Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/DltXskVyQ7i_oNmF2TzFribRtgY.roa
File: DltXskVyQ7i_oNmF2TzFribRtgY.roa (raw, json)
Hash identifier: NL5t0R6f0jQ81qNEj9RoYSUtwfld8tmA/UhQRcUFaAA=
Subject key identifier: 0E:5B:57:B2:45:72:43:B8:BF:A0:D9:85:D9:3C:C5:AE:26:D1:B6:06
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018FF2724B63256AC071DF61157EB905E002
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/DltXskVyQ7i_oNmF2TzFribRtgY.roa
Signing time: Fri 07 Jun 2024 11:25:27 +0000
ROA not before: Fri 07 Jun 2024 11:25:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 82.115.9.0/24 maxlen: 24
89.251.10.0/24 maxlen: 24
103.25.86.0/23 maxlen: 24
188.253.8.0/21 maxlen: 24
202.133.90.0/23 maxlen: 24
213.173.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f2:72:4b:63:25:6a:c0:71:df:61:15:7e:b9:05:e0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 7 11:25:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e5b57b2457243b8bfa0d985d93cc5ae26d1b606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8f:43:9d:fa:34:8d:d0:e2:df:c4:77:e2:4d:
4f:c5:87:11:de:49:eb:5e:ba:b4:3b:0b:01:88:75:
4d:eb:8f:e5:ae:3d:44:87:8c:33:e6:41:e8:d3:f4:
7a:3b:a5:ac:0f:1e:6f:2f:99:1b:5c:5c:33:95:6c:
9e:7c:da:1f:a4:ce:90:ff:76:58:05:85:39:1a:b0:
c4:f4:2f:0a:28:17:19:36:2d:33:b0:be:42:84:a3:
c7:d0:a8:02:bd:15:80:17:dc:8c:a9:08:24:03:cc:
a4:f1:d0:09:b6:46:b8:43:f0:84:46:d2:4f:e1:30:
94:5b:31:e9:7b:2c:75:44:a8:24:15:1a:67:17:6c:
8e:0f:e3:70:8b:61:48:89:dc:10:10:c7:d2:b4:92:
9c:7c:4b:e5:c7:60:65:59:a3:89:54:18:d5:dc:eb:
80:99:ae:b6:e8:d9:2c:ac:d9:df:ef:4a:e6:11:ce:
74:b8:c2:2f:96:27:a6:57:93:b2:69:63:ae:58:ed:
9a:3f:d3:4a:0b:4e:8f:28:3f:08:de:09:f6:f2:7f:
18:e3:05:1f:03:ea:ab:f1:31:b6:8a:ac:f3:2a:85:
1a:13:38:2d:39:f1:79:a9:b7:5e:7d:28:6b:b1:f1:
33:4f:08:76:53:84:97:6b:16:57:58:49:0a:4b:d3:
1c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5B:57:B2:45:72:43:B8:BF:A0:D9:85:D9:3C:C5:AE:26:D1:B6:06
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/DltXskVyQ7i_oNmF2TzFribRtgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.9.0/24
89.251.10.0/24
103.25.86.0/23
188.253.8.0/21
202.133.90.0/23
213.173.32.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:74:43:ae:28:84:09:be:d5:c6:63:4e:11:0b:19:4e:02:4a:
8c:fb:ab:53:f5:f1:d3:8e:a4:08:bc:ef:0b:f1:eb:f1:7e:bc:
9a:f3:0b:fa:28:9a:29:44:48:75:29:16:be:7f:21:68:98:39:
46:f9:e5:05:c9:7b:c0:8e:e4:71:ba:2b:8d:fe:b3:86:9d:84:
43:ab:6c:42:79:e1:7b:67:09:a9:c9:46:df:5b:c0:74:8c:58:
df:df:94:2c:e5:47:2e:af:dd:50:93:fb:4e:19:60:8e:c4:4f:
86:5b:c1:f2:38:d1:ee:f8:3f:3d:3c:1c:04:1c:66:d4:71:b2:
5c:b5:07:7d:90:80:9d:21:63:7e:73:67:4c:54:53:ad:c7:68:
26:6d:e3:33:82:18:fb:47:65:cf:ad:a5:e0:64:21:c2:f0:45:
ee:71:f3:f5:b7:4f:e8:bd:e5:df:ae:b9:55:12:9f:9a:e5:ce:
08:e0:44:ae:0d:6f:4d:1c:62:00:5a:77:05:10:fd:07:04:e5:
20:83:b4:4e:7c:d7:60:ac:d8:04:d7:1a:f5:32:fc:56:b4:54:
bf:04:6f:d6:3f:16:1f:8a:02:28:ac:f7:71:b3:a2:4e:59:af:
26:5a:c9:d9:94:43:a0:8e:f3:1b:fb:31:25:a2:99:28:6a:09:
64:ab:65:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 15:13:30 2024 by rpki-client on console-ams.rpki-client.org