Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/UPCT3pbWvZTRLCAkijoB-9Shlxw.roa
File: UPCT3pbWvZTRLCAkijoB-9Shlxw.roa (raw, json)
Hash identifier: Yk+6xHTeZSkoLo9vCVKC5xbKjYmSKO7OExX+VnLT7J0=
Subject key identifier: 50:F0:93:DE:96:D6:BD:94:D1:2C:20:24:8A:3A:01:FB:D4:A1:97:1C
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 018CC64B1FB411313F60240D7167D9109864
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/UPCT3pbWvZTRLCAkijoB-9Shlxw.roa
Signing time: Mon 01 Jan 2024 18:31:01 +0000
ROA not before: Mon 01 Jan 2024 18:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19812
IP address blocks: 212.118.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:1f:b4:11:31:3f:60:24:0d:71:67:d9:10:98:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jan 1 18:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50f093de96d6bd94d12c20248a3a01fbd4a1971c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c5:f0:5f:b1:f7:83:df:2b:62:19:08:e7:4d:
20:7f:b9:36:76:5d:2c:10:e9:19:d4:3a:6f:93:5c:
99:83:3e:c1:be:df:03:be:e0:51:03:b4:9b:2f:03:
de:5c:3c:fa:80:08:fa:fa:97:85:49:45:5c:09:0d:
db:17:5f:6f:d4:48:e6:93:99:fa:37:58:99:51:0c:
7d:77:f6:2c:61:0b:e4:4c:db:f9:3a:a9:d8:2e:bf:
bf:0e:2d:ee:97:34:a8:fd:1d:6a:50:ba:01:ae:62:
57:28:f2:15:8f:c8:4a:27:c3:78:a0:95:46:d4:2d:
0d:b0:9e:01:a6:2d:8d:c7:b1:de:72:ce:90:be:35:
6f:a4:43:dc:35:cf:2b:8a:19:d9:8f:6b:0b:5b:8f:
a0:09:91:40:84:c2:aa:56:0d:0b:15:0c:0e:ab:de:
8b:e1:b4:8d:8a:5a:87:41:45:5c:47:03:25:28:fd:
34:a2:f8:23:ef:de:fb:89:35:ff:f0:47:5d:a8:97:
89:4c:23:13:99:c3:8e:b9:70:8c:e7:b3:8c:e8:3d:
e2:70:f2:48:88:e7:39:1d:10:47:74:c3:4c:a0:fa:
74:db:3d:07:00:cc:c6:b8:7b:a8:b5:15:a9:2a:98:
69:dd:41:18:e6:dc:d2:83:7f:62:a1:e4:ee:f8:70:
c4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F0:93:DE:96:D6:BD:94:D1:2C:20:24:8A:3A:01:FB:D4:A1:97:1C
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/UPCT3pbWvZTRLCAkijoB-9Shlxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.118.247.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:64:13:ea:e3:00:11:9d:5d:5e:0e:b1:4f:7b:d7:b7:f2:58:
3b:2e:a7:25:02:c8:eb:7a:99:e9:e4:45:b9:ec:4b:d2:49:7f:
03:8b:32:8b:0c:e4:d0:90:09:90:eb:71:79:37:ba:f4:eb:2b:
21:50:a9:1a:e3:3d:66:aa:4c:08:08:bb:8c:2a:1e:fe:a7:8f:
1a:be:14:e3:f2:fd:0a:6b:cd:38:4a:1a:20:7e:f2:e4:18:4b:
b4:4b:97:d8:ed:02:08:35:d8:da:cc:2e:9f:7d:60:7d:19:fe:
41:e2:ed:73:16:4e:8b:7f:55:5d:f4:22:df:96:0f:7b:6b:52:
77:a3:cd:fd:a9:45:b5:a5:75:0f:70:0c:30:72:c7:30:62:c6:
e5:fb:da:c8:fa:be:ab:89:3e:ac:e9:2c:4f:94:ce:37:f8:ce:
26:2c:61:63:33:1c:ac:4b:96:72:a1:c1:6a:0f:ec:20:3b:b4:
86:21:10:65:19:ab:fc:f8:9b:69:a7:c0:c7:73:b3:37:c9:ae:
44:7e:f3:63:77:68:95:6f:4d:57:9d:35:e5:51:88:5c:7b:40:
02:c7:91:0b:c6:ab:02:3f:00:f7:0f:f3:5e:86:f1:36:02:52:
0d:bb:71:e9:55:cd:f1:3e:97:d7:72:db:57:12:0f:8f:b1:0a:
be:75:c0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:40:55 2024 by rpki-client on console-ams.rpki-client.org