Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/b756b4-ce41-41b5-a1d9-bb4d242ed2cd/1/UquJpNCdLx0GmnhMbPdY5myj8P0.roa
File: UquJpNCdLx0GmnhMbPdY5myj8P0.roa (raw, json)
Hash identifier: JhG9wL9e21cOW0HybEESnALfKbmcIVu29V8kAUrLyh4=
Subject key identifier: 52:AB:89:A4:D0:9D:2F:1D:06:9A:78:4C:6C:F7:58:E6:6C:A3:F0:FD
Certificate issuer: /CN=c9b051e8e68149b66044e7de4ae59d736e537aaa
Certificate serial: 018CE2F5BA0F7E4DBCA76CD6661E0FEB8CB2
Authority key identifier: C9:B0:51:E8:E6:81:49:B6:60:44:E7:DE:4A:E5:9D:73:6E:53:7A:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybBR6OaBSbZgROfeSuWdc25Teqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/b756b4-ce41-41b5-a1d9-bb4d242ed2cd/1/UquJpNCdLx0GmnhMbPdY5myj8P0.roa
Signing time: Sun 07 Jan 2024 08:06:43 +0000
ROA not before: Sun 07 Jan 2024 08:06:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210021
IP address blocks: 185.75.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/b756b4-ce41-41b5-a1d9-bb4d242ed2cd/1/ybBR6OaBSbZgROfeSuWdc25Teqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/b756b4-ce41-41b5-a1d9-bb4d242ed2cd/1/ybBR6OaBSbZgROfeSuWdc25Teqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ybBR6OaBSbZgROfeSuWdc25Teqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e2:f5:ba:0f:7e:4d:bc:a7:6c:d6:66:1e:0f:eb:8c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b051e8e68149b66044e7de4ae59d736e537aaa
Validity
Not Before: Jan 7 08:06:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52ab89a4d09d2f1d069a784c6cf758e66ca3f0fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bc:f5:4c:ac:08:58:9e:8b:4d:94:99:0b:e7:
df:7b:d4:08:27:99:76:08:fb:b9:6e:f2:0d:42:cf:
54:d0:28:0e:da:4c:18:26:bf:4e:d4:dc:c4:d6:30:
ae:01:53:3e:22:ab:56:f8:a3:7a:3f:95:dd:4c:53:
8c:eb:a7:0b:a2:6f:7d:9c:6a:60:d4:ab:a3:40:f8:
e8:c5:3c:4f:be:e3:c3:a7:d1:d1:3d:82:ac:fa:d5:
cc:27:a5:1a:07:fb:35:83:4d:a7:09:f6:d0:28:a6:
2b:cd:47:fd:e4:25:7f:3d:30:77:9d:f6:c0:e0:dd:
40:e1:87:cc:e2:bf:0b:16:9d:48:37:5c:cd:9f:fb:
bc:80:66:a3:5a:e9:b8:51:89:07:ee:15:56:a8:07:
d1:bd:ca:2e:45:26:44:6d:4a:5f:5d:91:8d:fa:d4:
ef:b5:34:1a:c8:ed:37:8d:4d:81:4d:0e:7b:9a:fb:
c4:02:b6:c2:04:ce:b4:89:cc:c8:97:19:26:07:a8:
88:29:ac:33:d2:e8:d3:8c:30:02:80:03:34:88:5a:
e8:9e:71:ec:e3:35:40:1b:c6:41:a5:21:b3:cc:f8:
ea:26:c0:f0:21:4c:c0:7c:26:68:b9:a6:8c:d3:10:
35:17:eb:22:47:e3:7e:91:40:cd:46:e3:34:e9:04:
a1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AB:89:A4:D0:9D:2F:1D:06:9A:78:4C:6C:F7:58:E6:6C:A3:F0:FD
X509v3 Authority Key Identifier:
keyid:C9:B0:51:E8:E6:81:49:B6:60:44:E7:DE:4A:E5:9D:73:6E:53:7A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybBR6OaBSbZgROfeSuWdc25Teqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/b756b4-ce41-41b5-a1d9-bb4d242ed2cd/1/UquJpNCdLx0GmnhMbPdY5myj8P0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/b756b4-ce41-41b5-a1d9-bb4d242ed2cd/1/ybBR6OaBSbZgROfeSuWdc25Teqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.99.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a8:52:0a:fa:17:93:af:76:5c:fd:d2:7b:c0:da:c8:ef:30:
ce:af:d2:2e:f4:48:aa:71:89:c6:22:52:d0:75:f5:91:e5:17:
f8:d9:c5:b1:19:1b:f1:ed:36:f8:01:c8:33:1c:33:98:98:4a:
92:53:75:37:da:c5:60:9d:5e:2f:95:a2:91:87:f0:f4:6e:94:
6f:4d:c7:eb:28:bf:c5:9b:78:1c:bf:2d:cb:21:4b:e3:df:32:
8c:2d:8c:31:b4:5a:c2:b6:7e:46:8d:75:39:63:68:8b:aa:b4:
17:b6:f8:f9:10:7d:45:b4:cf:77:ba:42:09:b2:e2:b8:b7:d3:
1c:85:a5:55:a0:1c:4d:42:fe:6f:6e:e8:18:f4:a4:2d:03:30:
a2:fd:a4:4d:aa:d5:87:46:4f:76:62:7d:86:aa:92:0a:19:00:
d4:5c:01:02:48:98:56:e6:e9:db:4b:de:89:78:a4:e4:c2:a3:
17:91:63:33:d7:ba:6b:37:19:d4:fc:8d:31:98:f2:25:8a:0f:
fa:92:e7:93:99:af:4f:ac:7e:a2:59:9e:45:a6:3f:06:d5:b5:
bd:62:56:b0:a7:30:a6:b2:80:7e:09:a5:4e:47:c9:84:1f:25:
fa:ad:d4:90:97:73:da:4a:b6:b6:1d:07:45:3d:0d:4c:7a:6c:
e4:bd:39:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:04:56 2024 by rpki-client on console-fra.rpki-client.org