Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Cpu13SdbgbeNkKLg0RIzLlA48Zg.roa
File: Cpu13SdbgbeNkKLg0RIzLlA48Zg.roa (raw, json)
Hash identifier: T+eMA3CALRGwc/Jby+GfXRgbNAOaO+JPcHs52X5IuNc=
Subject key identifier: 0A:9B:B5:DD:27:5B:81:B7:8D:90:A2:E0:D1:12:33:2E:50:38:F1:98
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0191752287967E4EAFE0D2E6704AA8A2362B
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Cpu13SdbgbeNkKLg0RIzLlA48Zg.roa
Signing time: Wed 21 Aug 2024 13:31:22 +0000
ROA not before: Wed 21 Aug 2024 13:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203511
IP address blocks: 45.9.30.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
45.94.171.0/24 maxlen: 24
45.151.2.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
194.15.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:75:22:87:96:7e:4e:af:e0:d2:e6:70:4a:a8:a2:36:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Aug 21 13:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a9bb5dd275b81b78d90a2e0d112332e5038f198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8c:1b:2f:e1:2a:90:c6:5a:f4:8d:83:bf:fc:
ec:d9:09:b8:d1:48:4e:ff:72:f9:74:dd:a0:76:c0:
98:49:7f:56:ba:ba:cc:10:88:af:1b:66:ad:87:b9:
2b:32:01:44:58:29:14:af:ad:d5:be:9d:41:50:d2:
46:d2:62:68:22:40:5f:a4:f9:15:88:81:90:bd:2a:
ce:3a:17:28:a0:09:81:a5:61:57:7e:7a:56:a5:0f:
97:97:14:3f:f2:43:9a:d6:58:8e:ef:01:14:69:24:
0b:34:e3:1e:5c:45:f3:c5:78:84:4b:5a:86:8b:f5:
06:52:95:6a:b7:ee:12:d5:b3:20:ef:ae:9f:50:06:
2f:a2:9d:bd:6f:4d:1b:e9:47:b0:cd:3f:0c:a1:06:
bc:b9:71:36:ab:cc:2d:3e:d9:5b:1a:c5:4c:3a:bb:
05:23:5b:ae:82:ca:76:69:e6:91:8e:2d:48:45:44:
c3:9d:72:d7:bd:be:46:93:f7:97:7d:77:ed:c3:af:
bf:19:49:8d:b1:cc:07:a1:01:5a:6c:c8:e8:00:05:
f0:39:77:c8:f9:6a:e2:d6:d3:57:aa:ac:a7:cf:39:
4c:d7:31:67:a1:52:db:d4:bb:55:a4:bd:14:0b:74:
97:5a:3f:e6:54:75:97:fd:0e:32:27:bb:1a:0e:a0:
34:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9B:B5:DD:27:5B:81:B7:8D:90:A2:E0:D1:12:33:2E:50:38:F1:98
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Cpu13SdbgbeNkKLg0RIzLlA48Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.30.0/24
45.88.138.0/23
45.94.171.0/24
45.151.2.0/24
77.83.37.0/24
194.15.52.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:f3:2f:29:cb:27:b6:01:0b:c9:6f:f0:0d:c2:7e:e9:8a:4c:
3d:85:d6:14:94:fd:53:ef:06:d6:b6:89:d4:1e:4a:9e:79:f2:
6a:39:a5:cb:2b:e3:76:64:e1:c2:45:dd:f6:a2:b7:14:a8:cb:
06:2e:6e:56:e8:a2:32:24:65:08:69:19:93:f5:89:98:50:ec:
81:f1:9a:c5:4f:19:62:c1:96:c6:2c:7f:e4:14:1d:75:c7:c6:
98:69:4c:69:64:91:75:b4:08:a8:98:d1:3f:48:e7:43:b5:12:
b7:ca:68:23:ba:4f:f6:26:25:52:e0:6a:dc:68:0e:57:c7:ef:
00:bb:dd:c0:27:a5:25:1f:27:5f:af:b4:c8:f7:d4:39:73:93:
da:0d:11:1a:3d:3a:8d:99:dc:14:72:a6:64:8a:c6:36:ce:3b:
9a:e8:18:22:fe:f6:57:45:9a:e3:4f:cb:83:83:5f:9d:70:2f:
1a:67:b1:8a:60:de:31:24:05:73:79:e5:66:9e:bd:85:37:6c:
6a:32:81:58:2d:fa:79:dc:9f:2d:d9:9f:13:0c:76:b8:8b:2b:
e8:ce:dc:90:3f:aa:89:ae:eb:c9:4d:d3:20:e5:89:d2:9f:98:
75:f4:b1:4e:00:ad:5f:d7:b1:1a:d7:c2:50:e6:c2:56:27:1c:
bf:fc:06:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:40:31 2024 by rpki-client on console-fra.rpki-client.org