Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Jv04gzeyy48zHiwf87xhg86UaRo.roa
File: Jv04gzeyy48zHiwf87xhg86UaRo.roa (raw, json)
Hash identifier: i1KZzg6IUcL4MdywVS50NHntRWYZY59vZ9Sq/QzoIgY=
Subject key identifier: 26:FD:38:83:37:B2:CB:8F:33:1E:2C:1F:F3:BC:61:83:CE:94:69:1A
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 0192B8A8B5B3BA55051C2CEDA7921C22C5BA
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Jv04gzeyy48zHiwf87xhg86UaRo.roa
Signing time: Wed 23 Oct 2024 09:15:17 +0000
ROA not before: Wed 23 Oct 2024 09:15:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 45.134.23.0/24 maxlen: 24
45.152.150.0/23 maxlen: 24
185.94.65.0/24 maxlen: 24
185.94.66.0/24 maxlen: 24
185.198.155.0/24 maxlen: 24
195.64.107.0/24 maxlen: 24
195.64.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b8:a8:b5:b3:ba:55:05:1c:2c:ed:a7:92:1c:22:c5:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Oct 23 09:15:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26fd388337b2cb8f331e2c1ff3bc6183ce94691a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3b:9e:e0:12:3f:d8:a6:2e:59:16:e9:13:2b:
1d:ce:24:6b:81:9e:7a:0c:8c:d9:98:4a:0c:d9:23:
d5:b8:c2:88:f6:6d:f3:c5:54:ee:12:d8:3d:d4:7a:
a0:46:d2:8b:b8:4f:9c:13:dc:12:f4:f8:46:c5:34:
7c:53:d4:4e:12:b4:52:23:f7:a6:1a:98:cd:06:00:
e6:17:68:6a:9c:ca:42:9a:66:dd:d7:f9:be:a7:73:
4b:47:cf:ca:23:36:be:c7:d0:51:95:ba:69:d3:4c:
10:ab:37:98:d6:59:77:17:66:88:4e:0b:3e:d3:a0:
05:9f:5b:4c:13:c3:95:e8:25:e1:03:88:40:66:72:
b3:73:f4:32:27:07:25:58:c9:19:d0:e1:99:02:59:
4f:6a:ce:d9:4f:8b:dc:e6:62:74:19:d2:85:82:73:
0a:9c:26:78:bf:77:e4:ba:f2:78:7a:2c:ac:37:83:
42:cf:3d:cf:77:90:ca:4f:66:7b:89:75:68:cd:70:
5f:bb:66:bc:f0:8b:4e:3c:a9:d7:d1:7e:73:5f:c4:
7c:86:01:64:9c:43:c0:0a:74:37:af:ad:93:78:8f:
e0:03:26:97:7c:33:fd:56:cd:f6:92:9a:9a:f9:83:
94:1c:b0:ca:3f:44:32:24:d0:c4:3b:08:0f:a6:34:
c9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FD:38:83:37:B2:CB:8F:33:1E:2C:1F:F3:BC:61:83:CE:94:69:1A
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Jv04gzeyy48zHiwf87xhg86UaRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.23.0/24
45.152.150.0/23
185.94.65.0-185.94.66.255
185.198.155.0/24
195.64.107.0/24
195.64.113.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f2:bd:a2:ad:57:63:46:ed:af:b1:db:e7:96:e8:4c:66:dc:
ee:96:8e:b1:16:56:46:fd:1b:6d:8e:72:fb:61:0e:35:09:66:
6e:de:b6:a3:67:2d:93:6f:ef:50:00:9e:db:64:3e:a9:82:cd:
a2:09:c8:2b:e5:2e:fd:e0:f7:71:2e:e9:f6:a8:ec:a8:2a:f3:
5a:be:1e:39:36:35:21:fb:bb:a9:5e:f5:e6:5c:6f:5e:bd:cd:
11:8c:1c:08:18:00:50:5c:ab:2d:aa:bf:fd:e6:b5:8e:51:e2:
ab:76:c0:84:5b:0f:f0:07:2b:45:95:74:66:0b:59:d6:9e:52:
9f:85:9f:a7:60:91:98:e9:66:a6:6f:9a:01:9c:36:ab:66:6b:
e4:14:bc:9f:95:02:20:80:7e:40:ab:9e:2c:6d:16:98:a7:51:
91:0b:59:6a:b5:f5:93:45:2e:fe:5b:dc:7c:91:86:a4:aa:e2:
0e:bd:75:53:f5:26:b7:b1:9c:85:09:ff:6d:ef:90:83:0e:e6:
e6:f6:c2:a7:09:85:92:2e:99:91:5e:9a:3d:d3:0d:37:6e:dd:
b7:c0:5f:43:3b:ec:b6:dc:07:48:b7:da:d9:21:38:4c:a5:37:
b4:27:c8:dc:cf:f6:eb:c2:1a:ef:68:c4:72:7e:63:92:08:da:
2e:03:05:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:20 2024 by rpki-client on console-ams.rpki-client.org