Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/2Sckbqu-D1sYaAT4k4Q68q0cbkY.roa
File: 2Sckbqu-D1sYaAT4k4Q68q0cbkY.roa (raw, json)
Hash identifier: 6QD/44qIvOWj9Ui1cybQmEuQIVMatO0cEh16lMSF1Pc=
Subject key identifier: D9:27:24:6E:AB:BE:0F:5B:18:68:04:F8:93:84:3A:F2:AD:1C:6E:46
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018CC8DFACDF8A440EBC85AB44FDEA81BBFC
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/2Sckbqu-D1sYaAT4k4Q68q0cbkY.roa
Signing time: Tue 02 Jan 2024 06:32:31 +0000
ROA not before: Tue 02 Jan 2024 06:32:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213205
IP address blocks: 45.155.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:ac:df:8a:44:0e:bc:85:ab:44:fd:ea:81:bb:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 06:32:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d927246eabbe0f5b186804f893843af2ad1c6e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1d:19:14:1c:18:73:34:c9:60:36:20:05:3b:
14:95:d8:63:00:45:32:20:d0:c8:c1:01:29:63:09:
23:be:11:02:b1:f1:4f:c7:1a:98:34:cc:fc:c4:e3:
21:0b:76:9d:0e:34:18:53:28:80:1b:34:e8:42:14:
af:ce:c9:b9:ff:5c:7c:0b:c3:41:70:8c:ad:97:ea:
fb:1b:90:34:6d:cb:cb:29:df:e4:22:68:74:84:b6:
36:9f:8a:51:1e:28:9f:e7:e3:3a:5e:cc:b2:c2:c5:
89:16:e1:2c:8e:67:74:05:7f:75:89:95:9f:85:f2:
28:e4:1e:f1:56:cc:2c:57:93:0d:c8:87:cf:91:ee:
08:26:41:f7:73:64:7a:04:80:16:c5:90:da:89:79:
99:a8:99:52:a0:06:5e:d9:47:1a:e2:6a:ce:79:1c:
0c:cf:b1:5c:28:ff:f0:78:c3:4d:f6:d9:f9:a0:e5:
36:2f:21:07:4c:ac:74:07:5f:44:db:3a:41:01:4c:
7a:e7:30:44:ac:fc:04:74:47:04:23:97:5f:41:7a:
41:01:64:85:81:87:cb:37:d5:67:5f:be:c1:63:3d:
b8:e6:c8:36:9e:3c:e1:59:b1:f6:7b:ea:5d:7f:0b:
75:79:dc:bf:f0:40:8a:54:28:f6:45:32:21:a0:eb:
57:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:27:24:6E:AB:BE:0F:5B:18:68:04:F8:93:84:3A:F2:AD:1C:6E:46
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/2Sckbqu-D1sYaAT4k4Q68q0cbkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.89.0/24
Signature Algorithm: sha256WithRSAEncryption
02:d1:cd:5f:6d:2b:fe:b3:58:06:2f:2e:38:5b:31:e0:f6:ea:
bf:b0:d6:be:a8:a5:bd:8e:01:91:c1:4f:4c:51:09:ec:bf:ee:
94:11:b8:75:37:f6:cb:88:b4:88:79:1a:49:0d:7c:43:93:4f:
7a:82:7f:61:8a:c0:54:d1:df:e3:ff:9e:53:48:33:77:cb:52:
fb:72:cf:95:bd:7e:4c:d9:7f:eb:7f:ea:c5:cb:91:ec:89:fe:
04:6d:fd:0c:31:91:ee:e3:78:a5:d8:90:a8:50:01:e2:a9:1d:
c0:81:af:5e:43:80:3f:91:ee:e8:cd:58:86:3c:09:b3:72:a4:
06:cf:bc:a7:d9:32:ca:5a:7c:7b:60:81:03:4a:0b:30:03:65:
50:f0:8c:9b:8d:35:d6:4d:5a:80:a9:5f:2b:16:55:a2:06:21:
e3:64:0e:41:be:10:dd:7d:17:d4:19:44:0b:41:7f:10:c7:4b:
98:14:9b:a8:bb:7b:fd:c0:72:7e:a6:90:25:6f:dd:b4:65:b6:
96:9b:4d:98:aa:c0:e1:8d:29:df:e6:72:77:da:80:4f:96:2f:
72:29:ec:28:e5:39:88:58:1c:e4:26:d9:cb:ba:08:35:2e:ba:
3f:f3:76:db:f4:e6:7e:e4:96:a9:7d:f9:ec:31:dc:77:c5:dd:
16:75:cd:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:26:31 2024 by rpki-client on console-fra.rpki-client.org