Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/OY4rkVFwAXLFA9K8PFt6WvsDiZs.roa
File: OY4rkVFwAXLFA9K8PFt6WvsDiZs.roa (raw, json)
Hash identifier: qTQW2zWV5NZPUls4qw6bK8eGxT07Yfyc0cRLGNPr+Kk=
Subject key identifier: 39:8E:2B:91:51:70:01:72:C5:03:D2:BC:3C:5B:7A:5A:FB:03:89:9B
Certificate issuer: /CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Certificate serial: 018DD5F9B54FD1AAC6B93BB5B2A7B44B3D8B
Authority key identifier: DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/OY4rkVFwAXLFA9K8PFt6WvsDiZs.roa
Signing time: Fri 23 Feb 2024 12:38:48 +0000
ROA not before: Fri 23 Feb 2024 12:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 45.80.175.0/24 maxlen: 24
2a13:7c40:1::/48 maxlen: 48
2a13:7c40:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/3QEJONnvchWPyYvUXecbCxqf9yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/3QEJONnvchWPyYvUXecbCxqf9yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:f9:b5:4f:d1:aa:c6:b9:3b:b5:b2:a7:b4:4b:3d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Validity
Not Before: Feb 23 12:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=398e2b9151700172c503d2bc3c5b7a5afb03899b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:56:51:fe:68:d2:b4:71:fe:4d:ba:c7:fb:2a:
8f:ad:7c:ec:0c:2f:01:cd:ee:15:e2:f1:9c:5a:23:
37:56:e2:82:1b:cb:24:28:5d:76:3f:7f:27:03:72:
f3:37:f5:3f:ce:9d:e6:90:e8:44:42:c0:d5:b7:05:
5a:fa:cc:10:ec:cc:3c:73:bb:51:96:fa:78:d1:d2:
4d:b8:4a:d3:8c:6d:ee:85:8d:c8:3d:b0:36:70:f6:
41:f2:b0:48:12:5b:83:b7:4e:00:06:ff:c0:fa:4a:
e1:2b:ac:d0:8c:cf:9f:25:eb:10:5b:40:8b:4a:1a:
6e:97:43:b7:50:3d:e5:83:20:9c:5a:d5:42:ab:a4:
fa:91:e2:e1:8d:bc:b1:e4:09:22:56:c4:9a:46:c0:
11:b6:f7:1a:41:91:16:14:06:61:84:a4:60:e6:39:
83:16:59:9b:18:09:c4:5f:f9:c6:b5:04:eb:ed:56:
3c:cb:0c:40:92:2e:ae:67:e9:a5:48:37:e0:08:16:
c6:1e:97:38:95:2e:ac:21:19:0f:5d:4e:b2:4b:e7:
46:ca:c4:62:bc:29:01:1c:a3:ab:31:23:4b:41:14:
90:1e:28:50:0e:96:73:cc:56:2e:23:96:b4:c5:83:
af:8e:44:5f:21:04:28:b4:71:d9:16:42:9f:68:e5:
0b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:8E:2B:91:51:70:01:72:C5:03:D2:BC:3C:5B:7A:5A:FB:03:89:9B
X509v3 Authority Key Identifier:
keyid:DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/OY4rkVFwAXLFA9K8PFt6WvsDiZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/3QEJONnvchWPyYvUXecbCxqf9yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.175.0/24
IPv6:
2a13:7c40:1::-2a13:7c40:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
57:53:49:23:80:94:3e:fa:23:08:ca:ed:ce:98:95:19:ac:6b:
2f:15:6b:c5:56:03:03:e2:8b:40:ff:1f:c7:d9:51:80:ef:1e:
fb:b7:44:b5:ab:4b:ae:ca:ba:aa:98:6b:34:bc:a1:17:9c:c0:
0c:c0:2c:23:5a:64:e5:52:98:6e:3c:1e:a6:0f:56:38:dc:c7:
a0:e3:0a:11:9a:2e:16:f4:e1:9c:36:3d:b2:af:43:4b:87:d8:
5b:a5:df:fb:08:53:32:81:bc:77:6e:b0:82:6e:b3:17:f8:52:
2a:20:50:f3:1a:47:4d:e7:0e:63:b1:f7:26:95:e1:72:ec:4c:
4c:85:5a:25:da:b7:71:ba:06:a4:a4:d3:6a:af:c5:64:b9:33:
96:cc:c7:ac:2d:12:2b:28:c7:13:24:55:a2:46:f7:a8:8b:c0:
41:32:d9:99:47:42:89:a9:8f:e8:d2:a9:2e:da:ff:38:d2:31:
67:5d:0e:f4:60:e7:9d:d8:03:0d:3d:f9:75:d3:7a:e8:6f:a9:
65:27:02:f5:76:9c:9d:22:ed:38:bf:80:85:ad:04:a5:2c:76:
74:ee:85:7d:12:e0:47:de:dc:7e:c2:c5:62:c9:d2:af:0a:03:
0d:9e:44:21:63:92:b7:ff:db:f7:b5:2f:d4:a9:a2:bb:03:b2:
17:c7:3f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:26:21 2024 by rpki-client on console-fra.rpki-client.org