Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/U5lmY6AQtZBhwIEWN-w_6NQ83W4.roa
File: U5lmY6AQtZBhwIEWN-w_6NQ83W4.roa (raw, json)
Hash identifier: 3yoCgJ6hIQVu5Twyl63TUykI0szKu8S0uevyXGBm+ZU=
Subject key identifier: 53:99:66:63:A0:10:B5:90:61:C0:81:16:37:EC:3F:E8:D4:3C:DD:6E
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 018CC8011AD34A14CFAC7FA52F88F0FE7EB2
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/U5lmY6AQtZBhwIEWN-w_6NQ83W4.roa
Signing time: Tue 02 Jan 2024 02:29:24 +0000
ROA not before: Tue 02 Jan 2024 02:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207671
IP address blocks: 45.91.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 13:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:1a:d3:4a:14:cf:ac:7f:a5:2f:88:f0:fe:7e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: Jan 2 02:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53996663a010b59061c0811637ec3fe8d43cdd6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7f:4c:ba:63:77:fe:a6:82:6f:c7:c8:bb:d5:
7e:76:4f:d3:bd:23:0d:22:c1:9b:58:23:75:11:9a:
f1:19:20:0a:33:09:e8:18:78:1c:ad:91:1c:92:1c:
74:15:53:7d:99:b2:a9:b1:65:0a:39:66:e2:04:86:
bf:76:9b:10:12:a9:a4:ed:a2:1f:9f:0b:53:88:54:
61:7a:ef:12:ce:16:eb:34:9b:cc:87:6c:8c:85:0a:
86:85:35:43:c8:c1:68:ef:2c:b4:32:1c:35:9c:fc:
1f:58:dc:41:35:63:db:b3:b6:50:9f:89:f2:0e:4c:
a7:fb:5f:9e:4d:b5:96:d6:2b:35:38:b3:14:b6:02:
18:5e:1e:de:7f:b1:52:0f:ec:03:8c:29:31:23:30:
4c:e6:4b:a6:c0:e3:41:d4:a4:29:47:b9:15:2f:2e:
5d:be:0d:a6:42:9a:ba:74:00:55:e9:c5:8b:7c:15:
3c:0d:7c:ee:e5:50:de:7e:75:7f:d6:2c:44:44:fa:
8a:f3:1c:9d:e5:3c:c3:1d:f2:e4:96:d9:65:78:b7:
f1:34:b9:4c:0c:2a:a5:db:66:fd:37:1d:5d:ff:19:
ac:3f:c5:33:db:4e:03:12:aa:01:6f:1a:4d:8d:0b:
06:9d:d0:8e:c5:c0:a4:4a:9b:cf:8a:82:6a:d5:7c:
93:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:99:66:63:A0:10:B5:90:61:C0:81:16:37:EC:3F:E8:D4:3C:DD:6E
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/U5lmY6AQtZBhwIEWN-w_6NQ83W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.77.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:06:54:f0:b9:36:28:11:44:39:b5:83:79:be:b7:78:b0:d1:
2f:60:5b:12:40:cc:08:78:34:38:b8:9e:52:c8:08:0d:90:11:
bd:cc:5d:20:a7:dc:ed:56:8e:37:a9:ca:25:7c:20:53:26:40:
55:8d:0f:7a:ef:ab:45:ae:ca:aa:10:f8:93:3b:47:c2:d9:e6:
42:d6:fa:97:c0:49:90:85:a3:66:8b:7d:2f:b9:90:8a:c5:1a:
02:9b:ad:7c:91:70:99:f3:96:36:1a:b4:0b:76:44:aa:aa:e6:
f5:15:9a:40:6b:0c:e5:6c:f2:03:9e:1a:a1:7e:8f:5a:c1:1e:
b1:1d:de:d0:18:55:08:ca:3b:7c:d4:60:31:dc:a0:d3:78:2f:
86:00:07:5b:ab:ae:51:5a:d0:9c:92:43:02:ce:4c:54:81:df:
3c:03:e6:2f:ea:67:6d:3d:34:ba:38:30:64:c9:7d:eb:64:34:
1b:b3:1b:80:1a:8d:0e:1d:0e:93:93:5e:6f:ab:30:4a:19:1b:
0d:95:f8:1f:ab:9d:09:77:30:60:b4:9c:23:1c:7e:94:0c:3e:
22:06:e4:79:10:6e:f0:31:36:e8:33:d9:9e:13:db:1d:5a:9c:
9c:ee:3b:be:c4:f8:01:d4:06:9a:fb:dd:e1:22:ec:bc:a8:ef:
77:2f:36:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 17:53:58 2024 by rpki-client on console-ams.rpki-client.org