Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gBLEoVcRAX9Se7gHT2Yo6U6GN-c.roa
File: gBLEoVcRAX9Se7gHT2Yo6U6GN-c.roa (raw, json)
Hash identifier: uvSjeyJD+cq8PMPf11SkoPJmDA4kWW67EaLG6rSPgM8=
Subject key identifier: 80:12:C4:A1:57:11:01:7F:52:7B:B8:07:4F:66:28:E9:4E:86:37:E7
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018CC9BCA0E402FE7A2081F28B347BFEA4D8
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gBLEoVcRAX9Se7gHT2Yo6U6GN-c.roa
Signing time: Tue 02 Jan 2024 10:33:51 +0000
ROA not before: Tue 02 Jan 2024 10:33:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1136
IP address blocks: 145.119.0.0/18 maxlen: 18
145.15.111.0/24 maxlen: 24
145.15.110.0/24 maxlen: 24
145.15.109.0/24 maxlen: 24
145.15.108.0/24 maxlen: 24
145.15.108.0/22 maxlen: 22
145.15.115.0/24 maxlen: 24
145.15.114.0/24 maxlen: 24
145.119.160.0/19 maxlen: 19
145.119.199.0/24 maxlen: 24
145.119.192.0/18 maxlen: 18
145.15.208.0/21 maxlen: 21
145.4.224.0/20 maxlen: 20
145.119.128.0/18 maxlen: 18
145.119.64.0/19 maxlen: 19
145.119.64.0/18 maxlen: 18
145.78.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 02:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a0:e4:02:fe:7a:20:81:f2:8b:34:7b:fe:a4:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 10:33:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8012c4a15711017f527bb8074f6628e94e8637e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d4:fe:37:0e:20:3f:36:3a:23:cc:e4:b7:d0:
59:84:07:f3:60:6b:dc:24:50:cf:38:54:3d:8b:b1:
92:50:3b:39:bf:48:8f:32:a0:56:1c:16:f4:e2:97:
20:79:02:4c:36:df:a4:9b:29:80:76:53:1f:20:4c:
16:1d:3e:76:8d:bb:d0:3a:e0:68:b5:a9:28:4f:eb:
26:cc:59:89:ac:4b:cc:68:43:ab:f6:4c:be:ec:d7:
00:0f:38:6f:5a:fb:e4:37:1e:bf:36:84:95:c8:8c:
09:28:06:1d:68:1e:8d:91:82:17:24:0b:c0:a1:ed:
03:68:58:7b:3a:7e:1e:55:d5:50:49:92:c8:44:35:
55:19:22:7e:16:bf:6d:97:a1:a1:5a:0e:fd:58:cf:
1b:93:6b:c6:be:e9:b3:7f:e1:84:3e:34:99:3f:49:
ad:6d:2a:c2:9a:37:b8:2b:e1:ba:a5:0a:f7:4d:15:
eb:9b:86:d2:75:b7:63:d5:ce:92:1e:3a:4c:c8:2d:
ce:81:f4:fc:3f:0c:d6:dd:dd:82:8a:5d:e6:06:28:
11:94:c5:9b:98:46:ee:87:2d:d5:2c:50:1c:ca:f4:
c2:be:74:1e:b5:ee:79:78:b1:33:1c:b0:dc:ac:17:
59:70:8c:25:98:fd:43:bb:15:f2:e4:9b:2a:fe:1b:
50:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:12:C4:A1:57:11:01:7F:52:7B:B8:07:4F:66:28:E9:4E:86:37:E7
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gBLEoVcRAX9Se7gHT2Yo6U6GN-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.4.224.0/20
145.15.108.0/22
145.15.114.0/23
145.15.208.0/21
145.78.0.0/16
145.119.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a2:d2:34:ba:93:07:f0:c0:3b:5b:c0:fa:ee:6a:d9:33:1e:31:
1c:59:f9:f0:87:b0:bd:f9:f1:e2:d0:18:8f:f1:47:31:50:10:
29:5c:8c:31:c5:07:39:82:45:0a:40:bb:f7:e9:0b:1a:6f:9e:
05:fb:52:08:27:09:7e:bb:9d:f3:cb:4b:42:9e:34:be:33:0c:
ee:98:5d:6a:10:a9:aa:42:7f:33:c5:f7:3c:ad:d9:16:47:53:
fe:3c:23:2c:30:5d:bd:f0:fe:8b:d6:d3:44:ed:0d:3d:66:fa:
68:95:db:b4:a7:bc:67:47:41:8d:bb:01:b5:ac:89:02:d4:74:
39:a5:c8:4c:68:20:4a:01:59:04:bb:1d:b3:f7:cc:93:1c:be:
7d:09:bf:e8:b3:e7:cd:e5:66:9c:fd:61:91:2f:6c:d2:04:3c:
35:43:66:9f:b0:62:f4:00:56:c0:67:fd:07:6d:0a:b3:00:7e:
a1:ce:dc:88:9d:00:15:79:2c:94:d9:4b:97:77:fb:5a:b3:d4:
3b:5a:50:4f:3e:8b:c7:4b:e8:dd:b1:49:cb:58:06:47:09:0c:
8b:ee:5c:53:55:de:bf:f2:88:6a:71:0c:aa:05:f7:68:6b:9f:
0b:24:84:14:ff:ff:ce:fd:4c:ba:99:4b:c4:5c:3a:69:ce:4b:
5b:70:4f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:07:06 2024 by rpki-client on console-fra.rpki-client.org