Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A9du1Romx3gdALarDGramthBsV4.roa
File: A9du1Romx3gdALarDGramthBsV4.roa (raw, json)
Hash identifier: HPt82BFcpUUbTzmciswluDs4DPtmvZBEY6z0CaQanyU=
Subject key identifier: 03:D7:6E:D5:1A:26:C7:78:1D:00:B6:AB:0C:6A:DA:9A:D8:41:B1:5E
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FA7512A1A471A14D8548FEEF7D0C1
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A9du1Romx3gdALarDGramthBsV4.roa
Signing time: Tue 02 Jan 2024 04:30:09 +0000
ROA not before: Tue 02 Jan 2024 04:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42708
IP address blocks: 45.92.228.0/24 maxlen: 24
45.91.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:a7:51:2a:1a:47:1a:14:d8:54:8f:ee:f7:d0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03d76ed51a26c7781d00b6ab0c6ada9ad841b15e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f4:9b:31:27:4a:97:93:4a:e9:c4:dc:8f:c6:
73:e3:88:5a:7d:71:d2:13:b6:f5:72:df:bc:24:98:
1d:26:dc:0e:ad:12:33:b0:0d:ae:63:ee:6c:41:c8:
77:ea:4a:5e:49:f9:2a:43:db:d4:63:9c:44:67:5f:
4a:2f:45:45:95:63:47:c8:ad:df:bf:67:b4:98:e8:
a6:c6:d5:5a:8a:34:b4:2b:ed:26:e7:ce:87:13:79:
fc:8a:4d:d9:89:4c:7c:45:7c:0e:f1:63:05:1e:d3:
30:c5:c9:06:b8:e2:38:0a:a8:1d:c4:4a:e8:b3:7d:
ca:19:be:70:95:f4:93:b3:74:03:ef:65:af:54:1c:
5f:de:f0:4a:86:34:6f:94:d3:b2:3e:3c:f0:c9:41:
e9:ad:a4:af:c6:50:1a:63:f9:62:6b:b4:57:84:c1:
3f:04:40:cf:6d:4c:6e:ec:1f:30:c9:05:9b:23:18:
f3:f2:82:25:ae:1c:13:f8:c5:9f:95:56:5f:6c:b1:
b8:63:fe:76:6e:ba:a9:fc:20:89:3c:b9:20:56:1f:
d0:8d:2e:ad:3b:59:f1:4d:ef:ea:fe:0d:ce:c1:02:
8b:9b:c0:c1:d2:ff:65:bf:11:d0:1d:ae:62:a2:c8:
e0:ca:4d:75:d5:ac:98:6b:72:3d:41:72:d3:6b:10:
7b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D7:6E:D5:1A:26:C7:78:1D:00:B6:AB:0C:6A:DA:9A:D8:41:B1:5E
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A9du1Romx3gdALarDGramthBsV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.21.0/24
45.92.228.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:a1:ae:d4:73:84:85:9f:c1:7b:06:10:46:18:85:a5:54:30:
fd:be:6b:04:95:d9:0f:34:17:bc:9f:03:48:68:54:2a:d6:4d:
2e:26:f2:51:9e:d1:7f:65:4f:66:62:ac:f8:e4:70:88:7a:a3:
37:10:14:e6:16:7a:e7:ca:18:65:7e:6e:21:05:c9:73:ac:4a:
5e:65:98:fa:2d:e3:5d:4a:ee:2b:7e:07:6f:05:c1:3d:b1:64:
3b:26:63:ba:f7:68:ff:5c:ed:46:d0:7d:a7:5c:64:ca:bc:54:
72:ac:91:da:68:36:be:2d:12:62:7e:6a:81:94:89:8d:ea:be:
23:72:6c:6b:c8:e9:6c:d0:8c:8a:9a:01:f9:32:47:5f:27:b5:
f6:c7:54:b5:91:11:92:cd:bd:0a:cd:47:d8:3a:db:8e:7a:41:
c6:c2:51:ad:68:48:52:7b:e0:c8:74:38:cb:b0:f9:15:94:a4:
2c:41:b4:6d:74:cb:4b:6c:97:ce:6b:56:e3:e6:63:2a:bb:8c:
87:5a:61:d8:e2:89:d5:db:b6:3b:7f:4c:83:5d:bb:24:4e:09:
20:41:7a:ad:05:c3:15:c8:71:f4:e1:07:17:2d:c2:f0:f8:09:
b8:ba:88:89:94:c4:8d:0b:e7:f1:38:0e:36:a7:5d:35:dc:b0:
30:52:7c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 07:06:24 2024 by rpki-client on console-fra.rpki-client.org