Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/UptPIbT1nEnz1JpOZJYS-MWxv1U.roa
File: UptPIbT1nEnz1JpOZJYS-MWxv1U.roa (raw, json)
Hash identifier: gYnnxdXJpdzEeDyM1Bl4u1E/oPN58gQ7lWazFsECNXA=
Subject key identifier: 52:9B:4F:21:B4:F5:9C:49:F3:D4:9A:4E:64:96:12:F8:C5:B1:BF:55
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01922BD937901B2C34DB487B86CA0A67CE89
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/UptPIbT1nEnz1JpOZJYS-MWxv1U.roa
Signing time: Thu 26 Sep 2024 01:01:48 +0000
ROA not before: Thu 26 Sep 2024 01:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19451
IP address blocks: 45.150.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2b:d9:37:90:1b:2c:34:db:48:7b:86:ca:0a:67:ce:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 26 01:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=529b4f21b4f59c49f3d49a4e649612f8c5b1bf55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fb:95:f5:d0:49:aa:26:30:22:b2:aa:14:5c:
1e:17:b0:1f:b3:4c:71:ae:27:a7:d5:9c:c8:da:de:
9c:54:5e:de:3e:52:32:a3:6a:0e:f4:70:b6:7d:e4:
d9:fc:e6:86:38:5e:98:7c:69:15:7d:dd:53:32:a4:
3d:48:63:c6:d4:cc:0a:44:e7:2c:40:fa:01:ac:46:
70:46:e1:4f:cd:09:c9:12:ea:83:fb:a4:8a:2a:86:
92:a2:ec:4b:80:0f:e9:8c:33:f9:f8:e3:ef:c6:a9:
55:4d:e5:bd:4d:70:32:28:33:ea:7d:94:3b:8b:bc:
54:37:a6:6e:7c:d9:ab:8d:7f:21:4f:5d:36:d8:6d:
0f:0d:61:72:57:bf:c9:3c:c9:e3:6b:ea:da:c0:87:
b7:c9:de:35:0b:4a:fe:4d:b7:59:54:46:40:72:05:
32:b1:8a:a1:5e:d6:ea:17:0c:aa:de:33:01:27:6f:
88:24:6a:78:7f:f5:cb:fb:6f:40:c3:f4:16:5e:b1:
00:0b:d9:5c:13:10:98:70:b4:b2:2f:74:33:7f:a0:
50:3b:e5:00:d6:02:a9:73:a8:5c:3e:3c:d3:66:bd:
33:9d:59:29:14:4c:4c:e9:ed:eb:00:23:a0:ce:7d:
03:a1:c0:68:83:e1:b0:87:58:62:e9:b3:06:7d:06:
12:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:9B:4F:21:B4:F5:9C:49:F3:D4:9A:4E:64:96:12:F8:C5:B1:BF:55
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/UptPIbT1nEnz1JpOZJYS-MWxv1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.52.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e8:ff:01:d5:52:57:bb:6e:2c:a2:24:84:6b:d0:96:89:05:
10:4c:74:f9:08:e7:13:ca:54:a8:43:e4:81:72:67:fa:39:dc:
8a:62:4a:c1:52:e0:6f:fd:f9:65:e9:4f:46:49:e0:dc:cd:cb:
f7:ad:b7:48:e1:da:95:1b:ae:60:d3:5f:a5:20:b9:a2:d0:05:
22:59:cd:33:1a:2a:a1:8d:85:40:a9:b2:29:08:35:14:34:fc:
b5:55:0f:38:03:4d:b7:f2:ea:29:05:88:33:44:a5:25:b6:6e:
c7:b3:cf:98:54:21:e9:d4:26:4e:4e:76:af:2f:be:30:fe:23:
cd:75:96:55:45:c8:47:4e:26:e5:16:ff:ee:80:86:a8:5a:9b:
fb:15:57:0a:ee:67:bf:a2:d8:57:41:51:82:0b:3d:59:04:9a:
f4:85:8e:5e:f3:eb:ce:84:76:7a:68:26:2c:92:d5:85:37:7e:
e7:e4:44:75:c7:1d:ac:2f:50:95:60:a0:fe:73:8a:44:28:ff:
8f:fe:b0:fe:f9:4c:6b:7a:62:41:ab:de:fa:a5:1a:ff:54:36:
bd:da:76:14:0b:b6:fa:c9:da:93:80:f9:56:8c:4c:b3:c0:32:
17:74:3e:9b:c2:67:26:d0:27:56:e7:76:06:cf:37:26:88:0f:
1b:b4:23:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:40:03 2024 by rpki-client on console-ams.rpki-client.org