Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/bygjtqErseIgzy-EL5EejoDIW8U.roa
File: bygjtqErseIgzy-EL5EejoDIW8U.roa (raw, json)
Hash identifier: XHWP0sBjqcZd+isjRRyU4SnU/En6vVnfBEYv4e7fMis=
Subject key identifier: 6F:28:23:B6:A1:2B:B1:E2:20:CF:2F:84:2F:91:1E:8E:80:C8:5B:C5
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FAE631123B2FA71982D51BB947C3F
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/bygjtqErseIgzy-EL5EejoDIW8U.roa
Signing time: Tue 02 Jan 2024 04:30:11 +0000
ROA not before: Tue 02 Jan 2024 04:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60798
IP address blocks: 45.139.162.0/24 maxlen: 24
45.145.250.0/24 maxlen: 24
45.138.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:ae:63:11:23:b2:fa:71:98:2d:51:bb:94:7c:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f2823b6a12bb1e220cf2f842f911e8e80c85bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:16:1f:ff:28:68:a1:7a:fd:93:4e:0b:9b:22:
ad:5b:47:b1:1f:c9:05:c8:9b:a0:58:cd:de:b9:21:
50:0b:50:20:b2:7e:8f:cb:9a:e0:f4:89:3d:86:ec:
e4:42:48:62:4b:e9:54:c7:b8:00:f5:d6:b7:2c:35:
66:b0:67:ed:ef:90:18:f7:56:df:af:fa:66:11:68:
d1:a3:25:fb:cc:91:a4:d4:e3:9c:2c:2d:63:ce:7d:
48:1b:52:ba:10:42:3e:f8:79:55:a5:9f:75:75:ed:
64:d2:36:ce:02:bb:fe:83:ed:c4:da:38:8c:61:00:
95:ab:a4:83:8a:6d:68:29:6e:13:3b:87:50:34:a0:
25:ab:11:67:42:a1:dc:b1:50:81:34:e3:1b:3f:e5:
fc:c8:5e:35:98:bc:63:60:b0:1e:c1:87:3d:77:e8:
96:74:bc:a3:27:62:09:e6:99:98:96:7a:8f:50:06:
a8:ce:fd:4b:e1:a1:cb:93:86:82:8d:f9:3d:0d:3b:
10:33:dd:d5:6a:d4:4a:0b:d3:b4:08:b2:06:d8:fb:
e5:ce:75:8a:3a:f9:d2:37:c9:8d:67:8a:d9:5e:c1:
51:9f:db:1e:03:5a:3a:da:90:f9:1d:5f:8a:c7:70:
07:99:09:2c:7b:6a:c7:a4:14:91:03:cf:cc:42:b8:
09:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:28:23:B6:A1:2B:B1:E2:20:CF:2F:84:2F:91:1E:8E:80:C8:5B:C5
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/bygjtqErseIgzy-EL5EejoDIW8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.18.0/24
45.139.162.0/24
45.145.250.0/24
Signature Algorithm: sha256WithRSAEncryption
75:0e:53:99:23:c0:98:25:cc:2c:d3:25:c5:b2:c3:82:2a:f1:
72:92:25:7f:e7:6f:e5:8f:9f:0c:57:cb:a6:26:d5:a2:94:1b:
4f:6a:4a:cb:e1:27:c0:8b:cf:d0:a8:9d:46:fd:5c:40:34:bb:
98:d2:a3:14:86:1c:47:34:69:fb:f8:7b:0d:2c:70:97:05:76:
2f:64:29:94:ef:d9:a8:49:e2:7f:74:d9:d9:13:7c:16:32:c5:
37:05:c1:a0:fd:f7:f6:4a:92:6b:e6:8e:ce:e1:80:9e:2e:88:
4e:73:91:80:a0:82:da:00:5b:f8:7d:b2:b3:26:6e:9a:1d:c5:
ce:b4:9e:b6:ee:e3:c1:c9:41:30:5e:b4:5f:a1:2c:33:05:c8:
2b:64:cf:49:58:9b:46:d6:3f:2c:60:d8:ae:44:c0:17:b3:d3:
7b:64:21:08:ef:ae:48:87:75:ba:f5:19:3d:76:62:58:db:45:
45:c1:d6:95:33:86:fe:df:d9:e8:f3:cf:d9:5d:13:e2:31:f8:
df:7c:06:e0:45:9c:be:25:6b:87:34:af:e0:02:4c:1c:f1:eb:
a7:b3:fd:3a:2b:21:c8:4a:e2:de:e9:94:fc:fb:fe:fc:3a:46:
e2:48:d2:e0:75:f2:19:62:4d:af:fe:3e:e1:e5:b4:f8:2b:c5:
18:c5:3b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:04:19 2024 by rpki-client on console-fra.rpki-client.org