Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sSiGbuXpSEVhJLNjr7Y5vUsLo7U.roa
File: sSiGbuXpSEVhJLNjr7Y5vUsLo7U.roa (raw, json)
Hash identifier: ysifIT6ZC1ZTQ2Za2BnJKKebLWudwrWOZXGnvQHaV70=
Subject key identifier: B1:28:86:6E:E5:E9:48:45:61:24:B3:63:AF:B6:39:BD:4B:0B:A3:B5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F0A0D3A338BBB73553D3B76D68DD12B8E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sSiGbuXpSEVhJLNjr7Y5vUsLo7U.roa
Signing time: Tue 23 Apr 2024 08:23:10 +0000
ROA not before: Tue 23 Apr 2024 08:23:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215208
IP address blocks: 45.8.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0a:0d:3a:33:8b:bb:73:55:3d:3b:76:d6:8d:d1:2b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 23 08:23:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b128866ee5e948456124b363afb639bd4b0ba3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a5:92:06:37:21:ed:2f:41:88:bc:d2:b8:9a:
eb:4f:47:52:6e:fb:e1:26:1f:2a:e3:de:21:64:20:
0d:01:98:5a:35:17:ed:83:f2:80:e5:3c:64:fd:f1:
da:c3:46:b3:25:46:c4:14:be:89:5e:d1:0f:21:97:
21:17:01:95:d9:3e:07:28:93:80:e7:00:b3:17:34:
e1:54:f4:05:20:30:69:d5:b5:41:7c:97:86:cd:58:
5b:ba:7a:76:99:a5:a1:71:9e:97:2b:c5:1f:30:1b:
8b:8e:d4:10:4c:31:21:ef:64:61:59:70:b6:5d:7a:
ae:6b:73:86:c7:bc:94:c1:46:fd:2f:84:9e:6e:6b:
b5:f7:73:3c:e6:a3:8b:5b:34:d9:af:69:10:bb:ba:
a0:ff:c0:ac:5f:9b:26:0f:a3:65:cb:30:3b:8f:f7:
b4:db:57:f8:2c:99:60:fc:69:f6:da:21:50:be:80:
84:73:d3:2a:f9:3a:69:eb:dd:a3:f3:d7:ce:8b:ed:
ea:f0:90:9a:a8:88:ff:fa:63:dd:b5:d3:3c:41:5e:
9d:b3:2a:47:f8:90:17:d7:ac:1e:7f:0f:65:43:7d:
15:b6:ec:40:b4:2e:a2:c8:b5:aa:fa:9e:8a:9b:c1:
87:10:e9:70:2a:43:9e:18:74:8a:28:13:64:6d:4b:
20:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:28:86:6E:E5:E9:48:45:61:24:B3:63:AF:B6:39:BD:4B:0B:A3:B5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sSiGbuXpSEVhJLNjr7Y5vUsLo7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.92.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b9:a8:64:20:22:21:ad:ea:cc:3b:00:92:7c:f2:6f:4b:06:
1b:d2:2a:b0:9e:49:f7:4c:77:fd:a7:c2:23:c6:8a:bb:57:72:
29:58:f6:63:99:26:48:f7:38:94:2c:19:46:85:d2:97:d0:a4:
fb:3f:93:da:e5:95:72:fb:9e:4d:c1:14:fb:b5:39:7e:cd:22:
74:9e:f0:13:fe:ca:c8:a6:d0:1a:b9:7b:e8:cc:78:c4:67:38:
af:75:05:15:a3:f0:b7:2c:f7:f5:b3:61:e5:6c:3c:ae:b7:86:
f5:56:50:f6:e1:2c:37:8f:7c:a7:02:f9:b1:2f:d2:ad:1c:06:
8f:9c:3d:34:86:3d:49:f4:75:96:d4:c2:5f:b2:34:f9:5f:72:
3a:7d:10:0c:85:6a:f1:6d:78:e0:d0:88:37:2e:cc:83:2b:52:
42:0c:28:aa:fc:23:d3:fa:91:15:32:85:83:e8:c1:43:d6:f3:
a8:ab:61:0e:cd:ad:3e:d0:48:f0:4d:a1:9c:f9:63:81:a5:ed:
00:c1:56:e6:00:93:37:7f:4d:8e:df:4c:d7:c7:ea:0f:2d:f0:
ef:cc:b0:7b:81:63:25:0f:e5:5e:c2:12:00:4a:63:9e:1b:32:
4a:f5:3a:d5:c9:23:0b:68:cf:53:c0:e1:7a:2c:28:47:d6:de:
eb:0b:29:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 04:30:48 2024 by rpki-client on console-fra.rpki-client.org