Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/uQ1nIMDgEYo7NviYRm-aoSrk6Mk.roa
File: uQ1nIMDgEYo7NviYRm-aoSrk6Mk.roa (raw, json)
Hash identifier: HKTG2PXHU1aYTTx43L9CgfDaeUEvXXZNopVMBTE+NKI=
Subject key identifier: B9:0D:67:20:C0:E0:11:8A:3B:36:F8:98:46:6F:9A:A1:2A:E4:E8:C9
Certificate issuer: /CN=016454ca099eb52e55560f5d09e87e73161ae738
Certificate serial: 018CC64A3F3D3B2B7537729B6EB8DBD34BEC
Authority key identifier: 01:64:54:CA:09:9E:B5:2E:55:56:0F:5D:09:E8:7E:73:16:1A:E7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWRUygmetS5VVg9dCeh-cxYa5zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/uQ1nIMDgEYo7NviYRm-aoSrk6Mk.roa
Signing time: Mon 01 Jan 2024 18:30:03 +0000
ROA not before: Mon 01 Jan 2024 18:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200996
IP address blocks: 143.51.0.0/17 maxlen: 26
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/AWRUygmetS5VVg9dCeh-cxYa5zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/AWRUygmetS5VVg9dCeh-cxYa5zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/AWRUygmetS5VVg9dCeh-cxYa5zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:3f:3d:3b:2b:75:37:72:9b:6e:b8:db:d3:4b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=016454ca099eb52e55560f5d09e87e73161ae738
Validity
Not Before: Jan 1 18:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b90d6720c0e0118a3b36f898466f9aa12ae4e8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:d4:dd:e9:c3:13:d3:75:98:67:5b:42:40:03:
cc:89:eb:4c:c7:19:64:e4:f5:bd:50:97:e9:d1:a2:
d3:09:53:62:00:db:eb:3f:b6:5f:04:a2:2a:cd:6c:
3b:c3:59:b0:f1:26:e2:90:8c:03:e6:d3:18:e3:a2:
45:22:b8:38:a4:db:16:dc:54:c2:d1:85:79:8a:01:
fe:89:da:f1:cd:36:74:81:fb:a7:9b:b2:92:25:fc:
2e:c3:bc:d9:29:90:e3:4c:07:0a:06:cc:41:21:32:
2a:6c:87:1e:3c:ab:c6:ff:ef:9f:1e:47:28:87:d4:
92:d1:ea:e7:63:cb:41:4b:1e:b7:35:33:dd:37:f6:
8b:86:e9:6a:83:84:6e:aa:67:91:35:c4:34:6c:17:
a7:ae:d7:26:90:a2:21:4f:74:ee:3c:9e:1f:64:68:
0a:2e:ef:9b:0e:44:44:dd:15:b9:b1:4b:04:71:8e:
40:ee:65:3b:b5:a4:49:aa:61:56:da:ea:db:5e:6a:
c8:bb:6d:c1:24:17:56:22:37:46:41:13:b9:f2:d5:
45:3e:71:93:64:6a:a8:26:f0:ee:3d:29:db:3c:97:
eb:dc:58:c6:ae:73:7e:ba:40:74:a1:71:ec:e5:58:
53:8f:c5:11:75:68:f5:59:9e:c3:ea:ac:ed:5d:e0:
37:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0D:67:20:C0:E0:11:8A:3B:36:F8:98:46:6F:9A:A1:2A:E4:E8:C9
X509v3 Authority Key Identifier:
keyid:01:64:54:CA:09:9E:B5:2E:55:56:0F:5D:09:E8:7E:73:16:1A:E7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWRUygmetS5VVg9dCeh-cxYa5zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/uQ1nIMDgEYo7NviYRm-aoSrk6Mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/AWRUygmetS5VVg9dCeh-cxYa5zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.51.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a9:64:77:f3:8b:28:66:46:13:98:f7:8d:a2:74:98:7a:d1:33:
9d:c4:d3:20:5d:9b:27:56:b7:25:8f:34:cd:ed:48:06:ef:28:
08:c8:28:a2:70:4b:f0:6a:1a:66:4e:f2:fd:ed:f2:d2:2e:a3:
80:65:c4:f7:94:21:07:40:88:3a:11:06:41:a1:51:ab:f6:d0:
74:71:47:09:2c:44:d3:85:3b:3e:97:5b:62:3a:0e:57:dc:3b:
92:49:0f:21:58:7e:09:36:4d:8a:dd:3b:a2:49:8b:0b:60:65:
5b:a0:a8:be:d4:25:03:72:d1:50:15:f0:31:c5:32:37:3e:e9:
a8:4e:41:a2:bb:52:6e:be:fd:50:32:fe:f7:06:e7:e4:79:99:
7a:a5:25:30:53:2b:e6:6a:33:7a:e7:00:59:90:7b:05:d9:a3:
0d:76:6d:ac:9c:70:e7:22:bc:83:ed:2b:e8:76:b5:eb:cc:98:
ba:af:bf:14:56:fd:3a:ea:e8:bd:a8:e2:2d:79:27:b7:ba:de:
bd:74:9c:e1:5b:c5:70:9b:b3:ff:a8:19:93:a6:7c:35:9a:f9:
b1:db:ea:8f:dd:e7:80:29:71:77:96:58:0a:be:0e:22:22:27:
83:9c:24:7e:52:f8:a8:3a:37:72:78:0d:b5:5b:96:53:b4:f1:
5e:65:e9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:14:16 2024 by rpki-client on console-fra.rpki-client.org