Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/bje3A4zheYKVA_GWZ8FXvAZ4rlI.roa
File: bje3A4zheYKVA_GWZ8FXvAZ4rlI.roa (raw, json)
Hash identifier: jc26dxfLrJLJOlE9GZ9jzKSd5eBahlqkkhUJDtWu4Dw=
Subject key identifier: 6E:37:B7:03:8C:E1:79:82:95:03:F1:96:67:C1:57:BC:06:78:AE:52
Certificate issuer: /CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Certificate serial: 018CC5DC39462415DBA436DD965D31462876
Authority key identifier: 20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/bje3A4zheYKVA_GWZ8FXvAZ4rlI.roa
Signing time: Mon 01 Jan 2024 16:29:53 +0000
ROA not before: Mon 01 Jan 2024 16:29:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48813
IP address blocks: 45.140.108.0/22 maxlen: 24
185.145.248.0/22 maxlen: 24
193.19.208.0/22 maxlen: 24
2a07:4b00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:39:46:24:15:db:a4:36:dd:96:5d:31:46:28:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Validity
Not Before: Jan 1 16:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e37b7038ce179829503f19667c157bc0678ae52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:94:75:a4:8b:fb:18:63:f6:bc:fe:df:d6:97:
b1:34:77:27:d5:0e:fe:38:00:14:3d:75:fb:8c:27:
7e:d4:bd:bd:77:4a:12:3e:4e:aa:82:d0:21:41:94:
6f:da:36:f0:10:36:dc:7f:9e:53:0f:33:13:54:56:
49:c0:1b:fc:12:68:c0:6b:f0:27:70:65:c5:d1:9c:
d2:4b:de:5f:b6:c5:38:86:d0:03:68:d5:94:1c:78:
93:65:67:51:c2:b9:ef:4a:b5:f2:b7:b5:0b:8b:0a:
e5:15:4b:7a:a0:a0:64:f2:2a:b6:6c:60:b6:4b:e5:
35:86:89:ab:87:75:cd:0d:7e:3a:60:1e:e4:d4:0b:
5d:b5:70:18:9b:57:ad:49:e2:6b:b6:17:a4:b9:61:
b1:c0:4e:9b:86:38:20:df:70:b7:bf:c0:4f:6c:fc:
15:23:cc:70:df:b7:6a:bb:52:0a:07:96:29:38:52:
49:ad:93:c3:1d:b7:ff:cf:f7:c4:91:4f:b5:2c:36:
fd:dc:32:f1:f6:90:71:82:fa:34:b5:af:ed:67:0f:
df:09:70:7e:c7:34:fc:36:28:b8:e5:ba:99:db:fa:
2a:67:d9:d7:0c:2d:e6:18:d6:ee:94:6f:ff:86:4d:
4b:3c:09:7d:0e:e6:b2:49:77:4d:18:46:de:2c:4d:
8c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:37:B7:03:8C:E1:79:82:95:03:F1:96:67:C1:57:BC:06:78:AE:52
X509v3 Authority Key Identifier:
keyid:20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/bje3A4zheYKVA_GWZ8FXvAZ4rlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.108.0/22
185.145.248.0/22
193.19.208.0/22
IPv6:
2a07:4b00::/29
Signature Algorithm: sha256WithRSAEncryption
54:15:a4:7a:92:8a:ae:d6:f9:5c:55:1f:55:a8:d0:87:8c:5b:
e4:95:e6:28:d5:00:68:0c:c3:65:ad:7a:b5:f4:45:b8:05:a6:
2c:68:52:5b:a6:17:e8:f2:f5:36:4a:f0:30:f5:29:b2:8f:7b:
4f:c6:8c:01:6c:8b:37:43:b8:56:1d:4b:6e:ab:05:89:2b:8c:
90:67:de:46:52:0a:ab:3c:8d:7f:de:42:2c:91:3f:d4:ad:8b:
bf:48:bc:9b:ff:e6:73:dc:c0:f4:cc:6a:a4:b5:03:fc:1e:cc:
c6:40:af:c6:cd:04:54:be:20:1c:fa:76:da:21:3b:26:c3:b5:
c8:2e:47:26:3c:d5:7f:f5:c0:b7:6a:24:51:49:20:6a:f1:e6:
cf:87:f4:f3:c1:1d:d8:35:b7:cb:97:ab:2e:e7:31:84:06:b0:
1f:34:74:c1:e6:63:b4:94:ec:cd:2e:50:d6:10:7d:66:f7:6c:
93:6b:34:67:4d:b0:af:1b:a8:c2:0a:dd:d2:00:37:0f:33:5a:
43:95:1f:60:1d:2d:59:ef:0d:14:e6:d6:49:cd:49:ca:55:2e:
c8:69:5d:cb:ef:5c:d1:71:b6:91:22:b2:e0:57:cc:43:b2:95:
2e:ee:ba:94:20:29:b2:16:25:4f:52:66:f2:11:36:b4:f5:49:
d5:9d:40:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 21:16:02 2024 by rpki-client on console-ams.rpki-client.org