Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GdmQfX5NVMA2_5-oDNpSmNjjmeA.roa
File: GdmQfX5NVMA2_5-oDNpSmNjjmeA.roa (raw, json)
Hash identifier: Gnu/sxeA4fhVYH7Ew6xp/1I1+aOSenP2FDpq7A0C/3k=
Subject key identifier: 19:D9:90:7D:7E:4D:54:C0:36:FF:9F:A8:0C:DA:52:98:D8:E3:99:E0
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018EAEDBF4A98750773B760B6BB14715D66D
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GdmQfX5NVMA2_5-oDNpSmNjjmeA.roa
Signing time: Fri 05 Apr 2024 15:23:54 +0000
ROA not before: Fri 05 Apr 2024 15:23:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.134.36.0/24 maxlen: 24
45.142.105.0/24 maxlen: 24
45.151.56.0/24 maxlen: 24
92.118.204.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft
rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ae:db:f4:a9:87:50:77:3b:76:0b:6b:b1:47:15:d6:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Apr 5 15:23:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19d9907d7e4d54c036ff9fa80cda5298d8e399e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:9e:5b:50:01:12:bc:1a:4c:57:e0:6a:e0:
f0:16:40:0f:e2:b7:88:11:c5:0f:74:a8:01:19:d0:
f9:90:a1:ad:ca:66:14:92:e1:bf:56:db:16:db:18:
f7:3f:d6:c3:89:71:69:4b:26:78:99:7c:00:07:c5:
27:b0:50:cc:9a:6b:c3:28:37:fe:98:0a:7c:52:30:
97:50:34:37:27:e1:ec:85:b9:e7:b5:73:05:54:3d:
f5:cf:f7:25:b2:87:41:c9:94:b7:c4:8a:8c:07:e6:
0f:4c:27:19:80:fb:cd:2a:b4:c6:b9:f0:3e:85:a9:
16:37:b3:1e:f3:f3:02:08:05:52:14:7c:ee:7c:85:
66:57:41:37:d9:00:f5:df:09:af:10:50:45:80:c5:
ed:75:57:1b:2d:c7:0a:cc:89:6c:ae:13:f4:19:4c:
cc:4f:8f:f9:d2:ac:dc:b9:25:b2:14:06:46:63:1a:
5c:ed:4a:75:3f:d4:45:f9:2c:00:1a:f2:47:59:fb:
d0:4a:86:74:43:e1:74:20:67:66:7b:eb:af:04:02:
8d:55:fd:e3:aa:17:51:c9:ec:b6:70:7d:3f:7d:d8:
f8:b0:b9:3c:62:57:7f:48:21:c1:bc:54:e1:22:e9:
c6:67:4d:d8:3a:b4:1a:c8:25:61:44:7b:2e:d8:a5:
7c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D9:90:7D:7E:4D:54:C0:36:FF:9F:A8:0C:DA:52:98:D8:E3:99:E0
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GdmQfX5NVMA2_5-oDNpSmNjjmeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.36.0/24
45.142.105.0/24
45.151.56.0/24
92.118.204.0/22
Signature Algorithm: sha256WithRSAEncryption
13:12:78:07:2c:35:9d:2f:1d:02:f8:be:a6:4d:65:ca:82:15:
18:c7:a7:28:df:fd:85:54:66:83:63:02:6d:d0:96:a9:2e:83:
32:bf:e4:c9:eb:7c:f7:64:1a:cd:42:d0:c1:3c:3e:5c:06:01:
1c:f6:43:79:3a:1f:05:79:c3:81:79:14:69:44:7f:ce:4a:ab:
a1:92:b5:12:7a:d9:e7:1f:a8:6d:dc:4d:e7:26:2a:c9:ce:d3:
d2:4a:d2:98:fb:c9:d5:ee:9b:d5:30:17:5d:2a:a5:ab:d6:d9:
30:9b:21:31:cd:f3:48:da:77:f9:e4:2c:69:0b:45:cf:41:ec:
0d:12:bf:80:8f:e8:1a:4c:29:40:3b:86:db:2f:1c:99:dd:6e:
1b:15:59:fc:78:c7:be:5f:15:6c:66:1b:06:a7:b0:c8:8c:53:
b5:8d:62:e2:f2:a9:e6:8b:e1:2e:7f:d8:5d:23:01:f1:11:e2:
5a:b1:56:59:4a:ca:4c:0f:a7:ca:88:48:82:f4:9a:9a:f7:af:
92:3e:a5:46:7a:eb:3d:c6:55:f7:3e:89:bd:cc:3c:59:ae:9c:
86:c1:db:b6:2a:a2:6f:bc:c6:bf:ab:10:d8:42:96:39:ee:55:
3d:47:8b:77:5b:cd:aa:0f:76:2b:d7:41:71:ba:38:5b:1b:95:
76:11:ea:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 13:45:33 2024 by rpki-client on console-ams.rpki-client.org