Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LENDKyAH5MoP3qrOn4Mv3QxuB2M.roa
File: LENDKyAH5MoP3qrOn4Mv3QxuB2M.roa (raw, json)
Hash identifier: yNqCnYRO34Fxg6z3gQVfh3izuEs7be9ykZtgS5GWvUE=
Subject key identifier: 2C:43:43:2B:20:07:E4:CA:0F:DE:AA:CE:9F:83:2F:DD:0C:6E:07:63
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 019000EF18E3DAA7A1BB7D250D00053E0F75
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LENDKyAH5MoP3qrOn4Mv3QxuB2M.roa
Signing time: Mon 10 Jun 2024 06:56:27 +0000
ROA not before: Mon 10 Jun 2024 06:56:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57138
IP address blocks: 45.149.104.0/24 maxlen: 24
2a07:e340::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:00:ef:18:e3:da:a7:a1:bb:7d:25:0d:00:05:3e:0f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 10 06:56:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c43432b2007e4ca0fdeaace9f832fdd0c6e0763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cd:22:08:27:6a:cf:fb:c6:bb:38:c5:b1:df:
23:59:71:44:a5:31:c2:f3:80:2b:29:7b:8b:5a:4e:
86:8b:76:ef:80:58:33:20:a4:d7:76:31:01:75:48:
bf:3d:5c:86:1c:95:e4:3c:1c:87:d5:e0:cb:59:d0:
3d:36:6f:4a:ab:5b:64:61:21:14:2e:3a:d5:ff:7c:
fb:d1:ae:1c:bb:55:d0:be:53:be:1b:2f:2a:c7:08:
d4:2f:97:da:da:38:9d:20:37:bd:c6:36:b8:ad:d6:
24:b2:69:88:3b:9f:da:5f:e1:11:f1:93:da:5c:f4:
7f:46:f8:0a:08:3e:59:07:1a:e6:b2:3e:34:91:c1:
7a:7f:82:ed:52:b2:2f:28:62:7f:26:c2:3b:d9:08:
18:34:31:6f:3b:e5:80:8f:d4:eb:e7:4f:7a:c3:f9:
b6:74:28:79:c9:23:94:16:93:5b:5c:6a:1e:64:e0:
9c:a3:87:90:bd:5e:0b:44:51:7c:c0:32:81:08:2a:
f3:dc:a6:59:f8:03:52:d7:ed:cf:93:a3:2f:dc:b0:
03:ff:f7:3e:7c:d0:d4:82:35:f0:2b:ba:1e:9d:2e:
25:68:de:da:3a:7a:a9:62:5f:1b:22:1f:33:9b:ba:
3f:8a:aa:c0:5d:be:77:d2:de:2c:77:52:89:3a:2c:
57:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:43:43:2B:20:07:E4:CA:0F:DE:AA:CE:9F:83:2F:DD:0C:6E:07:63
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LENDKyAH5MoP3qrOn4Mv3QxuB2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.104.0/24
IPv6:
2a07:e340::/32
Signature Algorithm: sha256WithRSAEncryption
17:25:a6:6e:0c:75:2b:fb:bb:7f:9f:a4:2d:f8:57:68:16:fa:
e1:d2:38:d1:9a:0a:06:90:cb:65:35:11:6e:00:2c:52:44:f5:
ba:b0:69:85:fe:8e:89:94:11:01:5a:8f:6d:6c:c6:ff:59:74:
9e:ff:47:8f:f6:d2:23:2e:b4:71:30:5e:af:89:71:52:eb:82:
a2:a4:26:64:f0:d2:2c:f5:23:2b:29:a5:2e:c0:77:b3:3f:ad:
fc:e0:98:89:6d:f0:74:b9:7a:cc:6d:59:f0:56:14:39:81:ce:
44:8e:8f:41:46:30:7a:e0:42:d7:aa:8a:32:aa:a2:ed:8f:33:
3c:6a:6b:26:9a:f8:5b:06:e5:cf:9d:2d:c6:ab:ba:a6:cd:a6:
49:fd:3d:63:29:5f:98:58:bc:70:58:ff:4e:16:b2:e5:59:1a:
ab:e8:a5:fc:3e:07:4d:db:e2:d7:06:0c:9f:e9:42:2c:e6:44:
a6:a4:6e:6c:fd:31:77:9e:30:a0:70:93:01:5d:01:f4:c7:ef:
80:13:1b:6b:70:ca:04:ac:93:c5:24:f9:02:51:44:6a:bb:95:
91:91:b3:c2:e6:29:80:39:de:b3:e0:f4:8b:79:15:11:97:fa:
df:2f:a0:0e:2d:db:20:9c:3e:fc:32:cb:ca:60:35:56:0d:72:
67:90:e3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 09:05:20 2024 by rpki-client on console-ams.rpki-client.org