Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/Vsrx3rbJTANuir0bCoh8Yud7dFg.roa
File: Vsrx3rbJTANuir0bCoh8Yud7dFg.roa (raw, json)
Hash identifier: KAmYjWnS5yoxIr/J/Qp2TZS7R2oEG6f5JVlbzGKuYj0=
Subject key identifier: 56:CA:F1:DE:B6:C9:4C:03:6E:8A:BD:1B:0A:88:7C:62:E7:7B:74:58
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 018D567DC695E7BE628D91ED1CF81F4769B2
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/Vsrx3rbJTANuir0bCoh8Yud7dFg.roa
Signing time: Mon 29 Jan 2024 18:31:39 +0000
ROA not before: Mon 29 Jan 2024 18:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396356
IP address blocks: 45.134.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:56:7d:c6:95:e7:be:62:8d:91:ed:1c:f8:1f:47:69:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Jan 29 18:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56caf1deb6c94c036e8abd1b0a887c62e77b7458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1d:c7:72:5f:db:19:8e:cd:ff:b4:a5:4b:dd:
d5:cc:b2:b7:24:6e:74:dc:ad:90:f5:82:42:4c:3a:
7f:d9:3c:a7:68:5b:a1:e1:ef:f4:72:72:84:9d:55:
3e:2d:53:21:98:eb:27:96:1f:aa:d5:a4:18:4d:0a:
03:1b:03:f1:99:a1:32:9d:55:d6:c5:45:82:87:9d:
c4:7c:c9:f2:05:97:ba:53:f8:5f:98:63:a6:9d:97:
c6:e8:dd:2f:5e:ae:66:11:37:20:27:fc:14:17:3f:
6a:28:7f:e0:47:ec:ff:3b:14:1b:73:a4:58:9f:ef:
92:f3:06:a3:52:47:5f:13:6a:35:9d:bf:64:7a:86:
95:a5:b9:7e:19:56:9b:7f:e9:9c:54:c9:37:db:ce:
d9:d1:be:2e:ce:40:30:29:d0:c7:c2:70:5c:87:4f:
26:c5:e5:8e:33:ae:5b:18:f5:61:42:68:d7:67:94:
43:2b:f5:a5:e4:6e:33:a6:d1:88:ca:cb:ac:8a:aa:
ab:15:15:0c:5f:6c:e2:78:7a:7b:f1:6e:5c:af:4f:
e6:32:14:a1:68:fb:92:71:0f:29:5e:ac:ca:94:bb:
18:21:8a:fe:13:cf:fb:0f:61:e8:0c:ec:45:67:0f:
a5:6a:b5:d8:ea:0c:65:42:0c:0f:79:d8:a8:be:a5:
19:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CA:F1:DE:B6:C9:4C:03:6E:8A:BD:1B:0A:88:7C:62:E7:7B:74:58
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/Vsrx3rbJTANuir0bCoh8Yud7dFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.9.0/24
Signature Algorithm: sha256WithRSAEncryption
03:21:3e:da:8a:a2:58:12:c1:07:7b:43:7c:5d:66:51:a8:fd:
f2:fc:d6:c1:d3:fd:0d:1f:84:c9:bf:61:c1:dd:2a:38:e3:bb:
b2:94:3e:bf:be:62:8e:23:51:b5:59:7d:80:03:76:bf:f9:b5:
70:65:e0:36:87:27:3a:8a:2f:84:71:22:95:fb:f6:f5:6b:a9:
82:6c:ee:97:d9:6f:d3:e5:aa:ed:80:5b:6f:88:4a:fa:a2:16:
d8:3b:99:3f:fb:4d:37:03:e5:70:f0:43:23:fa:64:42:c5:c4:
e3:3c:89:1f:a1:44:11:77:5f:ff:47:94:d7:da:03:f0:7d:ec:
df:7b:be:3c:0e:3e:78:98:f3:ca:51:ed:67:0d:a5:7e:20:84:
63:99:d2:a4:86:04:ef:b2:9c:ea:8a:0f:fa:94:19:2f:49:bf:
df:64:b0:9b:96:fa:ff:34:0d:80:59:9d:6b:34:5b:69:ef:31:
d6:df:37:23:00:c8:ad:48:67:7c:75:9c:35:98:79:37:18:3f:
bf:24:0d:9e:16:0b:b7:b4:d2:a8:a6:6e:8f:04:30:7d:2c:ae:
f8:d5:b6:85:6e:d3:95:b6:50:91:be:6e:d9:41:88:ee:e5:eb:
7d:e0:ec:33:21:c6:5a:87:c5:8e:44:be:a0:8e:01:98:cf:26:
c4:b4:94:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 12:53:01 2024 by rpki-client on console-ams.rpki-client.org