Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UeiAzH1yuBAr4AE-JXSK8euwgb0.roa
File: UeiAzH1yuBAr4AE-JXSK8euwgb0.roa (raw, json)
Hash identifier: 8glfBuZutNANzQ3V4+4yk5Uhxu93gMMWHqgNbUARa58=
Subject key identifier: 51:E8:80:CC:7D:72:B8:10:2B:E0:01:3E:25:74:8A:F1:EB:B0:81:BD
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018CC86F92088A54811115D5B6C38C502083
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UeiAzH1yuBAr4AE-JXSK8euwgb0.roa
Signing time: Tue 02 Jan 2024 04:30:04 +0000
ROA not before: Tue 02 Jan 2024 04:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47499
IP address blocks: 80.233.228.0/23 maxlen: 24
80.233.252.0/23 maxlen: 24
80.233.160.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:92:08:8a:54:81:11:15:d5:b6:c3:8c:50:20:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 04:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51e880cc7d72b8102be0013e25748af1ebb081bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:43:70:26:4f:90:f9:06:f2:d3:54:d7:6d:52:
35:80:0c:88:7e:a4:23:4a:b8:ac:24:d9:4d:17:98:
1b:ae:ca:73:5a:99:cd:aa:de:8c:ba:5f:dc:89:2e:
39:f1:ca:79:12:55:12:5c:f2:51:4d:40:60:b6:f5:
b4:54:8b:06:ab:cc:34:5a:34:19:84:28:69:80:c4:
33:96:2d:c5:bc:c5:32:16:7b:b5:28:d3:94:3e:de:
18:5a:8c:33:03:bf:96:1b:40:c9:1b:a4:3e:f8:22:
a3:e3:60:4e:27:cf:3b:10:9d:87:70:1d:e4:07:47:
98:87:54:f5:9e:21:e8:7e:de:fc:c6:f4:79:38:d0:
94:17:cd:fa:a0:b5:f0:47:3a:63:b2:78:b9:dd:e5:
b6:49:ce:ab:3e:fa:fa:82:43:e4:a9:2e:d5:23:1e:
0e:8c:89:0c:e5:3b:b7:77:d3:cb:67:bc:07:e2:cb:
0e:b4:32:ac:80:68:56:ad:5e:b7:df:54:24:3d:ab:
51:57:75:ce:b1:59:46:de:83:38:19:c0:d6:f8:8a:
c6:4b:b0:52:55:b9:04:ca:86:ff:ba:4a:f5:45:8d:
d4:59:24:54:3e:ba:a6:0c:68:fa:b2:dc:a9:07:a5:
62:93:2a:01:6d:0f:57:3c:ec:fc:0f:1b:b2:71:67:
19:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E8:80:CC:7D:72:B8:10:2B:E0:01:3E:25:74:8A:F1:EB:B0:81:BD
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UeiAzH1yuBAr4AE-JXSK8euwgb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.160.0/23
80.233.228.0/23
80.233.252.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:18:f1:1a:8e:8b:f3:0a:5e:0e:6f:cb:90:e8:6b:1b:0d:87:
93:86:c0:58:f5:c6:7e:d0:61:ec:aa:ae:46:fa:c5:e7:87:81:
e6:ec:13:d1:99:24:21:01:82:d8:16:d0:dc:bf:bd:34:96:a7:
fd:49:33:f6:06:eb:0a:54:d4:da:65:06:34:01:6b:90:fd:d8:
b5:f3:6a:85:f4:71:99:77:ad:28:a9:00:27:9b:ab:49:08:09:
b7:28:af:7c:e2:7b:ec:c1:6e:c3:8b:77:2b:02:f5:29:49:21:
c8:e4:ea:ca:bc:c9:ea:d5:25:c7:a6:d3:56:31:08:01:a2:30:
b1:9c:42:ed:7f:54:97:72:18:a8:85:aa:c4:10:5b:00:29:78:
76:81:87:08:97:ce:da:7d:e3:40:e1:71:09:29:a8:93:7e:04:
12:98:db:4a:da:f5:05:af:af:87:a3:b1:8b:7c:c8:5d:64:8d:
7b:ca:db:97:08:9e:77:fc:b4:f5:eb:e6:87:6f:dd:de:a8:af:
3f:85:24:61:67:12:08:87:b1:15:55:67:77:7a:1b:9c:93:6d:
60:62:f3:f3:aa:84:f8:bd:32:bd:a0:37:b5:c2:2e:b0:ed:57:
5e:51:b1:b4:9c:fb:05:c4:82:9c:f3:cc:e8:c3:2a:99:f0:46:
ea:ff:ed:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:24:49 2024 by rpki-client on console-ams.rpki-client.org