Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/uwZXHtxsOTMlwFE4iVLAOUJQ81Q.roa
File: uwZXHtxsOTMlwFE4iVLAOUJQ81Q.roa (raw, json)
Hash identifier: YLLHULc6nNYxedx0fyHlWad2x1FAm7cficztFApmwOY=
Subject key identifier: BB:06:57:1E:DC:6C:39:33:25:C0:51:38:89:52:C0:39:42:50:F3:54
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018F3016246382619EA19587E224401926B6
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/uwZXHtxsOTMlwFE4iVLAOUJQ81Q.roa
Signing time: Tue 30 Apr 2024 17:38:28 +0000
ROA not before: Tue 30 Apr 2024 17:38:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215389
IP address blocks: 2a09:e1c1:efd0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 13:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:30:16:24:63:82:61:9e:a1:95:87:e2:24:40:19:26:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Apr 30 17:38:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb06571edc6c393325c051388952c0394250f354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1a:a1:a6:c8:dd:e7:7f:45:8b:a2:a1:54:e8:
84:e7:8b:15:e5:e5:da:a7:c4:8e:86:96:be:7c:46:
2c:7a:25:9c:4e:f2:b4:77:e5:80:a3:64:ce:a3:e7:
f7:3b:ba:98:f0:8e:25:ce:d9:6d:f6:14:bd:33:c0:
61:2a:1e:eb:c1:eb:25:6e:0f:d4:81:59:c7:6e:95:
58:a2:7e:fc:02:bc:ee:1b:77:dd:b0:10:8a:4d:7a:
96:d0:c4:53:19:22:14:1f:d3:4c:01:7a:57:c0:f8:
39:18:79:2d:03:cd:cf:eb:21:a9:0f:88:cd:0b:f6:
85:8a:1e:d9:d9:f7:f6:c5:98:8b:9a:0c:54:e8:91:
85:ec:1c:28:fd:9f:f1:9a:5d:3b:2b:ff:ea:df:fa:
cb:71:8b:b3:73:aa:92:d0:b5:79:81:6c:ac:8d:e8:
d9:60:22:57:95:e2:25:7d:c0:48:4d:a4:ec:6a:d2:
e4:34:cd:80:3a:b1:15:3e:4c:53:ed:5f:35:2c:4d:
6c:47:fe:59:35:3c:fc:68:86:8a:be:e0:0d:94:ba:
8b:8e:c8:11:a5:c5:ee:15:5a:8e:ce:87:be:af:35:
10:f0:5a:dc:6b:ac:fa:60:c2:d7:ae:c2:ee:44:db:
6d:fd:34:b3:ae:f8:06:0c:0b:20:56:a9:60:28:f4:
25:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:06:57:1E:DC:6C:39:33:25:C0:51:38:89:52:C0:39:42:50:F3:54
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/uwZXHtxsOTMlwFE4iVLAOUJQ81Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:e1c1:efd0::/44
Signature Algorithm: sha256WithRSAEncryption
b6:c6:28:2c:bb:2b:70:cf:96:2e:43:3d:44:ab:23:af:b5:d2:
68:0a:f1:a3:33:17:5d:3c:b5:71:c9:72:64:aa:3f:eb:30:6a:
ef:69:e0:73:b7:1e:8d:ac:33:22:94:d1:64:19:6a:10:31:8f:
b4:94:68:aa:6f:3e:00:77:8a:b1:44:eb:34:75:90:12:64:29:
78:a5:10:6b:6c:d7:d8:9a:f8:2d:06:b8:4f:05:b0:dc:6a:31:
5c:4e:e3:4c:61:f8:20:a6:7e:c1:c5:67:62:8f:e7:f3:70:0a:
15:98:89:d8:b1:74:f0:98:ce:fd:9a:aa:f1:3d:ae:83:35:62:
4d:85:e8:91:7f:b4:4a:56:31:c8:81:28:9b:f9:35:63:a4:fc:
ba:cc:52:5e:e7:03:9a:31:52:49:9a:1d:82:2e:3e:e1:a8:68:
77:4b:96:c6:da:1b:a5:8f:25:d2:fc:bd:e1:48:bd:85:78:06:
86:d4:2d:84:10:37:56:13:b5:ac:d5:88:4d:af:f8:78:03:2f:
74:1b:46:58:19:21:dd:25:71:d0:a7:72:a7:1a:b4:c3:ff:85:
49:90:9e:39:f4:df:d0:b3:70:30:67:33:fa:00:1b:45:6d:28:
59:b7:18:13:b6:f1:0e:27:a8:69:a1:8f:83:91:60:40:21:21:
e5:97:ba:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 17:11:35 2024 by rpki-client on console-ams.rpki-client.org