Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/uLJ92Edr29nDcSHKxp9r2wWr0ZA.roa
File: uLJ92Edr29nDcSHKxp9r2wWr0ZA.roa (raw, json)
Hash identifier: 2R4LZ4l8jglfinm5szJHQxnfFfYyNqY2aZ80/p9zZyQ=
Subject key identifier: B8:B2:7D:D8:47:6B:DB:D9:C3:71:21:CA:C6:9F:6B:DB:05:AB:D1:90
Certificate issuer: /CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Certificate serial: 01900737C7972D5777ACA145794C7141E7D5
Authority key identifier: 66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/uLJ92Edr29nDcSHKxp9r2wWr0ZA.roa
Signing time: Tue 11 Jun 2024 12:13:34 +0000
ROA not before: Tue 11 Jun 2024 12:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42831
IP address blocks: 45.83.200.0/22 maxlen: 22
185.114.158.0/24 maxlen: 24
185.114.159.0/24 maxlen: 24
185.229.34.0/24 maxlen: 24
185.229.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 18:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:37:c7:97:2d:57:77:ac:a1:45:79:4c:71:41:e7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Validity
Not Before: Jun 11 12:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8b27dd8476bdbd9c37121cac69f6bdb05abd190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:55:77:a8:27:0a:00:39:b5:77:3e:a1:4c:d5:
92:68:e6:e1:e2:95:7f:4e:a7:55:40:77:c3:d4:35:
dd:51:cf:87:15:e8:20:0c:97:2b:e7:cd:d3:b8:6b:
49:ba:92:72:c5:f5:7f:c7:2e:31:06:e3:0b:27:b1:
25:20:07:8d:e9:6e:ed:f6:b4:db:e9:86:6d:63:6c:
a8:a8:1d:36:8d:6e:4f:4f:f1:67:c2:1c:1f:29:39:
c3:17:39:fd:d9:6a:80:b8:e1:fb:35:ef:84:3f:18:
14:c0:ff:c2:b6:21:81:73:da:9c:3d:90:9c:c1:88:
46:98:3a:70:26:0a:2d:df:01:d1:bf:89:0f:9f:d0:
a0:f6:b0:3b:5f:bd:09:07:4f:c5:c1:1e:4e:50:4f:
90:c5:ab:1a:a7:64:5a:ab:79:f8:f6:2a:f4:00:2a:
e7:6f:a4:f4:0c:95:e6:cc:44:a8:13:e0:3d:0f:5b:
46:b0:3b:7e:13:68:39:a8:1a:1d:89:d7:c6:3c:4e:
94:a2:b2:26:62:a3:8e:5c:71:78:0b:ad:17:55:91:
af:5b:4e:76:2a:83:ba:c6:10:a7:99:93:78:76:28:
02:4e:dd:22:c1:ff:18:fa:06:fc:ba:86:35:5d:2b:
39:8f:e6:91:c6:7f:8b:c6:5e:79:cb:5b:52:86:e1:
c5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B2:7D:D8:47:6B:DB:D9:C3:71:21:CA:C6:9F:6B:DB:05:AB:D1:90
X509v3 Authority Key Identifier:
keyid:66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/uLJ92Edr29nDcSHKxp9r2wWr0ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.200.0/22
185.114.158.0/23
185.229.34.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:6c:b0:16:a4:89:56:f9:aa:52:77:cb:6b:20:35:55:c1:c1:
86:41:70:71:0a:9c:e0:17:1c:25:dc:cb:b9:a1:6e:a3:ec:cd:
31:19:e1:d9:26:93:68:bd:98:4b:8a:f6:7a:2f:b5:d6:9b:8b:
0c:a4:8b:19:82:31:e8:04:91:fa:c7:d4:fb:60:b0:08:df:a8:
fc:46:46:74:50:26:f2:c6:6f:21:b4:0c:fc:8e:3b:41:9d:87:
bd:96:54:5c:8b:66:81:98:40:96:e2:39:a5:3e:bb:d3:04:8f:
41:8e:e3:ed:13:c3:a7:02:3b:51:97:f5:77:61:be:6c:db:13:
e3:e0:48:97:c2:70:f9:bb:6d:b9:28:44:35:c2:d9:ff:e3:07:
c8:1c:e9:b5:6f:82:62:7f:b9:ee:16:d9:2c:81:c7:ea:03:02:
48:a5:1e:bb:9d:80:f5:66:95:6c:40:6b:ec:a1:41:70:cf:ec:
22:3c:fe:a5:25:10:4f:34:07:91:8e:27:ad:73:47:23:2c:68:
af:04:33:41:b6:f9:15:fe:05:14:ca:df:6c:f8:80:fd:f9:73:
53:ee:f7:d7:2b:24:cd:90:ae:69:52:0f:ee:5f:0f:c1:bd:0a:
35:e7:9b:39:49:f1:e6:d6:30:3b:44:db:23:4a:9d:77:19:f1:
6a:27:b0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 02:34:11 2024 by rpki-client on console-ams.rpki-client.org