Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1-hHwPsw3YvvHf6LcyymMMKI_3sc.roa
File: 1-hHwPsw3YvvHf6LcyymMMKI_3sc.roa (raw, json)
Hash identifier: vClp9/bk3eF6RKkImpWXsrvbaj9zxw8/6w/dMHmG42s=
Subject key identifier: FA:11:F0:3E:CC:37:62:FB:C7:7F:A2:DC:CB:29:8C:30:A2:3F:DE:C7
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018CC7951F3DEACF109DED34152F2FCAF2D4
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1-hHwPsw3YvvHf6LcyymMMKI_3sc.roa
Signing time: Tue 02 Jan 2024 00:31:28 +0000
ROA not before: Tue 02 Jan 2024 00:31:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49729
IP address blocks: 84.54.6.0/24 maxlen: 24
45.132.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 16:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:1f:3d:ea:cf:10:9d:ed:34:15:2f:2f:ca:f2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 00:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa11f03ecc3762fbc77fa2dccb298c30a23fdec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:23:66:30:39:30:75:c8:83:00:df:43:33:e5:
d8:fa:e2:50:cd:2b:c6:46:36:5e:8f:34:de:ff:51:
fa:30:19:1b:04:32:ae:77:df:0a:9c:a8:8f:a5:e1:
fa:1c:e1:b7:51:d3:31:8e:c7:5b:3c:5e:a2:95:da:
84:9c:f1:83:1b:a2:10:d8:45:ba:e0:98:fa:a8:3d:
71:bb:81:89:b4:26:89:87:1d:6f:56:59:23:0b:ba:
1b:1f:e9:8d:01:93:a8:99:7f:7f:7d:bf:d4:39:11:
d7:7a:dd:db:88:4b:dd:ac:a5:7a:00:83:40:dc:1d:
cb:dc:eb:54:06:50:ac:1a:51:d7:91:f3:b3:79:34:
52:65:ea:d0:21:6f:61:f4:38:ab:e1:1d:3a:bb:80:
7c:3e:95:9d:57:b6:0f:43:c6:9e:ca:a0:73:62:5c:
41:1e:13:81:16:c5:44:10:50:cf:ae:76:b4:d0:c5:
fb:dd:d0:af:4c:39:66:63:c2:e3:5b:ed:a3:3e:9d:
c2:b6:53:b9:1c:4f:10:80:62:26:b8:cc:ae:5e:85:
6f:84:8c:38:3e:61:4c:9c:6f:b1:cf:fe:15:97:60:
03:6f:ff:2b:79:19:24:21:16:97:8d:66:27:ad:36:
41:a1:c1:d5:ff:04:ac:66:9e:d7:8b:11:91:89:18:
f3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:11:F0:3E:CC:37:62:FB:C7:7F:A2:DC:CB:29:8C:30:A2:3F:DE:C7
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1-hHwPsw3YvvHf6LcyymMMKI_3sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.205.0/24
84.54.6.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:27:bd:1e:27:15:49:9b:3d:af:5f:de:e5:cd:71:24:f2:77:
b1:0f:6a:ab:6c:fd:8b:27:71:59:c6:f7:a0:28:43:70:15:f7:
ba:38:6b:8f:c4:f4:1a:ff:f4:fa:81:49:85:9d:98:bf:1c:9e:
9b:a1:69:61:97:0d:e7:50:57:8b:06:8a:a0:f5:a7:07:76:99:
e8:4b:61:59:be:98:c0:ef:5a:30:8b:ac:87:e8:04:0d:44:b3:
16:f0:48:d9:86:7d:28:ed:a2:ac:25:7d:eb:10:a8:e6:29:ae:
87:68:6d:e5:61:46:2e:ff:ad:82:50:38:b2:77:c1:f0:94:c9:
0d:4b:70:33:67:83:5e:01:a5:04:c0:99:6d:d1:c0:6f:19:db:
bd:4e:97:66:95:42:17:77:0f:11:30:9d:ef:36:38:01:0f:84:
f6:93:b8:ed:ef:01:4d:08:76:a2:fb:3b:bf:67:3b:89:be:73:
8d:5a:ae:0f:0a:e4:dc:c0:9a:ab:c5:87:2c:a6:e2:ae:b9:45:
c2:1b:49:bf:07:12:0e:52:48:10:e3:0b:f0:90:e7:d6:2c:32:
fd:c8:a9:2c:c1:d7:8b:11:d6:87:7c:45:bb:08:09:5a:5e:14:
0f:2d:40:b0:bc:40:21:9f:37:e5:fd:4c:29:0c:89:5e:ce:ae:
6a:aa:3b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 22:00:59 2024 by rpki-client on console-ams.rpki-client.org