Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/B3eSjFh2x5UGE6LggPbRF5Eu_FQ.roa
File: B3eSjFh2x5UGE6LggPbRF5Eu_FQ.roa (raw, json)
Hash identifier: 6IKNe6mjt4PJVGsH9q2HDzSiV5C2OHBUg6JKwgpUQUg=
Subject key identifier: 07:77:92:8C:58:76:C7:95:06:13:A2:E0:80:F6:D1:17:91:2E:FC:54
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 018CC348B12761209CFDA9DE14A99B433E69
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/B3eSjFh2x5UGE6LggPbRF5Eu_FQ.roa
Signing time: Mon 01 Jan 2024 04:29:30 +0000
ROA not before: Mon 01 Jan 2024 04:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399471
IP address blocks: 45.134.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:b1:27:61:20:9c:fd:a9:de:14:a9:9b:43:3e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Jan 1 04:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0777928c5876c7950613a2e080f6d117912efc54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:08:31:69:be:46:73:82:8d:80:b2:ae:0d:1f:
34:7e:f8:ea:c7:dd:2f:72:87:15:e6:a8:41:a8:13:
b0:38:89:6a:6a:8f:1f:46:ff:45:3e:83:74:3e:52:
f1:d7:92:f9:94:02:f5:5d:f5:22:91:bc:e3:b7:89:
33:29:5c:ea:b8:56:b7:33:bb:7e:8a:d7:81:95:db:
a9:89:e5:de:a6:93:0b:12:4c:bd:88:a1:62:ad:7c:
ee:4e:8b:be:64:d9:55:4e:11:ce:f3:54:43:c7:de:
be:87:cd:50:29:4e:21:15:f0:98:bb:d7:5f:ec:82:
f9:06:87:62:1f:45:81:51:cb:af:dd:b5:51:05:95:
14:8d:c2:68:c6:f3:e4:af:7c:3b:45:09:71:fe:66:
37:38:6d:72:91:5a:cb:f4:22:a4:1f:cb:23:bc:b6:
8c:79:e6:b3:c5:bc:40:00:42:e1:b4:f4:d5:19:ea:
03:c4:98:dc:b4:72:61:3f:89:68:72:59:02:e2:c1:
6d:b6:27:a3:61:3c:d7:26:c9:79:86:6e:d6:95:ea:
e2:ef:e7:7a:90:8c:7a:b0:4a:81:d6:c5:10:1f:b1:
29:4c:36:5c:20:1f:19:54:26:6f:1b:9c:e2:e9:7a:
56:d2:7a:23:fb:cc:bb:21:2e:cf:8e:36:86:c5:82:
84:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:77:92:8C:58:76:C7:95:06:13:A2:E0:80:F6:D1:17:91:2E:FC:54
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/B3eSjFh2x5UGE6LggPbRF5Eu_FQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.23.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ff:c1:fa:32:62:66:4d:0d:bc:7d:29:70:16:93:bd:e0:57:
7d:32:a9:15:94:75:8d:82:2d:08:af:9b:85:48:a9:e5:90:f0:
0c:65:88:2a:b0:f9:b9:1b:e5:92:fd:4d:ef:ed:70:93:af:b2:
4f:f7:c9:d8:b6:6e:27:d4:81:24:64:25:05:fa:5d:f1:02:59:
f9:df:65:6d:4e:b4:e5:10:d5:2f:b9:a7:fd:5b:5d:a5:ab:34:
e4:92:96:48:51:cd:2b:fd:ac:6d:2c:24:3e:e2:65:2a:a9:d6:
7a:ab:40:e6:f2:10:c5:2f:e4:d5:c6:1a:fc:87:5a:a9:56:6f:
cd:e9:57:bf:40:fe:d6:26:ce:d2:c5:9b:86:cf:a8:fe:c1:74:
54:07:d3:30:cf:01:42:7c:52:f3:3c:9b:8f:e4:8f:09:4f:67:
0c:ee:8f:02:56:05:24:d2:fe:e1:48:cf:6a:fd:8e:46:7a:6b:
b9:6d:6d:23:9c:ca:43:23:17:e2:31:a8:7a:a7:a6:bb:fb:43:
79:5f:e6:33:99:6e:53:81:79:99:52:64:0b:6a:c6:71:30:ec:
87:41:29:7a:0c:0a:0a:9e:ff:23:41:0f:0b:f4:2a:66:16:51:
fa:1f:49:1d:6d:76:28:63:5f:03:a6:fc:08:41:71:06:73:2f:
cf:e6:b6:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSLEnYSCc/aneFKmbQz5pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMjk5OTA0MmM1ZTIwMDZiZDVhZWI3YTA1ZGUxZTk2YTVl
NzM2NjQwHhcNMjQwMTAxMDQyOTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzc3OTI4YzU4NzZjNzk1MDYxM2EyZTA4MGY2ZDExNzkxMmVmYzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQgxab5Gc4KNgLKuDR80fvjqx90v
cocV5qhBqBOwOIlqao8fRv9FPoN0PlLx15L5lAL1XfUikbzjt4kzKVzquFa3M7t+
iteBldupieXeppMLEky9iKFirXzuTou+ZNlVThHO81RDx96+h81QKU4hFfCYu9df
7IL5BodiH0WBUcuv3bVRBZUUjcJoxvPkr3w7RQlx/mY3OG1ykVrL9CKkH8sjvLaM
eeazxbxAAELhtPTVGeoDxJjctHJhP4loclkC4sFttiejYTzXJsl5hm7Wleri7+d6
kIx6sEqB1sUQH7EpTDZcIB8ZVCZvG5zi6XpW0noj+8y7IS7PjjaGxYKEfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAd3koxYdseVBhOi4ID20ReRLvxUMB8GA1UdIwQY
MBaAFA0pmQQsXiAGvVrregXeHpal5zZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUt
OGMxNTM5NjViYWM5LzEvQjNlU2pGaDJ4NVVHRTZMZ2dQYlJGNUV1X0ZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUtOGMxNTM5NjViYWM5
LzEvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYYXMA0G
CSqGSIb3DQEBCwUAA4IBAQAu/8H6MmJmTQ28fSlwFpO94Fd9MqkVlHWNgi0Ir5uF
SKnlkPAMZYgqsPm5G+WS/U3v7XCTr7JP98nYtm4n1IEkZCUF+l3xAln532VtTrTl
ENUvuaf9W12lqzTkkpZIUc0r/axtLCQ+4mUqqdZ6q0Dm8hDFL+TVxhr8h1qpVm/N
6Ve/QP7WJs7SxZuGz6j+wXRUB9MwzwFCfFLzPJuP5I8JT2cM7o8CVgUk0v7hSM9q
/Y5Gemu5bW0jnMpDIxfiMah6p6a7+0N5X+YzmW5TgXmZUmQLasZxMOyHQSl6DAoK
nv8jQQ8L9CpmFlH6H0kdbXYoY18DpvwIQXEGcy/P5rZT
-----END CERTIFICATE-----
Generated at Sun May 5 19:20:12 2024 by rpki-client on console-ams.rpki-client.org