Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/GAUVIPuqDmzKJxNF61BA98340sk.roa
File: GAUVIPuqDmzKJxNF61BA98340sk.roa (raw, json)
Hash identifier: F7Ra1dGpTnjJshcDtXkrQufDwmlnGOLsmjc8/zeTHA0=
Subject key identifier: 18:05:15:20:FB:AA:0E:6C:CA:27:13:45:EB:50:40:F7:CD:F8:D2:C9
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 018FF755D26217F20FB239884C6F159161A0
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/GAUVIPuqDmzKJxNF61BA98340sk.roa
Signing time: Sat 08 Jun 2024 10:12:27 +0000
ROA not before: Sat 08 Jun 2024 10:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 45.142.180.0/24 maxlen: 24
45.142.181.0/24 maxlen: 24
45.142.182.0/24 maxlen: 24
45.142.183.0/24 maxlen: 24
45.153.32.0/24 maxlen: 24
45.153.34.0/24 maxlen: 24
45.153.35.0/24 maxlen: 24
92.246.84.0/24 maxlen: 24
92.246.85.0/24 maxlen: 24
92.246.86.0/24 maxlen: 24
146.19.169.0/24 maxlen: 24
195.62.46.0/24 maxlen: 24
2a0d:c2c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f7:55:d2:62:17:f2:0f:b2:39:88:4c:6f:15:91:61:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Jun 8 10:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18051520fbaa0e6cca271345eb5040f7cdf8d2c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cc:07:a9:27:ca:36:5c:81:2a:cf:90:e4:c1:
83:74:6d:e1:f1:f6:37:a0:5e:50:45:6d:54:30:94:
cf:1f:2d:c4:90:1e:62:51:2a:72:11:7e:37:04:53:
eb:3e:8e:87:a2:92:3a:13:4c:43:09:02:8b:a3:e4:
10:5e:9d:2f:80:fb:bf:d3:7f:d3:af:80:23:93:26:
1e:ac:56:b7:79:4d:fa:ae:7c:ff:a8:d9:6f:1e:df:
e9:2b:f3:27:b6:24:ac:a8:3d:78:c0:7b:e6:b1:dc:
5f:61:cf:48:c7:27:ce:1f:d4:a6:1b:81:96:01:7c:
31:d4:71:9f:9b:1a:72:41:5d:a6:c4:d9:33:34:91:
db:d6:cc:c7:84:47:29:5f:a4:b9:c2:88:40:69:e6:
65:94:3d:20:20:d5:df:11:eb:d6:bd:40:e6:5e:05:
22:6f:cf:8e:c1:80:fb:7f:9d:bd:dd:a8:d2:e7:9d:
57:13:aa:4f:0a:a8:b7:db:c0:0a:20:4a:b2:aa:1a:
75:0c:e0:34:d4:2e:5d:03:0f:5d:6e:67:d6:dc:57:
56:55:bd:0c:2e:ed:2f:26:b6:f2:cc:e5:b9:d4:48:
f6:53:97:55:e6:ec:c4:81:0a:b4:a4:8f:c1:c0:13:
40:a1:12:e6:fe:5c:c5:4c:98:8c:84:52:17:4a:e6:
69:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:05:15:20:FB:AA:0E:6C:CA:27:13:45:EB:50:40:F7:CD:F8:D2:C9
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/GAUVIPuqDmzKJxNF61BA98340sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.180.0/22
45.153.32.0/24
45.153.34.0/23
92.246.84.0-92.246.86.255
146.19.169.0/24
195.62.46.0/24
IPv6:
2a0d:c2c0::/29
Signature Algorithm: sha256WithRSAEncryption
b4:a4:9a:66:d9:89:97:67:94:7b:a9:e9:43:ac:80:d5:fe:c5:
e9:e2:b3:9a:c5:3a:15:c3:ab:57:33:10:d2:15:55:dd:25:1b:
0a:43:87:30:c8:b6:00:df:6f:d3:58:14:fa:a9:67:1b:9d:b2:
5f:4d:6b:ce:e6:7e:ab:3e:b1:d1:ef:36:07:d2:06:c1:f3:af:
39:b0:67:2b:81:0b:ef:b8:44:61:4b:66:fa:db:77:4d:4b:ef:
25:c5:96:3b:d2:0c:25:be:62:7e:8c:c7:87:2a:b7:c9:ee:75:
7e:c2:6c:26:5d:2d:05:7f:2f:15:37:a9:85:2d:ea:1b:27:0e:
fb:89:20:c3:fd:cc:32:ad:71:20:ae:88:5b:b7:8e:d1:66:4c:
ec:fa:6b:0a:1b:02:23:fb:65:b1:75:cf:d4:10:73:d4:58:6a:
d3:06:a9:ac:05:a1:90:42:97:d1:3c:c2:47:06:45:a8:f5:52:
57:35:de:88:70:64:22:5a:34:5b:ee:7d:1d:c9:e4:8f:5f:f6:
34:07:4c:fe:01:ea:2e:bd:74:db:be:17:b0:c4:63:65:eb:9c:
27:2e:d8:7c:8e:e1:8d:41:08:1d:f4:97:6d:33:09:b5:56:64:
43:5b:65:3f:4f:c4:b9:33:2b:f3:34:14:0d:29:bd:8e:a9:4d:
02:f7:37:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 12:25:39 2024 by rpki-client on console-ams.rpki-client.org