Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/rezNDT1QJJGjfinySMBJL9CCfkk.roa
File: rezNDT1QJJGjfinySMBJL9CCfkk.roa (raw, json)
Hash identifier: h7EuFx9LWUMwHYHH05HgNiWFTIRJBsNEyI9VbJZauuo=
Subject key identifier: AD:EC:CD:0D:3D:50:24:91:A3:7E:29:F2:48:C0:49:2F:D0:82:7E:49
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0191132877E96770A57C62F7FFDEC8ACCA80
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/rezNDT1QJJGjfinySMBJL9CCfkk.roa
Signing time: Fri 02 Aug 2024 12:55:04 +0000
ROA not before: Fri 02 Aug 2024 12:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48314
IP address blocks: 45.90.98.0/23 maxlen: 23
45.145.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft
rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:13:28:77:e9:67:70:a5:7c:62:f7:ff:de:c8:ac:ca:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 2 12:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adeccd0d3d502491a37e29f248c0492fd0827e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2f:1a:5b:a8:97:0d:ce:ad:46:b1:e1:f6:9f:
c4:7e:f0:49:ff:a5:f5:20:9c:68:70:d6:ec:61:78:
97:50:96:fa:02:86:d4:97:01:b7:62:0c:26:91:e1:
d5:70:85:b7:cc:84:02:ae:af:49:de:9c:eb:d5:0a:
d3:62:9b:62:2a:c1:80:59:83:cc:cd:a7:67:ae:80:
e7:84:dc:8e:dd:c6:ae:88:4f:82:aa:42:7b:b0:5b:
50:af:18:47:c4:c0:4f:3e:07:a5:52:36:12:87:5d:
34:4c:24:f9:0f:4b:46:ca:10:b6:97:8e:5e:fc:7f:
f4:01:7f:e1:b0:2a:0f:86:8e:09:99:e8:ef:38:7f:
d0:c2:91:0e:89:44:5d:bf:d4:10:93:ff:c9:e5:65:
e9:61:87:59:90:c7:5c:22:0c:f1:3a:d1:93:d9:fa:
e7:41:7d:fe:72:a7:de:9b:36:a4:2c:64:f1:ee:2a:
d8:2c:8c:ce:92:a9:34:ac:87:8e:04:ce:22:d3:d1:
41:f2:7c:93:9f:42:b5:b4:4f:64:13:ce:76:9d:df:
78:dd:51:dc:26:e8:50:0c:e0:db:0d:02:5b:4e:66:
fd:fb:61:b6:55:78:7d:66:a7:30:db:ef:c6:5e:09:
90:98:ed:74:6f:42:db:88:dd:07:a1:0b:27:c2:b0:
dd:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EC:CD:0D:3D:50:24:91:A3:7E:29:F2:48:C0:49:2F:D0:82:7E:49
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/rezNDT1QJJGjfinySMBJL9CCfkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.98.0/23
45.145.226.0/24
Signature Algorithm: sha256WithRSAEncryption
63:68:16:2f:5e:35:44:79:87:86:47:86:62:59:c2:32:77:aa:
93:28:b2:e0:08:28:8b:51:70:41:b0:61:21:ec:74:b7:8f:c1:
51:57:1c:e3:af:d2:47:2a:5d:cc:d7:cf:c1:ac:c0:bc:ee:b5:
ad:de:c7:a8:c6:19:1a:76:35:98:a5:77:5a:ec:52:7c:6a:ef:
42:62:86:63:74:ea:86:a5:c9:37:40:13:ea:04:5c:6b:9f:16:
1d:d0:03:d2:cc:78:b5:40:b7:a0:d4:58:25:a5:18:86:5b:ca:
b5:6e:b6:b1:77:71:6e:58:23:e4:ba:d1:b3:21:29:d4:87:b2:
95:3e:6a:5b:5f:f4:3d:c0:26:f6:36:20:26:d6:9f:cb:9a:c2:
00:71:4b:f1:27:53:93:9c:42:9d:fe:54:e8:e1:f2:9c:61:f4:
aa:e8:f7:1c:05:b1:0b:d7:9b:32:7b:97:08:22:34:23:3f:b2:
17:b6:bb:55:d9:29:cc:95:f5:b5:a5:7b:30:81:72:7d:93:12:
24:cf:bb:92:a5:60:8b:b1:25:33:c4:0b:7d:fd:39:b2:70:a1:
df:17:20:b3:7d:d0:c8:46:f8:15:9c:bf:c1:d7:76:38:53:ac:
4a:fc:5a:46:79:0e:47:29:0b:15:79:9a:e0:4e:22:fb:95:9d:
ac:07:e8:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:01:45 2024 by rpki-client on console-ams.rpki-client.org