Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/R1QEtCqR4PfkWStHcGJ636-ZHNU.roa
File: R1QEtCqR4PfkWStHcGJ636-ZHNU.roa (raw, json)
Hash identifier: K+h17ICNiF7ndpZz2NzPU+DxJ64yQwFSFh5lJpusYKU=
Subject key identifier: 47:54:04:B4:2A:91:E0:F7:E4:59:2B:47:70:62:7A:DF:AF:99:1C:D5
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 01909CB87D42B40EDA47008B983C1FB1FE00
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/R1QEtCqR4PfkWStHcGJ636-ZHNU.roa
Signing time: Wed 10 Jul 2024 12:57:34 +0000
ROA not before: Wed 10 Jul 2024 12:57:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42250
IP address blocks: 45.66.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9c:b8:7d:42:b4:0e:da:47:00:8b:98:3c:1f:b1:fe:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jul 10 12:57:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=475404b42a91e0f7e4592b4770627adfaf991cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:97:9a:60:27:d5:1c:15:94:09:ef:2f:d5:c9:
0b:f2:f6:c8:90:5e:8c:f1:ce:56:a9:2b:1e:64:da:
59:e6:ac:aa:2a:0a:d0:a4:91:39:74:b6:70:a6:a7:
56:6d:7b:58:9b:c2:c3:14:d7:e8:ff:07:ea:ef:ed:
7f:0e:ed:8c:7b:75:ab:f6:54:eb:43:a3:17:3a:34:
da:13:85:ba:b9:df:5a:65:18:5f:dd:13:3b:2f:f3:
41:c2:85:5e:05:fb:f1:89:ed:df:f4:a5:4d:7e:45:
1b:92:77:91:d0:10:92:a2:7e:c3:ca:c6:46:70:d4:
b4:6e:8c:6e:90:b1:76:16:5a:90:0b:f3:80:66:35:
2c:d2:54:d8:6a:6a:ee:e9:0d:68:07:0a:4c:22:84:
b5:df:32:e3:50:d1:f3:6f:93:e5:68:d5:b2:c2:5b:
bc:fe:8d:39:7f:26:9a:b1:a5:e9:a9:a6:ef:7f:30:
28:24:68:4b:6b:6e:68:c5:a0:24:f6:3f:b0:1f:0a:
2c:ef:94:d4:03:45:d5:3b:8b:91:ca:3e:dd:d6:47:
71:f5:90:cf:f3:ed:48:76:66:c2:12:ec:c1:85:b7:
78:d4:5b:8b:af:3b:d6:c9:0b:16:be:0a:29:d0:ba:
80:60:da:a7:e2:9b:1a:e5:cf:cf:f7:42:bf:30:49:
7b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:54:04:B4:2A:91:E0:F7:E4:59:2B:47:70:62:7A:DF:AF:99:1C:D5
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/R1QEtCqR4PfkWStHcGJ636-ZHNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.55.0/24
Signature Algorithm: sha256WithRSAEncryption
26:dd:44:99:47:b7:49:74:69:39:b6:de:69:6d:cd:99:aa:1c:
4f:5f:9a:4d:ae:e7:ef:bf:ed:b1:cb:6c:a7:d8:e3:40:e7:a5:
e8:37:b8:4f:48:9d:4c:bb:8b:52:c2:c9:a9:b7:ed:4b:85:a1:
61:dd:83:ed:db:13:1a:2d:30:32:3c:0b:0b:6a:6a:de:f0:64:
09:47:96:d0:5a:89:f0:5c:74:eb:95:c8:73:5f:bd:fd:20:ee:
38:29:07:66:a4:dc:a0:27:bf:29:65:86:f4:aa:63:5f:28:cb:
0b:72:57:ed:3e:8e:0d:37:9b:a4:b5:f7:47:1f:b8:bc:ce:e1:
bd:c2:10:88:07:30:26:c1:21:b0:47:4e:e9:e9:d9:09:1f:98:
97:85:62:07:2b:c2:a0:ee:f3:95:d6:20:ee:34:19:ce:9c:32:
38:2d:b4:6c:36:38:5f:b1:88:54:45:3a:ed:a7:b9:32:c4:6f:
fc:7e:91:23:d7:42:fe:87:c3:f5:7d:63:1a:fa:b6:e8:14:7c:
a0:53:03:01:33:b4:fe:d8:53:1a:bc:e9:ef:6e:b7:84:1b:3f:
a4:49:ab:05:cc:d3:69:8a:f9:59:41:39:72:ce:70:fe:78:8f:
46:23:50:fb:f5:81:49:59:b9:d5:8c:26:38:24:da:0f:8a:a4:
f0:b1:31:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:39:19 2024 by rpki-client on console-ams.rpki-client.org