Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/uBuiCDDAumAgedFLSZ5PDvfSj0E.roa
File: uBuiCDDAumAgedFLSZ5PDvfSj0E.roa (raw, json)
Hash identifier: MQzbTOh/Yq9MkFp2PJ8FL1I5NO5u4haxiC8EUgDPA2U=
Subject key identifier: B8:1B:A2:08:30:C0:BA:60:20:79:D1:4B:49:9E:4F:0E:F7:D2:8F:41
Certificate issuer: /CN=2549f45ef20b506ea8ef4cb682c2ca2701b290b4
Certificate serial: 018CC9BCFCA3FBEA1E0EF8B4E7DF4CE27DD6
Authority key identifier: 25:49:F4:5E:F2:0B:50:6E:A8:EF:4C:B6:82:C2:CA:27:01:B2:90:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JUn0XvILUG6o70y2gsLKJwGykLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/uBuiCDDAumAgedFLSZ5PDvfSj0E.roa
Signing time: Tue 02 Jan 2024 10:34:15 +0000
ROA not before: Tue 02 Jan 2024 10:34:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205726
IP address blocks: 185.208.58.0/24 maxlen: 24
185.208.57.0/24 maxlen: 24
185.208.56.0/24 maxlen: 24
185.208.56.0/22 maxlen: 22
185.208.59.0/24 maxlen: 24
2a0b:31c0::/29 maxlen: 29
2a0b:31c0:1337::/48 maxlen: 48
2a0b:31c0:2::/48 maxlen: 48
2a0b:31c0:1::/48 maxlen: 48
2a0b:31c0:5::/48 maxlen: 48
2a0b:31c0::/48 maxlen: 48
2a0b:31c0:3::/48 maxlen: 48
2a0b:31c0:563::/48 maxlen: 48
2a0b:31c0:4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/JUn0XvILUG6o70y2gsLKJwGykLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/JUn0XvILUG6o70y2gsLKJwGykLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/JUn0XvILUG6o70y2gsLKJwGykLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:fc:a3:fb:ea:1e:0e:f8:b4:e7:df:4c:e2:7d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2549f45ef20b506ea8ef4cb682c2ca2701b290b4
Validity
Not Before: Jan 2 10:34:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b81ba20830c0ba602079d14b499e4f0ef7d28f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1e:20:8a:dc:d4:f2:90:4e:cb:de:3d:67:d3:
d1:c3:a4:86:5a:95:e5:bd:c5:a1:3a:c3:e8:39:1b:
4e:38:23:4e:89:d4:3b:da:67:d0:80:95:1d:3f:77:
3f:2d:8e:7d:26:53:c2:b0:8c:68:e4:00:66:0c:fa:
99:04:5e:20:e4:83:5e:45:ce:c7:dd:32:fd:63:83:
25:8c:25:d1:94:04:07:a8:15:53:af:d1:97:0c:93:
36:7b:85:01:f7:06:39:6c:0d:a7:88:ce:1b:55:ba:
3d:fb:81:ad:d0:e7:31:ce:24:35:4b:1e:39:e8:e9:
a8:19:51:52:c2:28:70:35:c4:71:cf:96:3d:80:bf:
0e:34:cb:a7:29:f7:78:98:2f:52:19:c3:29:30:bc:
b3:71:29:d9:ab:7e:6c:e3:08:b7:dd:61:0c:00:0c:
c9:2f:4b:09:bf:ba:f5:c2:26:60:44:09:74:49:ac:
c5:f9:1a:3f:b3:88:39:50:d5:63:ba:3a:1e:df:11:
19:00:ac:81:6e:8e:99:38:31:89:0c:78:c5:81:9d:
b3:03:78:bb:34:4a:6d:20:30:ac:19:8c:25:38:39:
45:df:85:ff:d1:5f:e6:43:c3:b5:96:cc:ac:c0:ac:
28:40:a9:e3:94:c4:47:03:06:55:11:1c:2c:f6:03:
9c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:1B:A2:08:30:C0:BA:60:20:79:D1:4B:49:9E:4F:0E:F7:D2:8F:41
X509v3 Authority Key Identifier:
keyid:25:49:F4:5E:F2:0B:50:6E:A8:EF:4C:B6:82:C2:CA:27:01:B2:90:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JUn0XvILUG6o70y2gsLKJwGykLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/uBuiCDDAumAgedFLSZ5PDvfSj0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/JUn0XvILUG6o70y2gsLKJwGykLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.56.0/22
IPv6:
2a0b:31c0::/29
Signature Algorithm: sha256WithRSAEncryption
67:5a:f4:77:f9:ed:be:8e:e0:bd:a4:b3:a7:c7:e0:e7:b8:71:
16:d5:85:5b:e0:03:07:af:e6:52:c4:c2:eb:8d:40:7b:15:47:
c7:46:22:b1:6c:0f:00:a8:4d:6f:04:49:ce:bd:4f:56:1f:1b:
6f:7f:c0:03:0b:df:da:8e:c1:20:e1:d2:1b:67:da:cb:71:9c:
97:64:7a:13:a9:02:96:f6:74:f9:aa:a1:9b:5a:9f:0c:14:f6:
91:6b:19:7a:97:85:24:cc:81:0b:57:c1:a3:8b:de:92:4e:e7:
8f:7b:70:98:2c:24:c8:bb:0e:29:b4:bd:0a:5d:3a:f8:82:d6:
6e:cb:2d:f0:5c:2d:dc:b2:44:a1:e7:31:60:19:68:0b:26:07:
26:ba:5f:61:80:20:4f:91:37:42:37:c2:f5:88:ca:18:57:a5:
f0:e8:1e:20:05:e1:4b:e2:f5:0e:55:ba:2d:a5:a5:09:97:e9:
ec:f9:0f:2a:c4:d0:82:01:28:75:62:28:3c:ad:34:46:05:01:
a0:cf:20:7b:2a:cd:3c:0a:b8:9b:cc:36:a8:6c:20:18:2a:2f:
f7:ee:5a:c3:02:15:20:02:57:ab:e3:6b:68:56:20:d8:8b:20:
eb:53:2e:2c:3c:bb:08:4b:29:89:ac:21:af:3b:a3:11:45:db:
a1:dc:fd:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:59:18 2024 by rpki-client on console-ams.rpki-client.org