Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/ugeg2omkHSYk6DxzsQoCieNI1mE.roa
File: ugeg2omkHSYk6DxzsQoCieNI1mE.roa (raw, json)
Hash identifier: NvDAqbFeTVTr/XpMvrpBwwJctiDDkyO1KjGjKmzDMuQ=
Subject key identifier: BA:07:A0:DA:89:A4:1D:26:24:E8:3C:73:B1:0A:02:89:E3:48:D6:61
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 01913826FC409B501B6553A3596FB69D7BCB
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/ugeg2omkHSYk6DxzsQoCieNI1mE.roa
Signing time: Fri 09 Aug 2024 17:19:24 +0000
ROA not before: Fri 09 Aug 2024 17:19:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 45.83.180.0/24 maxlen: 24
45.83.181.0/24 maxlen: 24
45.83.182.0/24 maxlen: 24
45.83.183.0/24 maxlen: 24
139.28.72.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 15:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:38:26:fc:40:9b:50:1b:65:53:a3:59:6f:b6:9d:7b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Aug 9 17:19:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba07a0da89a41d2624e83c73b10a0289e348d661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d9:6d:46:58:32:38:f4:e8:a3:c4:ad:a5:5d:
71:e5:19:aa:7a:c2:f5:2f:c8:ce:30:f5:e1:19:b9:
bf:97:27:e0:61:34:6d:05:73:f7:54:5f:99:03:2a:
0e:16:c5:1f:14:42:dc:53:f6:e8:f3:a8:1e:fc:dc:
7f:fb:cf:36:f2:38:51:7b:91:25:b2:79:bb:00:c1:
91:db:67:1d:15:9c:bd:aa:f7:7c:78:f1:6e:0a:f3:
d3:8c:7b:cc:13:e1:92:a7:d6:03:8d:c0:05:ed:59:
24:7a:5d:4f:fb:8b:cd:f5:fe:ed:1b:81:80:a2:58:
7f:13:25:e6:f9:05:bf:7f:9e:62:19:ec:38:83:a6:
b8:26:e8:46:cc:38:65:bb:d7:16:2a:35:42:07:98:
37:9f:cd:43:fc:e4:35:a3:a1:34:22:c8:66:da:b7:
41:8e:06:4a:52:41:8f:d1:8b:a8:c5:bf:75:44:15:
54:2a:f1:f7:e8:7b:bf:12:4c:12:b6:28:8f:7d:26:
c3:06:18:70:8e:d7:02:39:73:22:fd:ff:98:1c:5b:
39:05:7f:40:31:89:56:f9:94:bc:0a:5c:f0:8b:62:
ae:17:a9:2a:ef:bc:ae:80:27:ca:73:18:0d:77:6b:
6e:c3:64:6f:c6:f5:8e:20:e2:65:dd:78:ff:d1:ea:
e3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:07:A0:DA:89:A4:1D:26:24:E8:3C:73:B1:0A:02:89:E3:48:D6:61
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/ugeg2omkHSYk6DxzsQoCieNI1mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.180.0/22
139.28.72.0/22
Signature Algorithm: sha256WithRSAEncryption
74:c2:30:fd:0e:c6:c4:11:e7:ad:c1:0d:31:79:42:a2:d5:72:
84:4a:59:85:7b:15:7f:c1:36:ef:f9:9e:a1:ce:7b:ac:54:ab:
63:de:97:c8:8f:d8:49:c5:58:48:43:f7:bf:19:03:ae:04:29:
0e:e7:71:58:a0:07:0b:af:61:e5:6a:7f:1f:c9:8c:b4:96:2c:
57:4b:c7:49:6f:2b:72:64:65:df:30:2b:42:28:8b:12:20:77:
63:59:08:77:ad:4b:82:e2:65:2c:3d:a3:c0:2d:6d:bb:95:68:
e4:4d:6c:d6:54:df:a8:3e:a2:56:34:4d:29:a0:38:f5:3c:1b:
aa:03:b1:92:3e:a1:e2:b6:b4:62:38:89:52:49:8f:3d:c7:8c:
39:03:fb:8e:9d:6b:73:56:b3:97:24:5f:fe:5a:50:80:c9:f6:
62:29:ec:3a:57:9e:97:ec:3d:59:b8:ab:23:bf:7c:1c:d3:9d:
16:22:90:c2:98:60:d4:d9:85:ab:86:83:37:79:90:25:88:5b:
08:65:2c:3f:43:ff:79:78:ea:79:4d:83:78:09:b5:9a:0e:f8:
19:ea:65:2e:ff:48:1e:c0:f7:24:ec:2c:80:0b:47:7b:1b:53:
1b:37:8b:52:fe:0e:c3:6a:b3:b5:8f:be:fb:fe:c8:d4:56:be:
43:a2:40:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:48:46 2024 by rpki-client on console-ams.rpki-client.org