Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/Utwm420rrQsHBQgh07c__dhHZWY.roa
File: Utwm420rrQsHBQgh07c__dhHZWY.roa (raw, json)
Hash identifier: AtMlAh1kKqcrDW0Xq3YCoL9j/tPYn79PmxpgZ4q8Fk8=
Subject key identifier: 52:DC:26:E3:6D:2B:AD:0B:07:05:08:21:D3:B7:3F:FD:D8:47:65:66
Certificate issuer: /CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Certificate serial: 019015EE44FB415A8C9E54B5EA62489E808A
Authority key identifier: EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/Utwm420rrQsHBQgh07c__dhHZWY.roa
Signing time: Fri 14 Jun 2024 08:47:34 +0000
ROA not before: Fri 14 Jun 2024 08:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198381
IP address blocks: 80.84.136.0/24 maxlen: 24
80.84.145.0/24 maxlen: 24
80.84.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 19 Jun 2024 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:15:ee:44:fb:41:5a:8c:9e:54:b5:ea:62:48:9e:80:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Validity
Not Before: Jun 14 08:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52dc26e36d2bad0b07050821d3b73ffdd8476566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3a:9d:34:3e:ad:41:cc:4e:b8:10:68:dd:c3:
ad:d8:f5:6c:d2:e0:08:85:cc:39:0b:3d:10:ad:88:
1a:da:33:cc:66:25:74:bb:84:7c:d8:9a:3b:05:55:
2c:76:32:32:2e:e2:3f:de:a2:0b:91:89:a5:76:eb:
3e:84:40:2b:71:7c:cf:b1:4a:76:8e:10:08:59:30:
f0:32:03:6e:90:79:cb:a1:cf:85:c4:f9:cc:b3:61:
ea:8b:38:71:a1:bd:f8:e0:0b:22:aa:f5:18:21:bf:
d4:22:16:ea:47:6a:85:22:ae:b9:f9:71:51:b3:02:
5d:5f:c0:ce:f6:0e:8a:17:c7:d1:ac:bd:00:5a:e7:
4a:ee:f1:8a:4f:6c:32:74:6f:d1:5c:94:9a:a7:d8:
72:09:66:61:eb:d2:95:78:e1:68:7a:4e:61:78:93:
56:7b:1d:d2:86:c6:33:ae:e5:a2:e4:72:33:f3:0a:
54:83:4a:95:aa:f0:cb:b7:cc:85:67:a8:b6:f1:1a:
c0:95:be:bd:0e:6d:7e:4d:3f:5e:dc:f7:be:db:95:
2f:70:f2:91:7e:7e:2e:36:2e:2f:11:b3:4e:21:42:
7d:a7:db:e0:bf:20:86:fa:96:31:e6:b4:71:81:4d:
ac:cb:98:fb:83:c5:8e:3c:9a:b6:45:6f:7c:73:8d:
89:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DC:26:E3:6D:2B:AD:0B:07:05:08:21:D3:B7:3F:FD:D8:47:65:66
X509v3 Authority Key Identifier:
keyid:EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/Utwm420rrQsHBQgh07c__dhHZWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.136.0/24
80.84.145.0/24
80.84.149.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:06:b2:b3:4a:ea:87:b7:b4:db:f3:3a:07:8c:81:e2:50:fd:
24:28:e2:56:10:16:65:d6:74:27:d8:bc:2e:3f:fb:d1:4b:55:
b3:6a:93:40:83:25:0e:e7:74:46:0d:51:fd:78:d0:5a:cc:3c:
89:7e:85:6a:ab:ba:be:8d:1d:9c:a7:fa:a5:ad:7b:ce:ca:bf:
f4:18:94:54:01:96:57:91:98:8a:71:9c:a2:d3:29:ec:24:38:
30:0c:b7:0d:1c:99:b5:7c:ad:2d:fc:07:5e:3c:64:4f:43:f0:
e8:1d:c6:b3:5e:f5:9b:3e:17:cd:47:ef:16:b0:32:ee:c4:b2:
b7:9e:76:d4:cf:70:e2:b8:e1:61:a2:82:6e:20:e5:71:7e:ec:
76:fc:d5:d9:06:6b:b2:2b:82:c1:de:8a:0d:5e:b2:bf:6e:4b:
a6:c1:ea:87:12:7d:76:9d:ef:b5:6a:7f:fd:14:81:26:9f:c2:
18:18:08:42:75:8f:9b:7c:96:45:d6:0f:31:9f:22:a8:23:5f:
c1:dc:e2:24:d1:13:5c:81:67:6c:72:e9:d0:e9:72:63:59:cf:
5a:cb:ed:09:00:ce:ac:be:55:77:bc:22:8d:f7:46:d4:3c:0f:
93:de:75:ca:80:1b:03:41:3e:2b:0b:00:11:3c:a2:aa:e3:b8:
18:cc:c9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 12:28:37 2024 by rpki-client on console-ams.rpki-client.org