b2:18:0c:b0:13:43:bc:db:b5:1c:
69:df:97:37:1c:dd:dd:d0:08:a0:c8:ac:d5:46:0d:
ea:c2:b3:9d:9e:80:18:ce:a9:97:f3:ac:61:7b:c8:
ca:77:3d:62:4b:7a:5b:a4:b9:d0:99:c5:85:d2:8d:
7b:a6:6a:2e:8f:3a:f2:5f:46:31:7d:bc:5a:fa:38:
26:01:19:c5:78:eb:c8:ff:f3:02:36:03:17:f7:9c:
9c:46:33:4a:2e:09:c0:d0:ae:e0:87:c5:b8:76:d9:
1e:9e:40:a7:6d:7b:db:3c:ec:5c:e3:c1:70:9f:48:
68:9a:b0:a7:fc:b2:a8:17:ff:01:1c:c6:53:64:38:
a9:78:12:ec:2c:13:7a:fd:d9:2a:6d:ba:c0:4d:7d:
d2:f3:77:22:39:64:e0:6c:a9:e4:45:2c:67:44:54:
e2:05:7a:1f:a8:59:0d:88:ae:28:8f:29:de:b5:6f:
65:29:15:eb:11:c2:9d:13:14:9f:50:26:7f:83:32:
91:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:8E:DE:CB:07:19:4E:68:D0:63:EA:D7:E4:7B:8B:E1:70:4B:F2:AB
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UY7eywcZTmjQY-rX5HuL4XBL8qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.60.242.0/24
217.60.244.0/23
217.60.247.0/24
217.60.249.0/24
217.60.252.0/23
Signature Algorithm: sha256WithRSAEncryption
82:00:9b:3d:de:43:ab:38:be:97:89:8d:f6:0c:8c:a5:9f:07:
d4:bf:5c:c4:c8:4a:c2:a7:d6:35:63:e9:3a:37:03:11:5c:12:
55:11:e6:55:7e:52:08:4f:3b:05:a4:27:3b:78:7a:3a:b2:12:
71:52:f6:a4:3c:07:14:42:4f:a6:41:57:d3:9d:37:e7:e3:ae:
dd:e9:da:21:6a:39:cf:64:c5:67:8f:48:0f:f0:c0:48:01:54:
a4:4a:71:21:21:2e:38:dd:ac:cc:bf:10:39:f1:60:a4:a8:9a:
94:6f:b7:be:b8:72:e0:63:7c:d2:ef:b2:2e:7e:9b:81:2d:63:
d3:68:55:00:ef:78:dc:a1:9c:d1:8b:72:f4:e9:42:61:c9:51:
35:68:f7:87:2a:e3:4c:c1:c6:4c:af:18:33:df:a8:29:8a:5c:
e7:79:72:ea:56:fb:e5:95:30:0c:0c:b1:d4:b1:38:a9:8f:cd:
1a:78:b9:1e:35:ff:89:54:e5:aa:50:65:d6:77:7e:9a:17:6e:
82:da:7a:eb:f8:a9:3e:13:63:4b:7e:c2:cd:64:31:f7:cf:a0:
96:6c:ac:df:56:4e:f7:51:3b:89:9c:45:e8:98:e7:50:f0:68:
ab:a2:c7:2a:0f:57:c0:db:f4:55:c3:1a:22:58:36:23:88:b3:
2c:42:44:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:57:54 2024 by rpki-client on console-fra.rpki-client.org