Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/178b02-948c-4624-97b8-e4e17e4b5180/1/Gr26Mk1HQvGp3sVLrdIySyl84Gw.roa
File: Gr26Mk1HQvGp3sVLrdIySyl84Gw.roa (raw, json)
Hash identifier: l7vPbrDP3DPCxNMH1aCFH8VseOI0/L6hinP/cqhZgRc=
Subject key identifier: 1A:BD:BA:32:4D:47:42:F1:A9:DE:C5:4B:AD:D2:32:4B:29:7C:E0:6C
Certificate issuer: /CN=66759f7a8f90672ea8353af4d11d6ac5e9fd8206
Certificate serial: 018DC01472003A25356E6350926440C44145
Authority key identifier: 66:75:9F:7A:8F:90:67:2E:A8:35:3A:F4:D1:1D:6A:C5:E9:FD:82:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnWfeo-QZy6oNTr00R1qxen9ggY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/178b02-948c-4624-97b8-e4e17e4b5180/1/Gr26Mk1HQvGp3sVLrdIySyl84Gw.roa
Signing time: Mon 19 Feb 2024 06:36:21 +0000
ROA not before: Mon 19 Feb 2024 06:36:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151630
IP address blocks: 45.149.16.0/24 maxlen: 24
45.149.17.0/24 maxlen: 24
45.149.18.0/24 maxlen: 24
45.149.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/178b02-948c-4624-97b8-e4e17e4b5180/1/ZnWfeo-QZy6oNTr00R1qxen9ggY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/178b02-948c-4624-97b8-e4e17e4b5180/1/ZnWfeo-QZy6oNTr00R1qxen9ggY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZnWfeo-QZy6oNTr00R1qxen9ggY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c0:14:72:00:3a:25:35:6e:63:50:92:64:40:c4:41:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66759f7a8f90672ea8353af4d11d6ac5e9fd8206
Validity
Not Before: Feb 19 06:36:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1abdba324d4742f1a9dec54badd2324b297ce06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8d:b4:04:a4:ed:7d:0b:ba:6e:da:1a:67:c8:
27:4a:6d:84:53:8e:11:dd:00:7c:cd:af:8d:2f:c8:
96:06:f9:61:32:c7:46:85:a5:db:38:e0:7f:6b:05:
e4:7e:31:48:b5:57:41:f1:ba:39:1b:0b:56:c7:a9:
5f:7f:78:05:40:7d:2e:36:37:5b:c1:ef:f3:d4:da:
01:52:84:31:b5:87:19:72:e3:86:19:b4:c7:82:bc:
1b:1f:ad:ec:5d:14:77:47:5a:41:f0:2d:f5:f6:6e:
b4:2d:87:a0:ee:83:36:1c:04:d6:0e:eb:9b:4a:cc:
ba:67:4a:ac:bf:25:11:67:6b:bd:55:76:2d:15:67:
4b:6c:6e:02:d5:ce:3e:2d:d5:ad:14:90:07:a0:fe:
45:ab:b9:1d:f7:a1:e8:d6:4c:10:be:ba:5b:b7:ef:
bc:fa:31:26:75:a8:31:01:67:e4:a5:65:da:97:a2:
b7:85:cf:51:d5:b9:68:22:dc:ba:b7:ea:66:80:6e:
38:12:bf:50:5f:22:d8:74:f5:75:b4:fe:9b:b6:90:
89:4a:bf:70:23:e9:1b:e4:28:b6:1b:56:ea:00:bc:
83:6d:60:a3:3a:67:62:c4:02:7a:84:d6:a0:cc:44:
57:49:fa:c7:73:54:ac:b4:85:dc:aa:81:ac:6e:65:
a4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BD:BA:32:4D:47:42:F1:A9:DE:C5:4B:AD:D2:32:4B:29:7C:E0:6C
X509v3 Authority Key Identifier:
keyid:66:75:9F:7A:8F:90:67:2E:A8:35:3A:F4:D1:1D:6A:C5:E9:FD:82:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnWfeo-QZy6oNTr00R1qxen9ggY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/178b02-948c-4624-97b8-e4e17e4b5180/1/Gr26Mk1HQvGp3sVLrdIySyl84Gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/178b02-948c-4624-97b8-e4e17e4b5180/1/ZnWfeo-QZy6oNTr00R1qxen9ggY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.16.0/22
Signature Algorithm: sha256WithRSAEncryption
88:b4:aa:a8:22:9f:95:0f:61:6b:5a:86:f9:13:f1:e9:d5:59:
4b:9f:78:21:f3:d7:8d:6d:20:62:93:7c:bc:75:fe:6f:a2:e0:
a4:70:e1:60:31:b9:a8:2b:49:8c:e6:52:03:bf:9f:93:38:53:
05:45:a9:d4:40:b3:04:7a:c5:ef:a1:01:a9:d7:33:d1:72:33:
8e:13:54:7c:5d:3d:e9:ea:4f:ed:db:58:87:3c:cb:87:40:7d:
e4:bf:17:3d:53:59:26:00:cd:51:04:d3:bc:88:e1:64:52:95:
56:01:71:e3:d3:6c:ed:8b:bf:3b:e2:53:48:51:4b:8d:06:ce:
d0:69:2b:61:52:ed:cd:6a:48:c6:d2:9d:79:7d:8f:68:36:84:
b6:5b:64:cb:b5:9b:76:5b:bc:80:91:c4:19:2b:43:a6:31:ea:
a7:40:1f:ef:a3:4b:1c:93:45:95:c1:c7:8c:5a:fc:bb:5d:09:
88:1e:10:74:78:f4:07:ea:d8:fa:52:d0:77:b5:9c:bc:9b:5e:
91:06:e2:02:a8:49:63:38:82:1d:26:67:92:93:4a:d1:14:69:
37:54:ea:dc:10:d9:03:56:ef:f5:79:c8:45:ca:c4:a6:4f:7d:
ae:19:c4:ec:77:e1:43:72:40:42:84:52:e8:ac:4b:b4:69:02:
88:34:e6:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 01:45:29 2024 by rpki-client on console-fra.rpki-client.org