Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/LhhbioIxmKtuYMcD8_hDUAy_wJc.roa
File: LhhbioIxmKtuYMcD8_hDUAy_wJc.roa (raw, json)
Hash identifier: 00iIEOoprD7nkQAstbePB2gb0I2oyvLjifu9mb476U0=
Subject key identifier: 2E:18:5B:8A:82:31:98:AB:6E:60:C7:03:F3:F8:43:50:0C:BF:C0:97
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0192918D07D7794FA35CCF7F260663C654A0
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/LhhbioIxmKtuYMcD8_hDUAy_wJc.roa
Signing time: Tue 15 Oct 2024 18:59:51 +0000
ROA not before: Tue 15 Oct 2024 18:59:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207388
IP address blocks: 80.244.15.0/24 maxlen: 24
212.46.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:91:8d:07:d7:79:4f:a3:5c:cf:7f:26:06:63:c6:54:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Oct 15 18:59:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e185b8a823198ab6e60c703f3f843500cbfc097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a3:50:6e:b7:46:ec:ab:17:77:d6:5d:4b:22:
29:90:84:dd:f4:0a:ab:9b:18:4b:da:41:d3:b1:da:
3f:3c:4d:6f:4b:d5:ce:b0:9e:6d:6c:0c:4b:f5:a0:
20:f9:ea:d9:5e:fa:08:49:53:1f:3f:52:e6:1a:32:
3e:cc:db:c7:39:d2:10:69:3f:0c:a9:8d:ae:05:01:
75:af:90:58:82:85:4b:a8:bb:95:48:30:d0:2d:7f:
b5:85:22:76:d6:b6:16:e3:88:a6:f8:65:3b:3f:0f:
6e:6f:ff:7c:d8:21:88:73:be:c9:db:9e:80:94:90:
bd:99:87:2c:1c:fd:b6:db:2b:80:10:de:f8:d4:19:
a8:11:45:ae:46:a9:e9:ed:2a:16:d7:89:d6:01:e6:
eb:b5:72:07:0e:22:97:32:7e:88:56:eb:57:c7:51:
3b:8f:c9:39:db:6e:00:19:48:41:44:9e:8f:cc:99:
ef:f9:b1:b2:10:17:09:bc:61:41:1e:21:b8:f4:53:
93:cb:63:7f:f1:f9:4a:f7:d9:21:09:02:ed:64:1e:
84:ee:39:52:ed:d0:b0:84:99:21:5c:ac:f1:b9:7b:
2f:d1:f2:55:61:06:e2:0b:44:51:07:bc:80:44:33:
48:24:27:2b:9b:63:64:05:70:27:c0:6d:39:9c:9c:
38:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:18:5B:8A:82:31:98:AB:6E:60:C7:03:F3:F8:43:50:0C:BF:C0:97
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/LhhbioIxmKtuYMcD8_hDUAy_wJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.15.0/24
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
80:bb:49:39:2a:da:dc:71:40:1e:ba:25:28:dd:81:66:48:c0:
05:23:5b:78:e2:1c:a5:c1:90:67:2e:29:ed:b5:4a:38:59:96:
83:d7:c5:c5:ee:8e:ab:19:46:32:85:90:09:f4:dd:73:82:f0:
be:1b:84:dc:4b:15:41:e1:b1:ae:cf:03:cc:29:2d:47:89:23:
c1:cf:3e:60:91:11:2f:c5:5a:1f:cf:ce:af:f0:8d:5d:16:48:
1b:9e:96:9a:d2:4b:96:9e:a1:76:fd:3a:d7:b2:3c:fb:a3:a3:
07:8b:b6:ae:26:a3:b5:4b:67:5e:81:aa:99:18:c2:90:b0:8a:
3b:60:f3:fb:2e:f9:e4:1a:82:bb:45:43:fa:5d:f5:67:8a:ba:
b5:d4:d0:3b:b4:4e:a9:81:6e:14:31:da:c1:e2:fc:a6:3d:ec:
f0:73:bd:d2:be:50:0f:85:b3:a0:1c:8d:7d:8b:46:ff:c3:08:
9a:cf:d7:77:cd:16:35:8a:eb:63:ed:56:83:61:97:49:c0:1b:
c9:30:ac:85:a6:02:6a:de:56:8b:fb:7f:c9:af:52:c7:c5:21:
92:d5:52:f0:c6:06:92:c1:d5:2f:b7:e7:6f:79:5c:03:05:99:
dc:2f:9e:ce:9d:b3:5a:79:7b:ea:c4:6b:1a:b0:a0:ec:1b:45:
e3:10:ea:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:19:48 2024 by rpki-client on console-ams.rpki-client.org