Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hxUlIWTBWIN5lbaiKCBkHW7KH8U.roa
File: hxUlIWTBWIN5lbaiKCBkHW7KH8U.roa (raw, json)
Hash identifier: QyLEcmNxKkr9bXwKz8JkZ1IRLRGtG4Wt5L2vRFHRt/Q=
Subject key identifier: 87:15:25:21:64:C1:58:83:79:95:B6:A2:28:20:64:1D:6E:CA:1F:C5
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 01929255891999D421B6DF306D6D60ADDFB5
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hxUlIWTBWIN5lbaiKCBkHW7KH8U.roa
Signing time: Tue 15 Oct 2024 22:38:52 +0000
ROA not before: Tue 15 Oct 2024 22:38:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 45.129.128.0/24 maxlen: 24
45.132.50.0/24 maxlen: 24
194.26.138.0/24 maxlen: 24
194.32.236.0/24 maxlen: 24
213.109.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:09:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:92:55:89:19:99:d4:21:b6:df:30:6d:6d:60:ad:df:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Oct 15 22:38:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8715252164c158837995b6a22820641d6eca1fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:da:ee:96:79:ba:08:93:43:ea:4e:4a:01:60:
fd:b9:3b:ae:a2:2f:9f:9b:cf:97:5c:0e:94:45:e6:
90:31:d1:59:07:f6:d7:0e:f1:6b:ae:fd:b5:70:4f:
da:94:9b:66:ac:ed:19:5d:6b:05:e5:6e:85:06:dc:
a8:4e:fd:0e:84:f7:40:ba:0e:34:cb:73:b6:fd:1f:
e4:13:27:01:49:7f:bd:a4:8b:80:a0:e1:f7:33:a9:
db:00:22:7f:fc:12:ac:8f:2c:72:36:dd:1c:a4:14:
44:08:8e:b3:1e:f1:5d:17:ea:e2:12:b0:24:0e:22:
b9:8f:81:38:f8:a6:64:55:f4:f9:93:34:ff:e5:21:
ab:58:43:c5:53:ce:50:b5:83:bf:30:dc:cd:68:c7:
a7:fc:15:da:f8:5a:1a:2a:26:f7:b0:4d:5c:9d:32:
2b:d9:ea:a2:d3:16:f4:16:84:45:56:72:e0:3a:7d:
69:b8:f6:49:01:5c:98:37:12:71:de:51:74:f1:33:
cc:1e:8d:56:13:c6:68:63:ed:f1:0d:bf:9d:a2:c6:
b9:ab:6d:1a:7c:f4:20:b6:63:ec:81:73:e9:59:1d:
ed:4c:5b:f8:a9:56:6d:43:87:8d:92:5b:45:1d:2f:
c3:b8:b0:6b:4c:2f:28:56:e0:78:90:09:f7:24:dc:
5a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:15:25:21:64:C1:58:83:79:95:B6:A2:28:20:64:1D:6E:CA:1F:C5
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hxUlIWTBWIN5lbaiKCBkHW7KH8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.128.0/24
45.132.50.0/24
194.26.138.0/24
194.32.236.0/24
213.109.204.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ef:fb:d1:af:00:27:62:9b:dc:bf:6e:94:25:ca:65:33:f8:
df:67:9d:4b:53:00:34:70:56:cc:81:2f:12:d4:c5:44:67:00:
00:f7:a6:a4:f4:09:b3:48:6a:10:19:d1:9f:67:9c:e5:4e:b8:
e7:27:8d:2f:c4:07:a2:21:38:80:fe:55:24:09:fc:be:ca:39:
6a:96:c3:94:c9:64:40:d4:c8:c2:84:79:c1:6a:ba:96:6d:32:
78:98:28:00:d7:71:ac:39:0f:b6:ec:9b:2b:6a:c4:11:2c:5a:
32:6b:54:ae:43:2a:5a:cb:24:fb:75:ae:b0:3b:94:55:ff:eb:
8d:f5:6e:31:68:62:11:41:2a:19:05:d0:4a:1a:4e:28:fc:b6:
85:33:36:ca:6e:8a:06:84:6f:e2:a2:92:9b:80:77:bc:32:2f:
6e:54:23:ad:18:b1:0d:79:ed:72:bf:fc:c9:40:c4:fc:71:fe:
bb:ef:be:c6:ce:d3:2c:51:84:c7:b6:0f:43:b7:32:34:a3:8b:
77:79:b2:9a:b9:7f:ef:c4:27:2b:6a:30:9b:35:81:ef:4d:d4:
c6:72:6f:48:8b:e3:26:c8:3a:c4:ef:86:00:c7:f0:08:67:46:
82:d2:9b:5e:62:12:b9:c0:e1:3f:fc:a3:8d:77:3d:b9:7f:5b:
b0:d0:c3:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:43:18 2024 by rpki-client on console-fra.rpki-client.org