Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/RS4VYtiTshCe0zF9P8-UY3xfLGU.roa
File: RS4VYtiTshCe0zF9P8-UY3xfLGU.roa (raw, json)
Hash identifier: jPWjb99niDCB1uXXIyDnTSpDGujPsja/ySg6EYvwKxs=
Subject key identifier: 45:2E:15:62:D8:93:B2:10:9E:D3:31:7D:3F:CF:94:63:7C:5F:2C:65
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018EE53395CD4283883EA973482271FF3C43
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/RS4VYtiTshCe0zF9P8-UY3xfLGU.roa
Signing time: Tue 16 Apr 2024 04:39:06 +0000
ROA not before: Tue 16 Apr 2024 04:39:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.147.0.0/22 maxlen: 24
83.147.16.0/22 maxlen: 24
83.147.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 22:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e5:33:95:cd:42:83:88:3e:a9:73:48:22:71:ff:3c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Apr 16 04:39:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=452e1562d893b2109ed3317d3fcf94637c5f2c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:29:34:9b:15:e3:4e:79:32:40:51:08:73:aa:
8e:a2:b7:47:86:71:54:3c:13:c8:c8:9d:54:55:59:
67:3a:12:12:aa:25:e9:cd:46:d8:94:e3:a7:51:be:
09:6c:eb:75:4c:b5:fd:71:28:45:43:c2:f0:55:78:
87:02:63:11:12:05:09:5a:e0:5a:87:27:8a:08:1b:
80:76:06:f6:db:63:66:6c:1f:59:2c:a2:5c:89:a7:
09:6a:d0:97:5c:7c:aa:1c:e8:2f:8a:2a:ff:90:ce:
55:07:bb:c4:12:6e:8f:3f:5c:5b:91:3e:3f:28:26:
01:f3:31:37:fd:9a:aa:63:3b:ae:02:a6:9b:34:fa:
67:57:16:48:42:73:a4:69:42:41:ab:7d:ba:3a:d6:
f2:15:c6:9c:85:82:fe:8f:db:f8:29:19:13:d9:1b:
44:68:31:73:0f:23:c6:13:7f:67:92:27:53:d4:8d:
09:c0:d8:d3:21:19:65:24:f3:fd:de:43:8b:45:b3:
b9:b2:90:5a:91:24:23:54:79:fe:f7:5d:ea:d0:df:
ca:83:c3:dc:5e:21:d7:0f:93:08:0b:9c:b4:75:4f:
89:27:b0:0b:48:4b:c8:1e:30:27:16:49:31:a6:5a:
d6:75:49:40:19:5f:8d:3b:45:63:f3:f4:a5:38:9e:
dd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2E:15:62:D8:93:B2:10:9E:D3:31:7D:3F:CF:94:63:7C:5F:2C:65
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/RS4VYtiTshCe0zF9P8-UY3xfLGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.16.0/22
83.147.21.0/24
Signature Algorithm: sha256WithRSAEncryption
98:94:95:47:db:09:63:7d:32:fe:74:c2:c4:9e:6c:c7:26:de:
07:20:8d:68:c6:98:14:c0:ae:64:a1:9a:d4:87:f4:45:a7:43:
37:d6:39:77:66:c5:54:34:ff:b0:13:7b:5e:e9:fc:87:9e:06:
1f:54:75:c1:19:25:86:32:5c:13:47:42:96:27:7c:a3:3b:b0:
71:14:1a:7c:f8:10:0f:6e:fe:4b:b4:24:33:76:13:c7:44:62:
98:0b:03:86:fa:7e:45:b3:5d:fa:f2:1a:64:02:c8:07:35:b3:
42:99:e2:f7:ac:25:4d:ab:66:22:ea:f3:a5:c0:21:9b:5a:d2:
cc:bf:ab:12:02:3d:01:1c:6b:db:de:73:47:81:0a:7a:be:84:
ce:95:81:17:44:f4:be:df:4a:53:20:9c:81:02:00:2b:ad:e9:
df:09:94:3c:43:96:c3:c6:98:bd:69:b7:48:f2:21:f7:0e:a1:
8b:76:09:a2:51:e3:ae:ed:fe:44:4f:b4:fa:34:30:b1:ad:c5:
c4:09:e0:ae:b0:c4:e8:3b:2e:5c:14:10:6a:be:c9:e7:42:9e:
35:09:c9:13:cb:2b:df:be:f8:f6:dd:81:83:21:8f:fb:ab:05:
5e:03:ef:91:1f:e1:1d:a4:aa:c0:03:68:a0:73:8d:b6:44:88:
62:d6:60:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 05:07:11 2024 by rpki-client on console-ams.rpki-client.org