Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/BUgIbTnvrsZReujb6DPOShHR7FE.roa
File: BUgIbTnvrsZReujb6DPOShHR7FE.roa (raw, json)
Hash identifier: ECc79n1QjHlzsf9w/1WHSYtvScvgrIpY6oRYyi/0xak=
Subject key identifier: 05:48:08:6D:39:EF:AE:C6:51:7A:E8:DB:E8:33:CE:4A:11:D1:EC:51
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018DE5ADC9CF0F4DAFFC8F5BB0EDBBC2B884
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/BUgIbTnvrsZReujb6DPOShHR7FE.roa
Signing time: Mon 26 Feb 2024 13:49:48 +0000
ROA not before: Mon 26 Feb 2024 13:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212953
IP address blocks: 45.10.151.0/24 maxlen: 24
45.143.98.0/24 maxlen: 24
185.148.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e5:ad:c9:cf:0f:4d:af:fc:8f:5b:b0:ed:bb:c2:b8:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Feb 26 13:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0548086d39efaec6517ae8dbe833ce4a11d1ec51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:12:22:bc:76:7e:d9:ce:91:86:48:32:e6:c6:
31:be:0c:05:47:e1:9e:79:6e:8b:af:29:a0:36:b9:
40:5c:12:7a:d9:7b:29:4a:1f:bd:6a:5e:d6:72:86:
48:6b:7a:45:fb:3c:23:5f:77:fb:9d:1c:10:62:b5:
4e:b4:97:62:94:ec:69:82:47:a0:2f:a3:d6:31:c1:
e1:58:52:30:42:33:34:d0:33:14:a6:5e:c4:80:8d:
19:3a:8c:61:22:1d:38:e8:0c:61:bf:6c:8e:a3:d6:
27:04:a1:7f:9b:e5:b1:c2:ae:1c:f2:ec:8d:f3:da:
55:61:13:99:40:8d:f4:ad:1d:11:7c:98:52:38:7b:
6e:1c:2d:47:0b:90:28:fd:e2:82:71:db:16:dc:17:
18:fa:0c:88:1c:c3:b5:d8:71:35:39:bf:fb:ee:31:
75:3d:37:b7:e0:3d:97:75:1a:8f:d6:94:e7:70:64:
35:c9:40:74:c0:03:98:a9:4d:ef:b1:e0:a4:a0:30:
7d:db:78:d5:d5:8c:ca:c9:8e:78:5a:1f:4d:22:67:
b4:94:b8:38:5b:73:7b:06:92:47:d4:fe:f5:19:1b:
c4:53:54:df:f1:b0:20:72:31:dd:93:d7:99:45:12:
61:24:cc:97:c9:c2:e3:d0:b7:3a:83:3a:0c:1c:c0:
01:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:48:08:6D:39:EF:AE:C6:51:7A:E8:DB:E8:33:CE:4A:11:D1:EC:51
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/BUgIbTnvrsZReujb6DPOShHR7FE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.151.0/24
45.143.98.0/24
185.148.240.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4e:ce:08:c3:28:b9:16:f4:e7:97:2c:9e:61:08:65:19:c9:
2f:7a:6b:86:89:b7:b8:f5:f5:fd:88:04:9b:23:06:67:72:f6:
7a:3e:e8:26:db:bd:ec:4c:cf:9a:2b:7a:13:f3:4a:f4:32:de:
3b:d5:78:83:ec:8c:1b:0b:e7:00:00:a4:92:d1:b2:1a:67:28:
b2:45:aa:da:1b:5c:62:0b:e4:d0:bc:d3:9f:85:e8:ef:2b:e0:
eb:b9:ce:f2:8f:91:0d:f7:21:0b:fe:1b:02:39:b2:47:6f:36:
d4:1a:f2:51:62:77:5c:14:16:e5:05:f2:cf:dd:52:93:2d:13:
73:60:e6:92:36:7b:bc:13:21:1d:d9:39:1a:7f:52:0b:6f:70:
ab:1d:bb:be:7b:b7:52:3b:71:ab:99:36:2d:f0:bb:f9:bd:5e:
0b:f0:95:0f:30:13:b6:5c:ab:c4:51:bd:ef:9b:cb:de:b3:83:
21:6e:85:81:6b:d7:25:2a:5c:52:c1:c2:2d:f0:58:20:84:79:
3b:01:06:21:21:e5:f1:89:65:b5:ea:c1:c8:ed:11:57:34:ae:
48:3b:fd:58:8b:9c:c4:04:b9:25:91:9c:51:e3:60:ac:ca:6a:
3d:00:5e:39:26:ac:ea:bf:c7:6f:59:39:62:23:26:0f:32:f7:
30:83:09:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 17:30:06 2024 by rpki-client on console-ams.rpki-client.org