Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/u-o6wDv7jpqkVeiXkWAZevh8A5s.roa
File: u-o6wDv7jpqkVeiXkWAZevh8A5s.roa (raw, json)
Hash identifier: Ootg7XY+roL22fP8C9S16z+FsJ2Hq4YsGCxF+fO9LHk=
Subject key identifier: BB:EA:3A:C0:3B:FB:8E:9A:A4:55:E8:97:91:60:19:7A:F8:7C:03:9B
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC803090FDFCFE5E819CBEC79CDBB4B7A
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/u-o6wDv7jpqkVeiXkWAZevh8A5s.roa
Signing time: Tue 02 Jan 2024 02:31:31 +0000
ROA not before: Tue 02 Jan 2024 02:31:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210422
IP address blocks: 194.68.41.0/24 maxlen: 24
194.68.63.0/24 maxlen: 24
192.121.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:09:0f:df:cf:e5:e8:19:cb:ec:79:cd:bb:4b:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbea3ac03bfb8e9aa455e8979160197af87c039b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:84:36:e3:3a:1e:32:ea:2b:7e:31:68:39:96:
d4:9f:ea:b3:37:2e:5c:29:f2:30:c8:4e:37:c4:3d:
cf:cb:98:78:cc:95:83:df:2e:34:5e:03:11:37:16:
29:4a:e6:ab:2e:91:f4:d8:5f:99:ba:64:7d:76:06:
f7:5f:d5:bd:89:41:86:f4:4a:9c:2b:73:d1:88:00:
7f:dd:b1:a1:ca:e2:d5:f6:2d:2e:a9:b7:f1:d8:47:
3d:6b:9d:53:2c:4c:52:70:c5:86:2c:40:42:01:9d:
b5:a2:a8:b1:46:ed:2f:5e:68:d5:23:45:52:ce:cf:
29:a1:a9:90:2e:3a:1b:d7:8a:c7:8e:ac:23:2d:61:
f5:f1:c8:de:0f:ff:52:65:cc:71:3f:c9:9a:dd:78:
ad:d3:a2:00:28:ac:b4:62:44:be:ea:a5:64:61:a7:
c1:27:fb:26:e2:36:ae:06:20:9b:26:1f:ab:bf:8a:
ac:86:72:24:3c:51:69:64:df:bb:a8:a8:b0:ef:1a:
70:c9:2b:54:87:9f:8f:35:3d:1a:4a:07:57:b1:57:
cd:31:88:55:00:2a:e9:52:11:a1:5f:c2:a5:73:ce:
6c:dc:d9:9b:74:e0:c2:d2:4d:ed:49:8e:a0:d4:a0:
f7:44:25:fd:f6:7f:6c:47:d1:fc:0d:09:42:2b:cb:
79:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:EA:3A:C0:3B:FB:8E:9A:A4:55:E8:97:91:60:19:7A:F8:7C:03:9B
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/u-o6wDv7jpqkVeiXkWAZevh8A5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.210.0/24
194.68.41.0/24
194.68.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:72:42:da:65:95:0b:15:49:24:35:79:5f:da:38:f9:e1:69:
20:c7:41:04:f5:e3:bf:9d:97:b2:16:dd:49:7e:7c:e2:2a:17:
f2:51:73:cc:88:e0:37:a7:c6:4a:1f:e6:b9:ab:1a:06:f8:fb:
82:e5:58:8b:87:5c:dd:f6:7a:3d:55:08:5d:f4:a7:33:e2:40:
76:79:56:94:cd:44:68:fb:bd:6c:01:c3:02:ce:98:28:1d:10:
12:7b:60:99:42:34:fa:ac:51:92:e6:96:65:56:8f:44:c2:de:
b4:6b:18:34:59:0b:57:fb:6e:51:a9:bc:ce:a4:ec:45:c1:10:
7b:6e:49:65:78:95:63:a2:76:c0:7e:41:36:09:b4:d6:3c:74:
3b:23:dc:4b:2c:39:88:55:2d:ea:7f:aa:23:c9:47:2c:2e:b8:
6a:26:6f:c0:10:94:31:38:fc:a1:69:08:fb:a5:ea:b9:92:59:
8d:f2:be:32:79:4c:b1:73:9c:1d:f9:e7:69:8e:2a:b6:c7:6d:
a4:ed:fc:52:3d:4d:ed:91:b8:4f:03:6b:a9:25:fb:56:f4:a1:
5d:3d:71:8f:59:14:94:f8:5f:56:1c:c1:b4:24:44:0c:f2:e3:
40:fd:36:f5:5b:e1:74:4e:93:12:20:da:fd:3e:92:ec:2b:07:
3c:9b:61:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 16:29:30 2024 by rpki-client on console-fra.rpki-client.org