Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/saPYaDzdtgje2esi_0YE6Ffs3MA.roa
File: saPYaDzdtgje2esi_0YE6Ffs3MA.roa (raw, json)
Hash identifier: inb1VAin2YXJk1d7vmLOxWMPZ3RSVgbsaNxezX/HAak=
Subject key identifier: B1:A3:D8:68:3C:DD:B6:08:DE:D9:EB:22:FF:46:04:E8:57:EC:DC:C0
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01907E7D4A1C1268D3A78B7F3FDCC5D92522
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/saPYaDzdtgje2esi_0YE6Ffs3MA.roa
Signing time: Thu 04 Jul 2024 16:04:18 +0000
ROA not before: Thu 04 Jul 2024 16:04:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30823
IP address blocks: 45.89.124.0/23 maxlen: 23
45.89.126.0/23 maxlen: 23
45.91.250.0/24 maxlen: 24
185.117.1.0/24 maxlen: 24
185.117.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft
rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 16:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7e:7d:4a:1c:12:68:d3:a7:8b:7f:3f:dc:c5:d9:25:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 4 16:04:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1a3d8683cddb608ded9eb22ff4604e857ecdcc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:cb:ed:9f:76:75:55:de:17:8c:f1:bd:17:
b3:8b:35:d3:12:90:a3:83:b0:92:99:62:5e:a5:7e:
a0:17:28:03:2e:37:9b:d4:d9:f6:bf:0f:38:d4:39:
f9:97:e2:c0:79:41:bb:e1:21:81:70:86:fb:4a:b0:
f0:e8:f1:8b:1f:82:f5:5e:3a:80:c7:6d:6c:65:6c:
a8:e1:83:49:72:55:bb:8f:a0:f0:a8:fd:eb:a8:d4:
5b:19:4e:e4:9d:3b:0d:05:9e:a9:7d:17:55:48:d4:
bd:57:93:65:57:61:10:5e:77:99:d9:ab:af:4a:23:
b0:ee:9b:5c:35:9e:ab:22:de:22:7c:0c:b3:0a:25:
15:1d:86:87:21:74:e3:fc:ea:e1:44:0b:05:14:d7:
4d:93:ea:f5:53:28:d3:fb:8e:3e:10:de:6d:c0:1d:
76:71:0c:ca:49:b8:c8:7e:a1:1c:0d:0f:c9:1c:a8:
93:80:81:f3:85:26:d9:95:a3:59:db:f3:6e:29:e7:
75:00:f7:0b:40:64:b8:ce:11:01:b6:43:31:df:59:
17:d8:05:46:64:a6:c7:d4:a8:b6:f3:40:df:1b:09:
a1:c8:ae:ae:7a:b5:a3:1d:c9:12:d6:8a:83:36:c3:
de:01:ea:bd:dd:93:1a:41:27:af:56:8a:3b:d2:34:
9d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A3:D8:68:3C:DD:B6:08:DE:D9:EB:22:FF:46:04:E8:57:EC:DC:C0
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/saPYaDzdtgje2esi_0YE6Ffs3MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.124.0/22
45.91.250.0/24
185.117.1.0-185.117.2.255
Signature Algorithm: sha256WithRSAEncryption
81:96:4f:87:16:bb:c6:3f:f6:59:6f:1c:19:bb:0a:26:14:61:
c1:7a:f0:3f:cb:3a:92:47:19:8b:85:3b:da:83:7f:a8:f4:2b:
56:df:b6:95:cb:a1:f2:cc:b2:26:53:85:8d:b5:9a:07:11:0e:
18:f0:95:cb:93:c3:8a:4f:d9:d4:63:24:4c:5e:90:d7:af:67:
af:29:ad:18:ab:7a:41:e0:2f:08:66:11:e8:e7:cd:88:6f:dd:
40:fc:61:cc:4f:ce:05:63:c9:7a:13:b2:aa:de:b3:d6:c0:cf:
f0:8a:e8:19:fc:b7:6f:ab:c9:e5:ba:2d:49:70:ff:a7:38:04:
66:eb:f0:9b:58:8e:4a:2a:34:5d:42:21:b4:2e:5c:9d:28:39:
d7:2a:cb:41:57:66:1d:47:39:2d:aa:a6:69:77:0a:99:36:6d:
15:01:20:ea:14:a3:2f:72:f0:16:4f:b0:7e:51:25:16:be:92:
31:c6:78:1f:99:39:88:8b:78:2b:b6:4f:02:bc:11:d4:04:50:
7b:eb:5e:14:ea:d0:74:27:80:b4:21:de:03:ab:3f:88:b9:81:
f9:5f:52:de:5e:85:d2:5d:ce:fc:6f:b8:33:4f:33:63:de:df:
86:5e:cc:63:35:54:c5:92:10:f6:96:91:9f:1f:85:9e:08:00:
35:2b:04:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:19:21 2024 by rpki-client on console-fra.rpki-client.org