Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/QUVgSkrMFApwROOG0_IklN3qWOw.roa
File: QUVgSkrMFApwROOG0_IklN3qWOw.roa (raw, json)
Hash identifier: TBySb49udURdJdSL6TAF/uOZaimLM7ihba+5SqbWOzo=
Subject key identifier: 41:45:60:4A:4A:CC:14:0A:70:44:E3:86:D3:F2:24:94:DD:EA:58:EC
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0190538CCB8A28EF32423B81B111C4B48156
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/QUVgSkrMFApwROOG0_IklN3qWOw.roa
Signing time: Wed 26 Jun 2024 07:57:34 +0000
ROA not before: Wed 26 Jun 2024 07:57:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 194.247.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 16:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:8c:cb:8a:28:ef:32:42:3b:81:b1:11:c4:b4:81:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jun 26 07:57:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4145604a4acc140a7044e386d3f22494ddea58ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fc:6f:ad:b5:6e:56:62:c5:1e:9f:03:eb:89:
2d:2a:1f:81:b7:ae:80:fc:53:e4:28:f0:31:79:85:
0f:1d:33:2a:6e:3b:88:6f:75:46:e5:40:ef:19:e7:
34:cf:e0:8f:5f:fc:7a:57:ed:6c:5d:7e:7f:c1:9b:
18:1c:2a:cd:87:0e:50:47:fc:31:8d:1f:6d:7e:d6:
37:69:85:1e:7d:16:e5:f1:43:6a:c7:fd:85:f5:07:
7c:d2:55:80:ef:50:ad:22:1a:ae:e5:e3:3e:b9:1d:
fd:85:c7:c7:3a:10:5b:99:5c:b9:7c:60:d5:7c:e9:
1c:65:c2:5d:ae:6a:21:5f:0a:0a:79:1d:f7:dd:50:
39:8f:0b:4c:40:f2:b7:c4:4c:e9:2d:31:fd:0a:51:
7f:e2:3b:5a:04:35:46:0a:00:58:81:2d:29:87:b3:
c0:5d:03:06:8f:c7:78:bb:26:7f:af:b0:40:fc:c8:
2a:a4:67:b2:8c:f0:f0:35:20:77:d3:25:bd:0c:cb:
00:50:ca:bb:ff:b9:d6:64:c0:58:d7:2e:06:e0:cd:
f1:80:8b:d5:c2:ef:31:93:35:e8:0f:14:9a:04:5c:
f4:00:1d:6a:65:60:5b:8c:bd:81:a3:be:21:11:db:
46:62:2e:bc:da:c6:0f:48:4f:9e:ce:8c:53:39:15:
a9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:45:60:4A:4A:CC:14:0A:70:44:E3:86:D3:F2:24:94:DD:EA:58:EC
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/QUVgSkrMFApwROOG0_IklN3qWOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.45.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ae:3a:44:04:e6:a7:08:b4:56:10:ae:81:25:fb:81:7a:77:
01:4e:f9:31:27:14:f6:af:e3:2c:4e:f1:59:33:25:46:58:83:
b0:13:31:28:de:ce:7c:9c:db:3e:6a:ce:7a:c3:3f:f9:04:46:
76:bd:e2:e9:78:9e:db:44:95:b4:06:d7:64:4f:f1:fd:cd:8f:
d0:9e:9c:5a:1b:55:c9:89:e6:60:a3:e9:f0:2c:aa:7c:2d:2d:
b0:ee:2d:85:de:51:83:b0:c3:12:91:57:3d:16:e1:f1:72:5a:
9f:82:7e:6a:15:24:ba:e6:90:bc:43:70:ad:f2:9d:0f:02:d0:
57:e1:75:1e:55:b0:a3:df:2e:84:21:9c:12:0c:4f:f4:4d:28:
68:8e:f8:15:66:b3:e5:29:d6:d8:7e:bb:3d:96:21:98:b1:44:
a9:49:75:f8:33:07:ec:e2:bf:91:c3:3e:39:99:41:b1:e5:87:
8f:dc:6d:c6:76:27:88:5a:b0:4e:6a:68:a8:1a:d4:4f:f9:5c:
d8:fb:f2:2a:a3:d3:90:d2:94:e6:8c:64:c9:34:4a:dc:35:f5:
62:09:69:a0:0d:9e:eb:81:fc:2d:27:44:e2:5b:ef:9c:36:85:
d3:a7:19:d3:e2:64:a9:0e:da:f4:06:76:77:0c:d0:96:c5:52:
d8:19:b3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:46:43 2024 by rpki-client on console-fra.rpki-client.org