Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/lUgkTKzWxVjvj5WUHEEW5ZpkeWw.roa
File: lUgkTKzWxVjvj5WUHEEW5ZpkeWw.roa (raw, json)
Hash identifier: NIrpqPXg6Y+cqJAUH1hS7VXx5xaTjjn3R3yGXoXw/Iw=
Subject key identifier: 95:48:24:4C:AC:D6:C5:58:EF:8F:95:94:1C:41:16:E5:9A:64:79:6C
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0191D6D0B94E4D595769AEE828BCF23EA94A
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/lUgkTKzWxVjvj5WUHEEW5ZpkeWw.roa
Signing time: Mon 09 Sep 2024 12:44:48 +0000
ROA not before: Mon 09 Sep 2024 12:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51889
IP address blocks: 87.107.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d6:d0:b9:4e:4d:59:57:69:ae:e8:28:bc:f2:3e:a9:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Sep 9 12:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9548244cacd6c558ef8f95941c4116e59a64796c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e0:39:b6:25:fd:a2:9b:d2:90:2f:6c:19:e7:
34:6b:68:55:8b:ad:3f:cd:20:5a:d0:52:80:ac:e2:
77:f4:0b:47:0a:82:e3:02:b1:9a:67:73:5c:e8:85:
22:d4:ab:be:63:9f:11:57:44:be:8e:61:30:f0:37:
aa:fd:4c:d2:d3:b5:a1:7b:81:f4:74:0f:c0:a2:03:
a2:e9:f8:58:18:b4:a1:ae:28:75:3b:a8:a1:6b:c9:
86:bf:e2:0f:dd:41:71:3c:5c:b3:10:ee:ce:23:ac:
ff:92:e5:67:1d:b8:2d:1d:eb:c3:57:ca:8e:14:c8:
81:43:46:8f:07:d5:58:7a:08:f5:5c:7e:d1:41:6b:
e3:f1:a1:fb:59:1e:c8:2b:4a:08:23:a2:3f:3e:7b:
32:fc:dd:f9:ec:16:dd:1d:bf:48:20:34:0b:de:f0:
c9:c8:b5:94:e6:52:3b:ea:a0:01:9a:99:4c:f8:1a:
f8:05:96:ef:d6:1f:2e:1d:34:bd:66:6d:8d:cb:41:
f3:aa:af:24:58:be:6b:a0:d8:f5:df:b9:ef:87:6b:
d3:44:75:62:e9:88:30:69:01:1c:97:ef:95:61:6e:
61:84:01:ae:a4:85:41:3c:9f:91:44:ee:5e:b5:62:
24:11:67:59:b9:f0:68:08:6b:00:ab:d8:88:4d:c2:
95:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:48:24:4C:AC:D6:C5:58:EF:8F:95:94:1C:41:16:E5:9A:64:79:6C
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/lUgkTKzWxVjvj5WUHEEW5ZpkeWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.159.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6c:5c:26:2a:07:3a:4c:de:cb:cb:42:f0:62:2b:1e:7e:4b:
a3:9b:68:88:27:39:02:88:3e:19:21:f3:04:fa:5d:e2:3e:df:
63:bc:b2:d0:b1:5b:44:80:30:f7:64:e4:b6:ee:0a:88:f6:6a:
04:a4:13:61:fb:2a:db:0e:82:79:bb:a4:cd:bd:78:91:02:58:
ea:2b:ce:e0:ef:de:be:96:da:85:32:c0:55:be:d4:f2:34:aa:
99:b3:72:b3:ee:b3:6f:37:02:33:aa:57:1a:6c:f6:22:b6:a4:
f6:15:8f:6f:06:d4:ac:8c:53:9c:50:41:f1:36:04:c3:dc:8f:
f2:76:59:01:35:4e:bf:1c:18:87:80:a1:02:b8:1d:15:ce:fc:
61:4d:8c:1c:c1:3d:45:c7:00:31:08:52:45:ba:40:72:19:5c:
2e:86:f6:8b:54:23:4f:ad:f4:bc:c7:17:4a:e9:46:75:6b:76:
5a:a6:5e:99:20:68:74:78:06:d8:ff:9e:67:aa:77:d4:58:62:
0e:7d:19:82:c2:34:f9:2b:ba:6a:46:c5:d7:97:71:66:20:48:
5a:56:3f:58:e9:b4:b1:f8:95:0d:d0:b7:23:0d:f5:93:ec:ba:
6d:84:8b:4f:70:a2:3a:96:1b:c5:14:75:af:7b:f7:e2:39:5b:
29:bf:4d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:20:33 2024 by rpki-client on console-ams.rpki-client.org