Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/td4_ttmZZyDn6CGTQ0EIsnB1NqE.roa
File: td4_ttmZZyDn6CGTQ0EIsnB1NqE.roa (raw, json)
Hash identifier: 948BPTxHrxFN3ayuuyv4YdwamazdiCaiCJkPb/KM8qI=
Subject key identifier: B5:DE:3F:B6:D9:99:67:20:E7:E8:21:93:43:41:08:B2:70:75:36:A1
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 018CC64B6794CD458FE5F969ABC1F7017DFC
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/td4_ttmZZyDn6CGTQ0EIsnB1NqE.roa
Signing time: Mon 01 Jan 2024 18:31:19 +0000
ROA not before: Mon 01 Jan 2024 18:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55933
IP address blocks: 45.153.128.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:67:94:cd:45:8f:e5:f9:69:ab:c1:f7:01:7d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 18:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5de3fb6d9996720e7e82193434108b2707536a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1f:23:c7:c4:33:55:e7:16:09:aa:d9:f3:2b:
75:ad:69:b1:6f:4d:ae:d2:b6:39:71:8d:22:3b:57:
1e:32:53:67:a4:e7:be:fe:82:fa:95:2e:b9:ba:11:
b7:b2:60:b6:4b:91:64:3b:a1:5d:5d:6f:0d:3d:5f:
63:e0:32:94:ba:75:d6:57:9b:d7:42:3c:ea:cd:0a:
46:b4:82:3e:a0:8f:7b:be:01:19:8c:66:54:9b:60:
7e:92:6b:09:8d:49:bf:91:02:fc:f3:36:7b:37:3c:
e3:92:18:30:6c:ff:e4:8e:e6:73:b1:a9:44:ea:db:
a7:db:27:4b:b0:94:df:85:9e:ff:91:2e:7e:dc:23:
bb:c6:bb:08:ba:aa:e3:67:de:e4:f3:92:e9:31:23:
8a:92:aa:be:ad:dc:87:21:a6:e0:d8:cc:79:e9:93:
e4:c3:4f:51:a3:94:f9:28:3b:c0:ed:ff:57:77:7e:
ea:fa:88:db:b8:ca:0f:0c:f7:dd:15:96:5b:31:ff:
9c:12:8b:4a:49:ec:de:b9:af:14:68:86:5a:ea:7d:
8a:ec:e1:fb:b2:d4:0a:97:3a:7e:98:28:d9:c9:68:
24:3c:13:10:5b:2d:ac:eb:56:00:d1:97:07:27:83:
0f:65:79:ad:8f:ce:74:d7:77:b0:09:9c:23:97:62:
e6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DE:3F:B6:D9:99:67:20:E7:E8:21:93:43:41:08:B2:70:75:36:A1
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/td4_ttmZZyDn6CGTQ0EIsnB1NqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.128.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:d9:d1:9b:51:42:86:4d:1f:4b:d9:83:49:80:d6:5c:5b:cc:
42:64:c5:2f:53:6d:14:f4:9b:ca:aa:1c:d7:62:c8:43:e6:ac:
5c:a4:d4:d4:14:33:c2:88:f1:3a:15:f2:d7:d0:85:33:13:e7:
ba:cb:1f:63:47:d1:b2:c3:3a:7b:7d:b8:c4:34:ca:68:15:6e:
d0:7d:a6:d8:00:e5:8f:db:8b:df:69:93:0d:23:c1:dc:18:44:
42:86:4e:5d:ff:8e:a8:2f:73:43:ba:0e:bd:6a:34:b3:d7:46:
f9:e6:6e:9f:bb:91:67:1b:5a:cc:8d:bb:38:80:17:cb:2e:b0:
c9:31:61:ab:6d:53:e0:9f:cf:47:af:38:87:3a:76:81:b6:5f:
5c:87:a3:c1:34:62:7f:7f:6a:fd:a2:bf:c5:f2:50:94:b6:62:
75:ae:08:a4:24:a1:5a:0f:69:52:15:d3:3b:ee:48:02:39:a2:
ea:a9:3d:fc:f9:37:c0:47:33:ee:cb:ff:9f:d7:07:46:bb:41:
93:0c:87:7c:60:6a:a6:aa:39:6f:f0:80:ce:7a:01:86:c3:9a:
0d:3d:a4:73:3f:7e:98:98:cc:c1:02:21:19:a8:30:23:78:45:
3a:c9:39:dd:5b:ac:05:59:86:ae:e1:a4:cf:4b:17:37:45:d4:
16:34:4f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:40:01 2024 by rpki-client on console-ams.rpki-client.org