Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/uy_VQTJeHMga8otTRkYcTz5o9Kg.roa
File: uy_VQTJeHMga8otTRkYcTz5o9Kg.roa (raw, json)
Hash identifier: kM+++bTERSih2kzlouYivJN9oBuD+kZesvwh6xdtxYk=
Subject key identifier: BB:2F:D5:41:32:5E:1C:C8:1A:F2:8B:53:46:46:1C:4F:3E:68:F4:A8
Certificate issuer: /CN=e5f9ad212cd65ab4ee2b8e9b3f8b833c3900ea7d
Certificate serial: 018F6234C6DFAA26F4EFF2515D71DA93F053
Authority key identifier: E5:F9:AD:21:2C:D6:5A:B4:EE:2B:8E:9B:3F:8B:83:3C:39:00:EA:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5fmtISzWWrTuK46bP4uDPDkA6n0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/uy_VQTJeHMga8otTRkYcTz5o9Kg.roa
Signing time: Fri 10 May 2024 11:12:56 +0000
ROA not before: Fri 10 May 2024 11:12:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58209
IP address blocks: 217.18.81.0/24 maxlen: 24
2a0e:5e40::/31 maxlen: 31
2a0e:5e42::/31 maxlen: 31
2a0e:5e47::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/5fmtISzWWrTuK46bP4uDPDkA6n0.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/5fmtISzWWrTuK46bP4uDPDkA6n0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5fmtISzWWrTuK46bP4uDPDkA6n0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:62:34:c6:df:aa:26:f4:ef:f2:51:5d:71:da:93:f0:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5f9ad212cd65ab4ee2b8e9b3f8b833c3900ea7d
Validity
Not Before: May 10 11:12:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb2fd541325e1cc81af28b5346461c4f3e68f4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e8:8f:3c:b5:5b:12:ef:fb:8c:14:97:5e:58:
51:8c:a2:ac:bb:fd:45:51:1f:95:a3:ef:59:82:bd:
ed:b9:79:4b:7a:88:aa:ab:69:00:db:c5:5a:b0:33:
3f:10:b7:0f:31:1d:5e:9d:ec:13:4c:9a:5b:ba:e5:
7d:e8:56:d4:10:24:8b:a2:22:72:76:56:e9:74:03:
ee:c2:e3:ad:92:1c:e1:66:0c:6f:1a:f0:04:ab:2a:
d6:3f:f1:90:9a:d6:ed:82:c8:bd:4a:96:21:90:9c:
aa:f6:d5:49:9a:61:d8:3f:12:32:25:bb:a5:ca:d3:
d8:da:43:a4:46:cb:cb:c3:94:9c:2f:41:bd:4e:3e:
e2:4f:e3:70:1f:8a:e7:82:13:75:6f:c8:0c:54:d0:
8b:d2:03:46:52:dd:13:7c:02:0c:8b:30:7b:6a:1e:
41:ef:09:5f:c3:67:33:61:a9:22:80:93:dd:31:e6:
56:1d:3c:5c:d2:fb:d0:ec:49:23:e5:eb:39:8c:a0:
2a:85:72:dc:77:cb:32:10:09:27:ee:ad:8d:10:fa:
07:28:85:61:e0:1b:cc:b7:d8:47:5d:46:ad:66:55:
12:d5:96:2b:0c:f9:fb:43:e1:a8:e0:65:07:0b:04:
e5:97:90:7e:2a:b3:ca:98:3c:e5:49:36:05:3f:45:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2F:D5:41:32:5E:1C:C8:1A:F2:8B:53:46:46:1C:4F:3E:68:F4:A8
X509v3 Authority Key Identifier:
keyid:E5:F9:AD:21:2C:D6:5A:B4:EE:2B:8E:9B:3F:8B:83:3C:39:00:EA:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fmtISzWWrTuK46bP4uDPDkA6n0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/uy_VQTJeHMga8otTRkYcTz5o9Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/5fmtISzWWrTuK46bP4uDPDkA6n0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.81.0/24
IPv6:
2a0e:5e40::/30
2a0e:5e47::/32
Signature Algorithm: sha256WithRSAEncryption
7f:0b:14:52:d1:13:e5:09:e7:9d:57:ae:c1:d9:e0:da:0e:58:
64:bf:25:fe:b5:e7:85:76:82:3e:8f:a9:35:d3:52:5e:87:31:
75:95:05:83:fd:e6:86:00:f1:a0:9a:84:1b:3e:c7:05:87:05:
15:5e:e5:9c:db:df:5a:47:f2:25:0e:4e:bc:c2:a1:85:79:d9:
a7:f1:d7:03:0c:ef:69:d9:8d:0f:27:94:f4:46:31:fb:d3:01:
65:8d:7c:ac:50:d5:a9:ed:70:d6:c2:b6:8f:79:c4:ca:f8:b1:
4a:69:4e:a0:41:73:7a:ae:1c:32:84:56:1f:e5:49:ee:5a:c8:
4f:c4:e6:e0:85:52:90:68:cc:45:36:26:3c:5a:fa:9b:7e:ee:
2c:62:1b:b3:b2:7f:d8:5a:8e:c8:f8:aa:ef:50:a4:ed:5a:e0:
2b:28:a3:32:a8:40:18:e8:15:08:a7:7a:10:a2:ef:7a:d2:04:
8c:6d:bd:d9:eb:9f:e1:4c:d9:96:e3:49:ab:87:81:d8:8a:39:
ae:4d:33:40:87:0f:d3:7e:15:fb:cc:cd:2e:4f:0c:d9:60:ce:
93:4b:77:5a:21:49:54:32:b4:cb:18:da:c6:f3:d6:56:fa:ff:
07:7f:06:53:3e:2f:4d:b3:95:bd:8a:59:94:74:6f:c6:94:53:
61:72:ec:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 12:02:26 2024 by rpki-client on console-fra.rpki-client.org