Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/0GVAsOQ4BkcUx-BBVoiTGi1mZ4U.roa
File: 0GVAsOQ4BkcUx-BBVoiTGi1mZ4U.roa (raw, json)
Hash identifier: JmZyA9s7pYiFUdzwgvykJObPj+B60McJN3SDBwMu8Qw=
Subject key identifier: D0:65:40:B0:E4:38:06:47:14:C7:E0:41:56:88:93:1A:2D:66:67:85
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 018CC2DB02FE2E8B0D5803DE5409D7990872
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/0GVAsOQ4BkcUx-BBVoiTGi1mZ4U.roa
Signing time: Mon 01 Jan 2024 02:29:42 +0000
ROA not before: Mon 01 Jan 2024 02:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212477
IP address blocks: 45.15.210.0/24 maxlen: 24
45.15.208.0/24 maxlen: 24
45.84.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:02:fe:2e:8b:0d:58:03:de:54:09:d7:99:08:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jan 1 02:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d06540b0e438064714c7e0415688931a2d666785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d2:4b:77:04:cc:aa:05:54:1f:a0:c4:23:3c:
bf:bf:98:9b:c8:08:62:c4:be:95:c2:2b:63:8e:2f:
84:9c:89:63:d4:ec:0f:23:48:34:83:c2:4e:2e:69:
ce:91:e7:8a:5f:23:76:8e:c8:a2:10:72:be:19:5f:
a0:69:79:5d:07:9c:d1:6c:70:23:99:c2:c5:37:13:
d1:e4:6b:4a:58:1c:e5:e6:ad:b4:e4:b8:c3:06:cd:
3a:9c:d4:ff:72:fe:d6:29:03:97:c3:d3:77:7e:65:
ad:7f:3a:b5:d7:e8:0b:81:5a:36:50:97:d2:50:01:
32:34:78:1a:5c:22:74:d4:18:d9:5c:d8:ad:af:80:
05:29:36:63:7b:b9:b6:3d:2e:b6:c8:3b:42:ed:48:
4b:a8:b1:b8:7f:dc:32:a9:a3:30:f3:b0:98:cd:bd:
77:b7:6c:e8:ec:80:4e:11:9c:17:69:f1:78:3a:64:
f9:bf:fd:6d:5a:fd:72:5e:2b:0e:9e:ec:4d:ef:b6:
a4:a5:bc:73:e0:51:07:ea:99:27:e4:f7:fe:8c:6b:
17:dc:17:48:71:28:a5:d8:e7:2f:5b:ee:41:a0:b5:
d4:b3:84:4c:d6:15:39:ce:de:01:d7:7c:b9:57:00:
9e:76:d9:f2:54:7f:e7:3e:cd:a9:ab:26:d4:37:92:
24:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:65:40:B0:E4:38:06:47:14:C7:E0:41:56:88:93:1A:2D:66:67:85
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/0GVAsOQ4BkcUx-BBVoiTGi1mZ4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.208.0/24
45.15.210.0/24
45.84.59.0/24
Signature Algorithm: sha256WithRSAEncryption
91:c4:db:23:59:c6:ec:83:d4:00:0f:e6:f8:7b:b6:c5:72:ae:
f9:b4:d4:70:4f:d3:eb:65:ef:93:ea:b1:fb:3c:e2:e0:7a:e0:
9f:97:fa:1c:ac:0e:e6:73:89:34:72:08:9d:8a:94:b7:53:13:
26:3c:31:d9:61:fc:f8:62:a2:e2:8c:de:6e:08:45:80:e9:09:
1e:8b:4d:1e:c4:2b:12:20:d0:91:4e:3c:45:78:2c:72:d7:3a:
91:d9:64:46:b4:43:8c:46:f3:d1:d8:c6:a4:d4:b6:c7:27:d5:
d0:32:7d:54:fa:f8:e8:29:40:44:ad:5a:77:78:ae:36:8f:ca:
46:d3:cb:3e:c3:60:d3:c6:ef:f2:ea:d9:16:f1:b1:1c:84:b2:
9c:43:1b:ca:72:9b:0a:65:4f:fd:dd:79:43:e4:cc:73:bf:b2:
aa:86:10:cd:f5:b4:59:eb:88:3b:4f:ce:6b:ca:8f:76:20:9f:
95:d1:aa:ab:0a:84:81:e7:f7:ff:5b:74:d8:38:88:53:8a:0c:
30:ca:66:32:bf:bd:5e:60:5f:fa:2f:d8:51:40:bd:07:67:a7:
5c:d7:ec:ec:df:d8:4e:5c:d8:46:54:71:d4:d9:9a:2f:fd:c2:
f2:ab:5f:c9:79:ed:8e:ad:a2:83:d4:2b:24:f7:9d:6f:73:3b:
8f:90:59:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 01:47:06 2024 by rpki-client on console-fra.rpki-client.org