Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1mYZ5zAbKKPs7SGtMpQxXwRCw3I.roa
File: 1mYZ5zAbKKPs7SGtMpQxXwRCw3I.roa (raw, json)
Hash identifier: knnybFVr3BpLMgBEtql4ewhTGu2KQnC/BFnAzLpMRgc=
Subject key identifier: D6:66:19:E7:30:1B:28:A3:EC:ED:21:AD:32:94:31:5F:04:42:C3:72
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FA4DE12D6E4A01F28E72804124733
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1mYZ5zAbKKPs7SGtMpQxXwRCw3I.roa
Signing time: Tue 02 Jan 2024 04:30:09 +0000
ROA not before: Tue 02 Jan 2024 04:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25596
IP address blocks: 45.135.4.0/22 maxlen: 22
45.136.72.0/22 maxlen: 22
45.144.216.0/22 maxlen: 22
45.146.56.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 03:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:a4:de:12:d6:e4:a0:1f:28:e7:28:04:12:47:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d66619e7301b28a3eced21ad3294315f0442c372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fb:42:02:34:36:a6:fb:33:3c:e9:dc:c3:ba:
5f:99:15:4b:1e:36:21:a8:9d:e0:0f:5b:b6:1f:dd:
c7:b6:06:50:9f:5f:11:f3:5f:12:66:e6:e2:c3:5d:
20:2f:e3:20:0f:42:48:a4:36:30:44:0b:48:8f:77:
28:f8:30:eb:c4:4a:53:56:ba:66:70:cd:dc:2f:fd:
ba:01:c8:e1:92:29:de:1c:fa:1b:6b:cf:90:1f:84:
63:2d:18:12:32:f1:99:b1:fa:f9:e6:f3:9a:a5:32:
a0:a9:88:7e:26:cb:c8:75:60:83:ae:c4:40:74:4e:
df:53:6b:ac:f2:69:e7:82:30:56:cd:1c:8f:a6:20:
28:fc:55:b7:7e:5f:d5:5c:e9:c4:0a:4c:a0:40:b8:
2f:b8:38:18:07:84:dc:5f:22:bd:5b:5e:de:fd:bb:
08:a6:bd:5b:15:8c:e2:64:06:e0:eb:e2:e2:9a:3f:
2d:48:f8:8d:f2:ee:c4:70:f6:42:27:93:a8:e2:9b:
70:b4:bd:21:3a:80:42:b7:5e:8f:ec:f7:ad:36:68:
e5:f5:9d:e9:3e:ee:df:a0:68:c2:6e:10:27:15:bf:
53:42:04:cb:2a:fe:de:57:ef:b6:ac:03:f3:de:3b:
e6:31:c6:52:df:60:0d:1d:af:47:d4:41:f4:fc:d0:
ef:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:66:19:E7:30:1B:28:A3:EC:ED:21:AD:32:94:31:5F:04:42:C3:72
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1mYZ5zAbKKPs7SGtMpQxXwRCw3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.4.0/22
45.136.72.0/22
45.144.216.0/22
45.146.56.0/22
Signature Algorithm: sha256WithRSAEncryption
50:a5:e0:62:c6:57:37:c7:c8:83:f3:f8:5b:82:3e:c5:47:ac:
56:53:4f:3e:f6:51:52:6e:de:7f:50:5b:45:c5:01:09:a7:49:
0d:77:7b:e9:86:fb:6b:b6:fa:a4:1b:9a:9c:c7:9a:29:31:55:
4c:5d:ca:fd:cd:c2:bc:0c:9a:d7:ba:a1:40:09:1f:6c:75:5a:
0c:62:b1:dd:24:7b:b9:f6:2d:46:b6:eb:5f:b0:1a:f6:63:4f:
4f:4e:58:28:ce:f1:4e:eb:43:93:e2:3f:c0:ee:c9:48:60:6b:
ff:5d:14:c3:16:90:e8:62:87:94:04:8a:eb:39:e3:ad:fb:9f:
fe:58:68:2f:c7:b6:e1:6e:78:15:f3:7a:2e:d5:28:c6:2a:67:
b8:ad:5f:d5:27:73:da:8b:f7:a8:10:ee:71:bc:db:2f:34:12:
f4:89:8a:15:55:ec:aa:bf:04:bb:b1:68:db:86:eb:5f:4e:88:
9b:49:99:92:fb:ff:c7:26:cf:72:1c:3f:5d:d2:43:4a:dd:ea:
32:8f:dd:8f:be:38:28:10:e8:24:c9:54:36:10:da:d1:fc:2c:
5d:3c:0c:be:52:6d:7c:74:a9:9a:e4:0a:de:db:ad:83:fa:e4:
d0:12:1f:18:62:6e:ae:77:6d:cb:26:4d:d3:c3:d7:69:07:8b:
f2:a1:11:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 11:56:49 2024 by rpki-client on console-ams.rpki-client.org