Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c8n2w0aY4exjczYcmRKcA18IHCw.roa
File: c8n2w0aY4exjczYcmRKcA18IHCw.roa (raw, json)
Hash identifier: Pfdz7bSeLxfGSFh51h2iUPs9wPBtZGWrEMKv+J8IV6U=
Subject key identifier: 73:C9:F6:C3:46:98:E1:EC:63:73:36:1C:99:12:9C:03:5F:08:1C:2C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018FBEAA9B015B2D4C26B074F1F30FE74ADA
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c8n2w0aY4exjczYcmRKcA18IHCw.roa
Signing time: Tue 28 May 2024 10:06:42 +0000
ROA not before: Tue 28 May 2024 10:06:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197071
IP address blocks: 45.13.226.0/24 maxlen: 24
45.67.139.0/24 maxlen: 24
45.90.97.0/24 maxlen: 24
185.117.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft
rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:be:aa:9b:01:5b:2d:4c:26:b0:74:f1:f3:0f:e7:4a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: May 28 10:06:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73c9f6c34698e1ec6373361c99129c035f081c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a3:e1:28:02:55:16:d6:ca:e8:56:a6:d9:52:
f7:15:86:8c:bf:18:96:1e:2e:91:7f:62:0a:c0:e9:
65:b2:92:e8:06:9a:b1:f8:6f:aa:53:62:c6:12:50:
4c:f4:8e:a7:0b:85:c3:a8:a8:24:4e:f9:80:20:21:
29:64:f8:65:ec:bf:aa:cf:90:e4:28:dd:3b:b4:83:
8f:8c:5a:44:2d:c2:2e:3b:da:86:9b:a6:d5:6b:77:
b7:7b:c7:84:8a:5f:e1:81:a6:2e:17:d3:61:8c:3b:
bd:32:5c:58:d5:52:52:c7:f1:63:f1:83:41:52:08:
a8:76:ca:d2:30:d4:53:76:a6:13:fd:55:f0:54:0b:
2b:bb:09:e7:a7:c0:77:54:e8:54:56:dc:d3:67:7e:
06:92:dd:90:e9:e3:c0:73:02:06:91:0a:b2:d5:e9:
d1:7e:a0:42:7f:1a:20:dc:d3:f8:f7:7c:dc:f9:dd:
d5:d6:00:04:7e:a7:e7:b1:54:dc:6c:9f:25:bf:ff:
56:30:c4:8d:eb:8d:62:e9:b0:c8:8e:35:09:2c:19:
6f:bd:13:92:9f:7e:e9:9a:2a:e8:3b:88:a0:b1:46:
4e:73:63:87:92:03:96:c5:f0:ee:ee:d7:6d:df:75:
f5:62:bf:94:f7:05:6d:4e:e6:cb:76:fd:01:47:52:
a9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C9:F6:C3:46:98:E1:EC:63:73:36:1C:99:12:9C:03:5F:08:1C:2C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c8n2w0aY4exjczYcmRKcA18IHCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.226.0/24
45.67.139.0/24
45.90.97.0/24
185.117.0.0/24
Signature Algorithm: sha256WithRSAEncryption
76:e7:35:19:89:b8:05:2c:2e:ab:fa:c5:dd:a8:50:a1:82:7b:
55:5f:79:bc:28:0e:b5:54:64:6d:ee:ae:c7:9e:f9:74:e5:0d:
61:78:1e:79:d6:8e:79:06:f7:28:d6:e4:f7:b3:7d:98:cf:c1:
ca:bf:ba:93:36:25:ff:19:de:39:0b:35:3a:fc:5e:37:26:08:
a8:3b:8a:c1:11:b7:63:f6:09:74:41:03:48:c2:ec:58:45:62:
10:40:61:3c:ee:ff:b5:b3:81:70:a2:8e:ac:8f:28:c7:b1:18:
79:5a:d7:a4:b6:5f:58:4a:34:c5:de:8e:c9:73:8a:25:2e:4f:
fb:d5:ec:51:cd:4f:2b:cb:f0:05:9c:1f:97:99:f7:f0:4a:0c:
48:05:e1:5a:5e:c7:ff:f1:06:fa:86:de:07:af:74:00:6f:ba:
53:6d:e4:6f:06:d2:16:c5:c5:67:07:30:72:72:22:a7:9f:9c:
11:94:9f:d9:c6:c0:a2:51:c3:18:03:3d:3b:5b:e9:c3:e2:97:
e6:be:42:24:61:8d:da:27:dc:b1:cd:40:fe:f4:ff:09:b3:5e:
d9:cb:45:a9:a0:3f:66:2c:22:f8:3a:5a:2b:06:7c:5e:be:7e:
f8:58:a2:d4:ed:ce:60:2b:4f:79:73:af:84:eb:58:39:d6:e8:
ba:8e:40:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:01:45 2024 by rpki-client on console-ams.rpki-client.org