Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/_CIpyxilw1MB4UxulIMW6zj0vj8.roa
File: _CIpyxilw1MB4UxulIMW6zj0vj8.roa (raw, json)
Hash identifier: 914UD3qKkWdmy0+kdectVG9kbKx696SkVVxCGSi0/Wc=
Subject key identifier: FC:22:29:CB:18:A5:C3:53:01:E1:4C:6E:94:83:16:EB:38:F4:BE:3F
Certificate issuer: /CN=814edbd19634cbb91a0d2dafd759d4c9a7e77b7a
Certificate serial: 018F9F546AF7BD95BDD87772AD40E7E0CAAD
Authority key identifier: 81:4E:DB:D1:96:34:CB:B9:1A:0D:2D:AF:D7:59:D4:C9:A7:E7:7B:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gU7b0ZY0y7kaDS2v11nUyafne3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/_CIpyxilw1MB4UxulIMW6zj0vj8.roa
Signing time: Wed 22 May 2024 08:04:20 +0000
ROA not before: Wed 22 May 2024 08:04:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215403
IP address blocks: 45.92.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/gU7b0ZY0y7kaDS2v11nUyafne3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/gU7b0ZY0y7kaDS2v11nUyafne3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/gU7b0ZY0y7kaDS2v11nUyafne3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9f:54:6a:f7:bd:95:bd:d8:77:72:ad:40:e7:e0:ca:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=814edbd19634cbb91a0d2dafd759d4c9a7e77b7a
Validity
Not Before: May 22 08:04:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc2229cb18a5c35301e14c6e948316eb38f4be3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3b:2e:3c:31:d7:72:8d:d3:df:b4:dd:20:1a:
e5:ba:fb:a2:7e:48:eb:d5:26:ff:28:0b:7e:b2:27:
54:76:d7:fe:b2:af:29:b2:1c:0c:3b:15:77:c5:4b:
75:23:51:02:bf:5f:95:f4:9d:96:f7:fa:45:d6:0d:
80:f0:91:3e:cc:17:e7:95:4c:f0:cf:a5:d0:bc:bd:
a9:69:d3:37:56:fe:40:e8:46:a1:94:f0:78:cd:18:
66:65:46:5c:1e:b8:d2:7d:b0:01:c4:5e:10:7c:0c:
02:ed:72:ec:ff:a4:71:2d:15:12:f7:86:fc:98:01:
6c:e7:e7:9e:f6:fd:37:dd:bc:bb:89:32:44:37:1d:
3c:8f:11:f5:00:87:4b:76:96:c1:5d:3d:47:9d:9b:
31:1f:ed:b8:56:51:b7:5e:41:8d:02:bd:df:4f:e5:
c2:c3:3e:38:09:e4:03:98:e0:a5:89:91:54:34:9a:
d9:b0:e3:d8:1a:9c:80:a0:aa:88:b3:b3:9d:ce:88:
c0:d6:28:9b:e2:dd:f9:c7:45:7a:75:09:ce:0c:7f:
b6:d2:5b:18:17:0f:77:bb:fa:7c:9a:0b:4e:d2:8c:
73:ba:7e:29:cd:75:f4:e1:53:0b:aa:13:3d:53:9a:
c4:c1:4d:17:60:69:70:b3:5a:84:28:e5:76:72:d3:
6d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:22:29:CB:18:A5:C3:53:01:E1:4C:6E:94:83:16:EB:38:F4:BE:3F
X509v3 Authority Key Identifier:
keyid:81:4E:DB:D1:96:34:CB:B9:1A:0D:2D:AF:D7:59:D4:C9:A7:E7:7B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gU7b0ZY0y7kaDS2v11nUyafne3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/_CIpyxilw1MB4UxulIMW6zj0vj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/gU7b0ZY0y7kaDS2v11nUyafne3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.13.0/24
Signature Algorithm: sha256WithRSAEncryption
76:54:3c:a2:2f:79:bf:ea:bd:ae:ac:41:c6:44:a8:cf:eb:8f:
89:a2:54:a6:56:04:0d:4c:76:dd:62:68:01:f6:35:f5:5c:74:
71:de:06:84:4c:67:43:44:7f:3b:94:5b:a3:fd:6a:a9:31:ac:
78:32:81:bf:1b:27:3a:ae:03:6b:a4:c8:6c:20:12:18:87:e7:
2a:3d:8d:29:e7:2d:8f:d8:6a:87:e6:40:20:34:c1:01:2d:a2:
46:3b:b6:6b:c7:46:c7:05:33:51:a6:5e:8a:52:a5:23:db:69:
81:c4:b5:0c:2e:e2:79:78:ab:36:fc:27:9a:06:f9:a1:99:ac:
a7:33:18:21:91:14:ec:6a:1e:6d:f1:ff:cb:83:dc:a1:c6:83:
ef:80:0b:07:6e:fb:f5:75:33:11:fe:5f:7f:9a:3f:61:a5:8c:
00:f7:2e:c8:27:f2:de:4b:71:17:10:e8:5a:a7:f5:3b:2d:bf:
a7:ca:d2:76:55:0c:e0:46:f2:50:7d:6f:13:3b:b6:5a:68:90:
dd:0d:6e:5b:31:31:bd:20:ff:4c:70:b0:52:d0:63:33:a8:bf:
4d:01:db:76:3c:64:83:a5:80:98:2b:34:22:d8:26:0c:d0:0d:
1d:85:ad:7c:a6:96:c4:c1:a0:3f:7e:78:a0:47:5c:eb:ab:ac:
58:d7:d0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:14:28 2024 by rpki-client on console-ams.rpki-client.org