Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/ZIEnJYu7SIczf8I7fMa-AVKV0hk.roa
File: ZIEnJYu7SIczf8I7fMa-AVKV0hk.roa (raw, json)
Hash identifier: CfX6dXGkI6eXzoXnZ1CSau8B50yt9R92glJwlaY4CTg=
Subject key identifier: 64:81:27:25:8B:BB:48:87:33:7F:C2:3B:7C:C6:BE:01:52:95:D2:19
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 018CC26D4B4C3E29668DCF97CD39F048F8DB
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/ZIEnJYu7SIczf8I7fMa-AVKV0hk.roa
Signing time: Mon 01 Jan 2024 00:29:51 +0000
ROA not before: Mon 01 Jan 2024 00:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35478
IP address blocks: 45.13.212.0/24 maxlen: 24
193.47.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.mft
rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:4b:4c:3e:29:66:8d:cf:97:cd:39:f0:48:f8:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Jan 1 00:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=648127258bbb4887337fc23b7cc6be015295d219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:3f:f0:2b:3b:d9:06:dc:9e:35:05:43:ca:
d0:82:93:fb:e4:44:29:20:1d:14:c9:56:aa:bc:a2:
23:82:a5:8c:c7:e1:b0:36:33:69:7d:d2:d4:0a:24:
7b:b0:3c:b6:bc:14:4f:00:d7:43:a3:a6:53:20:56:
65:36:cd:c0:1e:0f:9e:d0:70:f5:59:42:4a:d8:e8:
31:ae:ca:5e:71:e7:d8:3e:2f:f8:f5:72:19:ac:13:
dd:57:be:22:ef:03:36:1c:46:25:27:09:89:ff:eb:
c0:f2:74:42:e7:4f:4c:b1:07:e2:1c:a2:0b:64:4c:
b3:37:26:b1:97:50:6f:4d:7a:0d:9f:38:62:70:1b:
28:90:27:d4:08:99:46:77:d8:63:d9:0c:df:8c:d5:
83:0b:42:5f:28:49:7c:92:94:2a:e2:dd:9d:c7:5c:
1b:6f:78:4a:3e:8e:58:c8:9e:76:db:da:9d:4a:28:
6e:da:e3:0e:ea:12:7c:7a:35:fc:40:9d:29:2d:d2:
ca:6c:ab:d9:24:03:6f:51:70:70:0a:18:5b:fe:b2:
a0:20:e6:65:1b:1c:b0:a1:03:2f:d9:42:b6:77:39:
be:ca:c8:91:eb:6f:0d:33:85:bb:44:ee:a3:c1:7f:
48:e1:1f:8a:42:3e:38:61:79:28:6e:98:c8:d7:94:
3c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:81:27:25:8B:BB:48:87:33:7F:C2:3B:7C:C6:BE:01:52:95:D2:19
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/ZIEnJYu7SIczf8I7fMa-AVKV0hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.212.0/24
193.47.68.0/24
Signature Algorithm: sha256WithRSAEncryption
07:e6:08:7b:61:da:b3:9e:f1:1b:77:e9:db:f6:e5:a6:0e:a1:
bf:c7:43:44:6f:01:e9:fa:1a:53:4f:4c:53:c2:8c:3c:80:5f:
9d:2d:bb:81:40:38:b8:a9:8f:9a:97:81:6c:21:3f:a9:08:3a:
e0:29:eb:80:6e:49:c7:ba:7e:14:da:5d:e7:15:e5:94:e9:dc:
04:aa:b3:06:fd:1e:9a:85:04:1b:6e:cd:2c:58:cd:00:63:5f:
65:32:3d:65:3f:e3:7f:cd:cb:c1:e7:c7:07:a3:be:c5:83:cd:
dc:f2:04:78:ee:36:80:4a:fc:f7:f0:87:ce:48:51:95:38:fc:
69:52:a6:bc:0b:f9:d7:aa:d7:7e:f6:14:54:35:35:05:5c:b5:
9d:c6:02:28:52:0d:31:e6:aa:6f:00:72:22:33:ed:af:28:b5:
59:7b:80:d6:60:f4:67:8d:4a:10:aa:6f:2a:df:93:40:79:55:
0c:42:ed:96:6b:bc:44:86:2d:12:56:66:9c:2f:4e:9c:ba:10:
8e:df:43:f6:34:55:d0:a2:0f:7e:5e:69:94:90:f3:33:c9:3f:
4f:ce:1f:7c:94:3b:d9:fa:01:63:85:91:cf:ee:cf:11:95:18:
7f:dc:29:06:df:8c:65:61:58:ec:64:89:d0:83:e3:f5:48:e3:
6e:6a:b9:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:34:57 2024 by rpki-client on console-ams.rpki-client.org