Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/nUcgGuUqQu9qYPX5N19gWJUV1mo.roa
File: nUcgGuUqQu9qYPX5N19gWJUV1mo.roa (raw, json)
Hash identifier: 8piDS5wgoOqhP5D+ySakOP6YcnARu5pk8pyMObgkf1g=
Subject key identifier: 9D:47:20:1A:E5:2A:42:EF:6A:60:F5:F9:37:5F:60:58:95:15:D6:6A
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018CC64AE0AC32B873D05499F710CD9CD524
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/nUcgGuUqQu9qYPX5N19gWJUV1mo.roa
Signing time: Mon 01 Jan 2024 18:30:45 +0000
ROA not before: Mon 01 Jan 2024 18:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61361
IP address blocks: 94.247.47.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 12:09:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:e0:ac:32:b8:73:d0:54:99:f7:10:cd:9c:d5:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 18:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d47201ae52a42ef6a60f5f9375f60589515d66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:bf:08:87:bf:01:c0:93:af:43:88:a0:de:
6b:4e:3f:c8:8d:8e:ee:73:52:20:ab:77:da:34:c8:
d8:a2:e8:81:9f:03:df:0c:b2:fc:12:99:30:77:c2:
ee:06:03:3f:d5:d7:03:ee:3b:e5:d4:17:fc:bb:a5:
62:18:06:e3:2d:22:67:23:a7:dd:0f:7d:56:c4:bc:
ac:73:5e:89:a4:ed:68:77:44:a9:1b:1b:c9:90:96:
5f:f1:90:31:9c:41:52:26:01:c4:b3:68:81:44:86:
9c:e2:8d:c3:f9:f5:d4:a4:25:35:ac:42:10:10:84:
bb:70:3f:79:0a:b7:79:23:50:8e:e4:07:17:8e:ba:
8a:1c:f2:e5:f1:09:4b:1c:66:1d:72:00:d3:06:ca:
1f:e6:d8:de:55:a6:70:e1:c1:c4:3e:c1:73:dd:06:
a3:f6:2b:6e:f5:fa:9b:b2:eb:a0:30:67:6a:96:4e:
15:cb:d3:3e:c6:fa:9c:d6:b2:b7:dd:2f:25:99:74:
1e:52:9f:e5:c8:f0:52:fc:25:56:06:b0:89:e1:f8:
6e:f5:60:fc:b7:97:6e:eb:ab:22:94:06:95:75:92:
c7:82:78:09:de:6a:dc:6c:7b:40:f4:4f:cc:9f:a8:
b0:13:8a:d6:c8:b9:b0:10:39:37:7a:0d:96:d3:b9:
be:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:47:20:1A:E5:2A:42:EF:6A:60:F5:F9:37:5F:60:58:95:15:D6:6A
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/nUcgGuUqQu9qYPX5N19gWJUV1mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.47.0/24
Signature Algorithm: sha256WithRSAEncryption
20:5e:2d:45:a3:ac:44:6b:5b:fe:ed:db:54:dc:17:fc:2e:c2:
10:e1:c2:5d:2c:ec:7e:5a:10:a6:f9:c1:28:ec:40:c5:ec:1c:
61:87:c0:0b:62:1e:4e:40:9c:3f:68:e0:75:9c:86:10:d4:e7:
d6:0a:59:d4:6d:f7:2b:a3:55:43:98:8e:6b:12:ba:c3:52:16:
ea:81:f6:03:e8:8c:6f:ea:c4:63:b0:2a:4e:c1:66:2f:a9:94:
ed:35:82:bd:70:33:f7:14:b0:55:7a:19:09:25:f5:4a:88:1b:
e4:ea:18:30:e1:63:cd:1e:63:ea:c5:ab:18:0a:4c:36:22:98:
41:e8:4e:f1:4c:4a:5d:14:6e:27:c1:61:ac:df:40:dc:42:32:
d6:c6:cf:29:c5:b5:1d:f0:66:32:f4:ba:7a:a9:9d:10:83:59:
db:b7:51:42:4c:6b:03:c7:5d:ce:37:f0:c3:0c:1b:51:9d:0e:
4d:83:22:ad:5d:b6:76:88:ab:72:8d:63:85:9a:ee:55:92:65:
7b:1d:a8:f7:3d:76:fe:dc:45:31:eb:c8:95:ef:7e:b4:14:30:
50:fc:ad:30:88:b6:2e:bb:9d:bd:3f:d2:fc:c5:64:ad:19:fa:
3f:19:bc:fa:b1:0b:21:ec:23:9c:d1:44:8a:8b:aa:92:7b:82:
74:df:a3:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 18:04:55 2024 by rpki-client on console-ams.rpki-client.org