Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/OMiyhPplRHkt9YoTrgktuy91CnI.roa
File: OMiyhPplRHkt9YoTrgktuy91CnI.roa (raw, json)
Hash identifier: X+05qQ5SdlYh7nnt9vMTHCMCxBNPKCmT1hAd5v49DBM=
Subject key identifier: 38:C8:B2:84:FA:65:44:79:2D:F5:8A:13:AE:09:2D:BB:2F:75:0A:72
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 018CC8707358458950C4613A5D46AE9F3D75
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/OMiyhPplRHkt9YoTrgktuy91CnI.roa
Signing time: Tue 02 Jan 2024 04:31:01 +0000
ROA not before: Tue 02 Jan 2024 04:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.155.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:73:58:45:89:50:c4:61:3a:5d:46:ae:9f:3d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 2 04:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38c8b284fa6544792df58a13ae092dbb2f750a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:29:3a:cb:77:5f:9d:41:36:1e:60:38:4a:42:
4d:3e:2a:dc:f6:84:61:a1:6d:a3:b0:1f:29:e3:b2:
f6:3b:92:dd:b6:4e:fb:7d:86:8a:66:b0:80:99:5f:
8d:c2:54:05:6b:d6:6e:a6:29:57:7a:11:cb:e3:72:
67:de:0f:10:cb:35:46:d3:9a:d8:03:86:28:30:24:
41:94:4a:3e:83:6f:bb:c3:74:49:e5:78:9e:34:1e:
d1:13:6d:5f:1b:58:a1:e4:f0:5f:c7:bf:68:45:ed:
87:59:85:bc:83:1b:5b:50:52:29:51:c8:2f:f8:6c:
15:2b:5a:3a:2c:bc:15:27:fd:c0:03:9d:05:64:b4:
7e:6d:9b:80:96:fa:63:fc:0a:b0:0f:57:94:58:3c:
90:54:f2:da:94:77:11:fe:e3:50:68:9a:1f:b5:15:
b4:ed:6b:d0:48:60:c1:a0:3d:03:41:6c:8c:c9:d8:
e7:89:ce:95:ad:36:23:eb:46:03:b9:1b:d3:84:fa:
4b:3f:65:c1:ed:01:5a:ea:ea:f4:d9:3c:3a:a3:1f:
08:d1:d8:9c:d8:35:0a:e0:b1:b1:ee:b6:8b:4c:9b:
0d:94:e3:4e:d3:04:7a:c1:7e:0d:27:8d:86:88:b3:
41:09:45:8f:82:68:71:4f:7b:b6:58:ea:d1:05:3c:
99:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C8:B2:84:FA:65:44:79:2D:F5:8A:13:AE:09:2D:BB:2F:75:0A:72
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/OMiyhPplRHkt9YoTrgktuy91CnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.65.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:4b:c6:16:0c:23:f7:73:22:db:8e:6c:2a:8e:59:d1:69:99:
b3:4e:42:0e:f5:32:3f:41:98:14:b8:89:8c:bf:a3:33:bc:66:
29:c5:68:74:6c:53:a2:15:2b:41:90:f3:cd:f5:31:c4:f7:dc:
4c:bd:a3:1a:bc:03:5f:bf:3e:fa:45:43:aa:b3:ef:a9:c7:46:
23:09:6b:ff:1a:23:db:82:29:c5:fd:60:dd:08:20:f5:68:9b:
31:05:fd:20:7d:5b:ac:a9:28:80:2d:52:f9:1c:bb:01:8a:e3:
18:ff:af:64:2a:18:48:ba:15:dc:7a:a3:91:24:af:85:6a:c8:
87:2e:12:32:8e:15:36:53:9e:de:6a:1b:3a:5f:91:21:4f:4e:
cc:77:c2:41:30:2a:e9:7a:61:08:8c:b5:34:22:26:b2:f9:40:
92:4d:ec:e9:49:2c:9d:99:33:ae:46:27:73:9c:0b:f8:27:c8:
8f:e3:01:f6:e8:e9:d9:78:e3:37:2f:02:f6:e4:dd:d5:04:11:
5a:3c:a8:55:1e:8f:ce:18:8d:e2:a5:df:8d:b6:3b:24:fe:4f:
e9:a0:65:ca:91:f8:82:5a:72:a0:5f:14:11:fd:ea:e7:24:50:
d4:e0:71:1b:0e:e4:28:ea:24:60:24:47:2d:cc:ad:d4:36:1a:
ec:fa:e7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:49:37 2024 by rpki-client on console-fra.rpki-client.org