Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/85ef35-647a-4172-8c64-6db3caef73d9/1/BBSAUPoBSjJM9jzHb__uL72mPzI.roa
File: BBSAUPoBSjJM9jzHb__uL72mPzI.roa (raw, json)
Hash identifier: Jwmgv2oLNpVCw3Mm2Rui5WVcNLxbwglt4phVjlIfCrM=
Subject key identifier: 04:14:80:50:FA:01:4A:32:4C:F6:3C:C7:6F:FF:EE:2F:BD:A6:3F:32
Certificate issuer: /CN=61e10dac1f773c55a244753346719e899f4d4432
Certificate serial: 018CC79576E708787F734E2523B6BD6C2C07
Authority key identifier: 61:E1:0D:AC:1F:77:3C:55:A2:44:75:33:46:71:9E:89:9F:4D:44:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YeENrB93PFWiRHUzRnGeiZ9NRDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/85ef35-647a-4172-8c64-6db3caef73d9/1/BBSAUPoBSjJM9jzHb__uL72mPzI.roa
Signing time: Tue 02 Jan 2024 00:31:50 +0000
ROA not before: Tue 02 Jan 2024 00:31:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28997
IP address blocks: 83.136.16.0/21 maxlen: 24
193.29.248.0/23 maxlen: 24
193.30.6.0/23 maxlen: 24
2a03:7000::/32 maxlen: 56
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/85ef35-647a-4172-8c64-6db3caef73d9/1/YeENrB93PFWiRHUzRnGeiZ9NRDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/85ef35-647a-4172-8c64-6db3caef73d9/1/YeENrB93PFWiRHUzRnGeiZ9NRDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YeENrB93PFWiRHUzRnGeiZ9NRDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 Nov 2024 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:76:e7:08:78:7f:73:4e:25:23:b6:bd:6c:2c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61e10dac1f773c55a244753346719e899f4d4432
Validity
Not Before: Jan 2 00:31:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04148050fa014a324cf63cc76fffee2fbda63f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5a:1a:56:86:81:14:fd:c8:da:fc:3f:5a:b0:
5c:95:6f:6c:13:48:d2:e4:07:e8:d6:8a:45:ba:66:
35:5c:64:93:fd:22:57:7b:4a:10:3f:b3:9a:4c:94:
f5:72:87:79:ca:f2:d1:ba:8f:6f:70:b3:f5:6f:1d:
21:c6:6e:22:4f:fa:15:f4:c8:7f:d9:69:94:8b:44:
55:82:5e:4b:ef:61:1d:40:05:c3:7a:eb:3b:cc:71:
79:a8:1a:f6:2e:d0:e9:dc:50:4d:48:f4:91:db:3b:
ee:40:10:25:6a:c6:d3:ac:e5:6a:df:85:8d:2a:44:
3f:f4:1b:e9:1c:8e:a2:c8:18:04:ef:43:2b:a5:e7:
46:0c:86:fe:cd:4e:ab:b8:fd:aa:fd:ba:d8:af:a4:
4e:68:00:5b:a9:2e:56:10:69:4c:be:b2:c1:57:07:
4b:45:60:01:2b:f5:7f:23:d1:4e:39:3f:cd:f2:50:
f9:76:9d:d3:90:f5:b2:5a:1e:3a:76:c2:71:61:cf:
74:20:0e:3c:18:71:25:ff:12:c6:73:db:af:66:b9:
25:0f:a9:ce:4d:68:be:6a:96:37:de:e0:76:2c:c0:
62:97:91:b3:97:01:bd:fb:83:ba:fb:5a:23:d0:37:
90:19:c3:35:47:d7:bd:3a:33:2b:93:2d:87:cb:e2:
11:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:14:80:50:FA:01:4A:32:4C:F6:3C:C7:6F:FF:EE:2F:BD:A6:3F:32
X509v3 Authority Key Identifier:
keyid:61:E1:0D:AC:1F:77:3C:55:A2:44:75:33:46:71:9E:89:9F:4D:44:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YeENrB93PFWiRHUzRnGeiZ9NRDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/85ef35-647a-4172-8c64-6db3caef73d9/1/BBSAUPoBSjJM9jzHb__uL72mPzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/85ef35-647a-4172-8c64-6db3caef73d9/1/YeENrB93PFWiRHUzRnGeiZ9NRDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.16.0/21
193.29.248.0/23
193.30.6.0/23
IPv6:
2a03:7000::/32
Signature Algorithm: sha256WithRSAEncryption
2d:43:2a:71:7d:c6:94:47:3e:30:9b:82:59:9a:7d:92:4a:9a:
44:62:6a:ea:92:74:3a:ac:aa:c5:99:b7:c8:57:0d:7e:82:3d:
38:15:0e:fd:8c:34:1b:9e:2c:92:12:50:82:1f:f2:08:fd:04:
cc:14:8e:ac:7f:d3:12:37:60:0c:fb:db:24:49:e9:0c:9e:78:
04:60:bd:59:4f:83:de:cf:87:62:ad:e6:09:51:8b:7f:d5:24:
68:db:03:6d:6b:f2:90:8a:5f:0d:50:de:20:f4:60:36:ea:ff:
b5:3b:eb:02:85:f5:2a:90:41:dd:71:36:30:01:68:dc:7f:76:
aa:71:13:b1:31:a5:3f:b0:02:4e:16:09:ec:5b:0c:bb:2e:5a:
87:9f:69:7c:a6:d4:21:f2:01:f4:61:3f:ac:7d:b3:25:2c:18:
e6:52:85:07:5b:04:b8:bf:c2:af:46:a2:87:36:4e:b5:aa:fd:
68:da:d1:bc:50:3f:9b:96:11:fb:50:77:f1:9b:c0:20:95:03:
a4:ed:42:5a:ac:50:34:ab:bf:81:e0:ed:43:13:20:69:ec:ef:
31:6e:8b:cd:34:b8:f3:59:05:79:ad:d6:0b:67:89:1d:2f:37:
32:07:58:d3:d5:33:81:cf:5a:a6:59:b0:06:8e:f9:fb:53:18:
d2:62:d7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 16 01:34:47 2024 by rpki-client on console-ams.rpki-client.org