Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/u0ieQ5zg0xkhFxX-Xiacgr4x1Ck.roa
File: u0ieQ5zg0xkhFxX-Xiacgr4x1Ck.roa (raw, json)
Hash identifier: hdFZaNq8JR+/MHKt2e64crziERvUJmjwzwj5zg6a1ns=
Subject key identifier: BB:48:9E:43:9C:E0:D3:19:21:17:15:FE:5E:26:9C:82:BE:31:D4:29
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F6265542CF1907AE9115CE4142E64F5
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/u0ieQ5zg0xkhFxX-Xiacgr4x1Ck.roa
Signing time: Tue 25 Jun 2024 12:32:46 +0000
ROA not before: Tue 25 Jun 2024 12:32:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396611
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:65:54:2c:f1:90:7a:e9:11:5c:e4:14:2e:64:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb489e439ce0d319211715fe5e269c82be31d429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b6:45:f0:b2:f9:71:e9:b7:49:85:df:92:3a:
49:65:56:e1:1f:15:80:cd:73:0f:b1:34:27:99:4a:
ec:3a:47:23:55:b5:a9:e7:77:93:dc:e4:4f:cb:69:
ac:f3:2e:0b:41:3d:b1:5a:4f:e7:6f:73:74:38:b9:
90:93:12:bb:7b:cc:53:38:9b:f1:50:43:d0:17:ef:
d9:d8:08:3a:00:e5:2c:70:40:57:25:42:0d:5a:fe:
49:7d:bb:27:da:88:bf:91:99:0f:91:da:de:7b:55:
d4:48:45:06:31:62:23:a6:bb:2c:58:3c:9d:11:af:
0a:31:43:28:aa:70:33:c3:6b:26:53:63:74:f0:9e:
46:3c:dd:ac:92:6f:28:86:56:14:73:06:5a:ea:08:
76:1b:f4:62:ed:79:81:41:15:81:d7:05:5e:8c:fc:
d9:50:c0:c7:17:a8:74:9e:02:23:a1:29:87:2e:a1:
74:22:8f:2b:c0:55:ed:47:c2:5f:2f:c4:3a:91:60:
5a:25:c7:bb:09:45:69:b4:99:a0:93:d3:8a:2c:d2:
b7:40:9c:90:5c:4a:e5:31:cf:c3:3c:82:8f:29:9c:
b5:38:a5:e2:3f:80:e8:0a:fe:03:47:13:52:10:94:
b0:2e:f7:9f:8e:9b:a0:ac:ca:65:a6:bc:f5:93:eb:
a8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:48:9E:43:9C:E0:D3:19:21:17:15:FE:5E:26:9C:82:BE:31:D4:29
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/u0ieQ5zg0xkhFxX-Xiacgr4x1Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
0d:be:80:9a:01:c7:34:53:e6:f8:c3:4e:6f:86:37:7f:c7:86:
a4:a7:38:b9:a0:07:23:f5:72:3e:ff:95:67:f6:dd:e2:61:84:
65:9a:a3:53:be:76:5a:14:f9:c0:32:a3:03:93:6f:7b:c2:f1:
20:18:49:0f:10:45:99:ce:ab:46:b8:bf:8c:76:bd:71:4f:c8:
36:e8:49:dc:73:84:3a:86:41:e2:59:08:ac:d4:bc:73:c0:a2:
03:0d:ea:89:4a:ef:17:1d:3c:2d:db:fa:a9:8f:33:96:62:09:
03:5c:33:ec:34:33:b7:3b:01:bb:e3:15:12:3d:8d:8a:44:37:
f8:1e:21:4a:bf:7e:66:be:26:b0:65:23:2b:31:8c:1d:e0:5c:
f8:57:99:e2:83:36:1f:5c:3b:01:af:d8:a8:f6:2c:8f:61:2c:
f8:3f:f2:2a:23:96:36:24:6a:4a:2f:50:28:b4:9f:e4:a2:f1:
ee:f3:33:6d:b1:d3:3f:f0:3b:dc:64:1e:4c:e4:b8:5a:b8:1b:
bd:60:68:c5:11:ad:a1:f5:db:44:07:f0:88:3f:50:f1:ad:b8:
bb:a5:26:87:75:2f:7c:81:1b:f8:c6:6f:74:73:86:3b:4d:88:
82:b4:2f:59:71:9f:a7:17:51:28:92:5b:7a:d8:04:41:48:26:
f2:35:79:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:34:19 2024 by rpki-client on console-fra.rpki-client.org