Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/ZWbaX7aoqqBQOb06cZ4Ye_VmP14.roa
File: ZWbaX7aoqqBQOb06cZ4Ye_VmP14.roa (raw, json)
Hash identifier: onJAkfDdXDwzECr/CApBxJTa1Zp7dc9xpA+9FkA1AaA=
Subject key identifier: 65:66:DA:5F:B6:A8:AA:A0:50:39:BD:3A:71:9E:18:7B:F5:66:3F:5E
Certificate issuer: /CN=1a83ce44ae4c701ea971d334dfabbc5b28e6476e
Certificate serial: 018CC3B67469C50A8B35B9B7206D10D1468D
Authority key identifier: 1A:83:CE:44:AE:4C:70:1E:A9:71:D3:34:DF:AB:BC:5B:28:E6:47:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GoPORK5McB6pcdM036u8WyjmR24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/ZWbaX7aoqqBQOb06cZ4Ye_VmP14.roa
Signing time: Mon 01 Jan 2024 06:29:23 +0000
ROA not before: Mon 01 Jan 2024 06:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 45.134.250.0/24 maxlen: 24
45.134.248.0/24 maxlen: 24
45.140.70.0/24 maxlen: 24
45.140.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GoPORK5McB6pcdM036u8WyjmR24.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GoPORK5McB6pcdM036u8WyjmR24.mft
rsync://rpki.ripe.net/repository/DEFAULT/GoPORK5McB6pcdM036u8WyjmR24.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:74:69:c5:0a:8b:35:b9:b7:20:6d:10:d1:46:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a83ce44ae4c701ea971d334dfabbc5b28e6476e
Validity
Not Before: Jan 1 06:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6566da5fb6a8aaa05039bd3a719e187bf5663f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b2:11:d2:33:9d:74:05:a2:b4:b3:3d:c5:23:
79:d3:ef:9f:b0:d5:b6:cd:ba:cd:9d:7a:c5:ae:63:
0c:d8:dd:03:98:5d:a2:31:42:9c:bc:a5:80:89:cc:
89:47:d4:0c:fe:75:68:26:23:86:c2:cf:84:46:f2:
71:d4:a7:ca:a8:32:72:52:11:b9:a3:4f:26:1c:8d:
10:e5:90:78:6e:f8:f7:43:15:21:07:11:1e:b9:be:
6b:dc:63:af:87:5f:38:d6:fa:b2:f6:fb:3a:1d:70:
70:18:4d:fd:11:89:20:ef:97:a1:33:7d:46:33:34:
de:fd:b4:43:aa:36:0b:80:23:d8:a6:da:33:b3:2c:
32:67:31:cf:76:c7:88:c8:58:b6:ef:c1:33:81:06:
47:f6:5f:f1:6a:48:e3:91:02:86:e3:cf:d3:d2:db:
ed:fc:4d:d1:49:5a:b7:3c:86:eb:9b:f2:cd:76:c2:
ee:b6:4c:cc:b5:5c:e9:24:aa:cb:51:34:5b:81:cc:
93:a6:85:c2:0a:be:4c:d6:3f:0d:1c:6f:99:ea:d3:
e3:ed:49:2b:c5:b2:48:8c:bf:b1:19:68:bd:3b:6d:
bf:d6:bc:3e:42:45:da:d6:3a:db:91:da:fa:27:9f:
dc:2b:74:62:36:84:4e:ea:73:6a:0d:d8:16:72:f8:
c4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:66:DA:5F:B6:A8:AA:A0:50:39:BD:3A:71:9E:18:7B:F5:66:3F:5E
X509v3 Authority Key Identifier:
keyid:1A:83:CE:44:AE:4C:70:1E:A9:71:D3:34:DF:AB:BC:5B:28:E6:47:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GoPORK5McB6pcdM036u8WyjmR24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/ZWbaX7aoqqBQOb06cZ4Ye_VmP14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2773b3-5109-43c0-8009-424dda519ef1/1/GoPORK5McB6pcdM036u8WyjmR24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.248.0/24
45.134.250.0/24
45.140.68.0/24
45.140.70.0/24
Signature Algorithm: sha256WithRSAEncryption
10:95:f2:60:5e:d1:27:f8:b6:1b:ec:d4:41:32:f9:ba:8c:db:
c4:4f:e3:de:1a:35:cb:d5:8b:f3:39:23:ad:b4:81:ed:83:ee:
2c:c5:df:b0:dd:38:74:60:c5:c5:15:e6:11:7f:87:51:91:81:
dc:87:36:f4:4e:8c:b4:fa:ec:dd:60:6d:4d:e2:c2:f1:12:9f:
1e:45:b6:ff:f3:49:f3:94:b8:81:98:7e:68:db:d3:9b:3a:eb:
a7:db:eb:46:56:c3:b3:d5:a2:f5:22:9c:1b:25:5f:be:4d:2d:
87:95:33:40:40:8c:78:a8:92:7a:f7:ed:4f:01:a8:f3:d9:c9:
7a:1e:4b:fa:0c:ab:20:9a:06:9d:0c:ad:e6:9f:cb:ff:c9:48:
0b:6c:e4:61:1a:72:d4:70:ce:24:66:d5:37:61:c9:7b:d0:b3:
34:5f:63:f2:f8:e0:c7:96:d5:5e:4c:bb:ea:76:ac:bc:0b:d3:
34:0f:a7:20:5a:06:6d:73:17:76:e3:38:08:ca:da:09:36:dd:
33:fd:77:cb:e2:86:db:a0:86:16:6b:11:d6:d6:40:15:dc:82:
15:51:ad:48:6d:d9:b5:2c:1d:40:e4:32:24:19:b4:d8:6e:68:
1d:c4:ac:34:02:ad:ea:b4:e0:73:1f:60:b5:2a:e8:9b:d7:0b:
20:8c:72:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 08:14:59 2024 by rpki-client on console-ams.rpki-client.org