Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GR18JNiJcCFy0SNyvTal8ar-os4.roa
File: GR18JNiJcCFy0SNyvTal8ar-os4.roa (raw, json)
Hash identifier: o4kvINil75bGKjwbeT0DKEWVhZePqqqTyxu09vNieCU=
Subject key identifier: 19:1D:7C:24:D8:89:70:21:72:D1:23:72:BD:36:A5:F1:AA:FE:A2:CE
Certificate issuer: /CN=1a83ce44ae4c701ea971d334dfabbc5b28e6476e
Certificate serial: 018CC3B67583FE84CFD3DCF3E81588053541
Authority key identifier: 1A:83:CE:44:AE:4C:70:1E:A9:71:D3:34:DF:AB:BC:5B:28:E6:47:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GoPORK5McB6pcdM036u8WyjmR24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GR18JNiJcCFy0SNyvTal8ar-os4.roa
Signing time: Mon 01 Jan 2024 06:29:23 +0000
ROA not before: Mon 01 Jan 2024 06:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20712
IP address blocks: 45.134.249.0/24 maxlen: 24
45.134.251.0/24 maxlen: 24
45.140.69.0/24 maxlen: 24
45.140.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GoPORK5McB6pcdM036u8WyjmR24.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GoPORK5McB6pcdM036u8WyjmR24.mft
rsync://rpki.ripe.net/repository/DEFAULT/GoPORK5McB6pcdM036u8WyjmR24.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:75:83:fe:84:cf:d3:dc:f3:e8:15:88:05:35:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a83ce44ae4c701ea971d334dfabbc5b28e6476e
Validity
Not Before: Jan 1 06:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=191d7c24d889702172d12372bd36a5f1aafea2ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6e:2b:6a:1f:2b:a4:32:e6:7e:71:e3:2c:d8:
1c:fd:ad:d7:e7:90:bd:cd:57:b7:c5:33:41:fa:49:
86:5a:bc:17:4f:d1:31:03:aa:bb:9e:2e:5e:eb:79:
6e:a4:57:b7:d4:40:27:3a:c6:17:48:26:05:f4:81:
22:9d:4e:57:95:5b:85:62:55:38:f6:05:26:47:56:
80:56:3a:e5:0e:31:5c:67:86:fd:a7:84:c2:f4:6d:
15:8e:10:ee:7a:c7:3e:6c:f3:08:5a:05:94:ee:c1:
44:93:65:d4:8b:db:33:33:aa:64:47:06:a8:c1:99:
fb:ab:6f:50:5d:c3:d8:2b:a3:7d:e4:41:e5:9f:ea:
fd:f6:1e:5d:1d:c8:e0:72:3a:27:a8:f8:9d:93:61:
68:bf:df:6a:6a:3e:0f:b0:70:86:42:7e:28:12:52:
82:6b:dd:65:8f:54:e9:0b:03:b7:86:f3:b5:f2:36:
08:51:1b:51:80:52:d5:54:74:b4:be:24:4b:c2:94:
45:77:eb:a4:ae:d8:4d:aa:6e:c8:3c:d1:b7:b2:15:
69:0a:6e:f6:e8:79:64:a0:a4:5f:2a:b7:d9:20:d4:
b5:45:f4:83:be:77:16:72:f2:20:37:37:6f:33:71:
21:d0:66:17:39:d7:69:58:22:2b:80:61:39:5a:6c:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1D:7C:24:D8:89:70:21:72:D1:23:72:BD:36:A5:F1:AA:FE:A2:CE
X509v3 Authority Key Identifier:
keyid:1A:83:CE:44:AE:4C:70:1E:A9:71:D3:34:DF:AB:BC:5B:28:E6:47:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GoPORK5McB6pcdM036u8WyjmR24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GR18JNiJcCFy0SNyvTal8ar-os4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GoPORK5McB6pcdM036u8WyjmR24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.249.0/24
45.134.251.0/24
45.140.69.0/24
45.140.71.0/24
Signature Algorithm: sha256WithRSAEncryption
35:f2:64:23:76:c9:0e:3f:3c:4e:e1:f2:c4:c0:df:37:84:e3:
93:2c:fe:ab:07:4c:d0:d8:fe:cb:16:94:b0:be:f0:90:33:22:
02:bf:06:3c:3e:5d:f7:0b:8a:d2:b9:a2:ca:94:d2:4c:14:36:
5c:a6:15:09:ba:bd:bc:27:6c:a2:42:13:d9:a4:7f:3b:d8:93:
3f:8b:c0:23:fa:09:3f:79:44:11:da:71:20:7d:d2:8d:f9:d3:
4c:35:77:f0:20:85:3e:57:88:a8:b9:03:10:3d:2b:b0:86:3d:
c0:83:90:6b:4f:12:08:59:a8:f5:3a:ee:9f:e9:b7:3e:11:7a:
67:17:ef:da:75:57:b8:0b:4e:c8:37:05:bc:f4:96:08:17:f2:
c2:be:22:2e:c3:b7:77:8d:fb:da:3e:25:23:62:a4:a8:10:e6:
b5:d1:38:f0:c9:92:b4:73:35:b4:8a:80:8b:f4:05:6d:d3:c1:
db:ee:fb:03:f7:33:2f:73:85:33:84:a4:aa:9f:b1:ae:64:80:
73:77:35:81:79:ca:31:e6:28:72:38:77:41:26:c0:36:b7:31:
24:9a:9d:52:bd:e0:4f:26:da:52:c4:2b:61:02:eb:4a:f6:ce:
3e:9f:e7:f9:ef:bc:dd:d7:53:ea:37:26:14:d5:a6:f0:97:ac:
72:fe:59:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:58:27 2024 by rpki-client on console-ams.rpki-client.org