Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/G-ii1WcZ0SePuGOFHTGOliLn-Gg.roa
File: G-ii1WcZ0SePuGOFHTGOliLn-Gg.roa (raw, json)
Hash identifier: V+Or2ipkq8GLLnGvJL+A1p1dPE072oqvDXKeNqJoaKs=
Subject key identifier: 1B:E8:A2:D5:67:19:D1:27:8F:B8:63:85:1D:31:8E:96:22:E7:F8:68
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018EF00817D8847D42E613A1A57C580A6D38
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/G-ii1WcZ0SePuGOFHTGOliLn-Gg.roa
Signing time: Thu 18 Apr 2024 07:07:25 +0000
ROA not before: Thu 18 Apr 2024 07:07:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
176.125.251.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
185.226.181.0/24 maxlen: 24
185.250.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:08:17:d8:84:7d:42:e6:13:a1:a5:7c:58:0a:6d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 18 07:07:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1be8a2d56719d1278fb863851d318e9622e7f868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f7:6d:7a:97:11:ce:c5:87:03:62:3c:33:39:
bb:9c:af:a4:c7:9e:4c:b5:46:16:6f:30:8d:cf:6a:
3f:6f:ca:01:72:9c:a6:13:4b:c0:7b:3d:c5:53:8a:
e2:04:c6:00:72:10:ce:23:fa:18:e8:d5:6f:0b:99:
3c:ff:f7:d9:7d:87:df:7c:4d:ff:50:b6:0b:6d:c4:
4b:5e:3a:de:a4:1c:e6:7c:ce:1a:f7:44:6c:89:f5:
00:5a:be:69:57:ca:40:cd:11:75:82:b9:34:bb:90:
bb:1e:90:a5:3e:db:05:54:be:61:74:94:9d:94:5f:
04:d3:6f:07:6a:18:8e:ce:dc:24:d0:ad:df:a3:43:
2c:5a:0a:8c:4f:43:1a:8e:be:f2:4f:98:9d:19:a3:
67:07:f3:18:0c:c1:98:3a:df:7c:eb:65:3c:17:f1:
87:ca:80:0b:14:20:c0:f5:bc:71:d9:e5:86:2a:dc:
12:df:9c:23:f1:d2:99:ce:e0:d8:1b:9e:81:43:32:
1f:e4:e1:1a:55:dc:69:87:9b:3f:af:d5:d9:a5:39:
35:a6:16:b3:ad:6a:bc:10:77:6f:17:7b:eb:df:a8:
56:02:ff:44:8b:6b:c5:80:80:fa:38:6e:8e:a1:dd:
9b:89:18:ed:14:09:bc:fc:e3:1d:d2:4f:36:14:72:
7a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E8:A2:D5:67:19:D1:27:8F:B8:63:85:1D:31:8E:96:22:E7:F8:68
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/G-ii1WcZ0SePuGOFHTGOliLn-Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.255.0/24
176.125.251.0/24
185.199.151.0/24
185.199.213.0/24
185.226.181.0/24
185.250.27.0/24
Signature Algorithm: sha256WithRSAEncryption
be:dc:58:a1:6e:99:d9:e4:1c:52:94:8e:7d:c9:ba:3c:66:dd:
41:d1:c3:2c:66:f7:af:fe:06:c3:a2:70:41:88:8a:39:d7:5d:
6a:c7:b0:6c:33:dd:cf:0b:07:b2:27:08:90:fd:bf:9e:98:7f:
f1:f6:94:15:76:60:b5:2d:4c:9f:65:d3:1f:b9:90:38:b2:f3:
7b:d2:0b:b0:2f:3b:d6:3e:8b:19:41:09:3d:96:66:a3:f7:62:
c8:d1:8b:98:b0:24:fd:6c:5b:c8:11:1b:32:87:55:8d:a5:fa:
2d:51:3a:fe:5a:0e:47:a8:12:e7:2e:96:20:6a:d0:0a:36:4a:
40:a5:02:d5:61:25:94:db:ce:58:98:23:d1:8f:8b:40:4b:3d:
50:a8:d7:bc:3d:43:3b:8d:4e:fb:7e:85:f3:7b:1d:60:0b:a4:
ba:eb:ac:95:e5:09:ab:66:88:1f:51:9c:e4:9a:b2:4c:3c:c1:
0e:ac:50:25:87:f8:97:37:bb:75:71:e9:90:1e:6a:94:2a:73:
2c:aa:62:ec:28:76:7c:ea:0a:61:de:5f:5e:1c:ec:26:da:d3:
c5:ee:2b:57:6b:0c:a5:b2:d8:bd:ca:65:27:33:67:09:ad:89:
aa:d0:e5:2c:69:5b:59:28:f5:f4:e3:23:f6:cb:d2:01:8c:41:
9f:bb:87:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:32:14 2024 by rpki-client on console-ams.rpki-client.org