Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ET6RgZtqOdK0S0Ya8A9Q9Wr4gkM.roa
File: ET6RgZtqOdK0S0Ya8A9Q9Wr4gkM.roa (raw, json)
Hash identifier: /2+ZZrQZihOxLMI1osKhEdhaIYZOc7+Vh55DEv8zDkE=
Subject key identifier: 11:3E:91:81:9B:6A:39:D2:B4:4B:46:1A:F0:0F:50:F5:6A:F8:82:43
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0192E586AD115917E6539951C33B43A19124
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ET6RgZtqOdK0S0Ya8A9Q9Wr4gkM.roa
Signing time: Fri 01 Nov 2024 02:21:01 +0000
ROA not before: Fri 01 Nov 2024 02:21:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139880
IP address blocks: 45.135.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e5:86:ad:11:59:17:e6:53:99:51:c3:3b:43:a1:91:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Nov 1 02:21:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=113e91819b6a39d2b44b461af00f50f56af88243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c3:92:b0:da:8f:9a:74:a0:0c:59:71:25:37:
09:aa:47:03:4a:40:91:25:d2:f5:fc:02:52:37:d3:
e7:6f:ac:d4:2c:ce:6c:ca:1b:b0:79:e2:df:b6:f1:
93:da:1c:cb:9b:57:f8:74:c8:87:52:81:d4:7c:c2:
d6:07:9f:bc:c6:bb:b8:5e:11:bb:5c:5a:13:f8:be:
cd:a9:97:a8:b7:88:7a:d2:eb:d0:ec:b9:53:f8:70:
0c:56:74:bc:44:65:ae:cb:39:86:40:5b:f3:b5:5c:
c2:0c:ef:60:2f:21:8d:23:2c:f3:14:07:53:5d:c1:
c3:93:dd:a3:70:a1:fe:74:7c:10:dd:74:db:49:ca:
71:cf:fe:4a:fb:b4:83:6c:83:bb:f4:97:1d:a0:0f:
57:be:04:fa:dd:18:8b:38:36:5f:57:84:43:bc:b9:
07:cd:c9:a9:d8:fe:cc:e2:59:14:de:68:ea:72:bc:
90:d2:e8:75:80:14:a2:1a:a2:e2:45:00:4a:80:72:
e9:ac:5a:2c:31:fc:40:2a:d2:0d:36:b6:63:b6:cd:
7c:6f:1a:9e:e8:a3:1c:ce:33:f6:84:6f:bc:58:e9:
1c:98:8f:26:79:39:eb:69:33:41:f8:fd:a2:fa:4a:
78:6a:3d:51:e0:d0:99:a9:ba:8f:87:8a:95:f6:86:
e0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3E:91:81:9B:6A:39:D2:B4:4B:46:1A:F0:0F:50:F5:6A:F8:82:43
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ET6RgZtqOdK0S0Ya8A9Q9Wr4gkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.237.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:2d:bf:0b:69:4d:f3:6f:4c:eb:90:c5:6d:b8:c4:9f:47:b5:
5c:cd:05:5b:cc:28:f8:4b:bf:b8:5c:f2:ae:94:f7:13:26:8a:
57:56:85:a4:88:f4:c7:2c:c5:e9:37:12:ee:89:5e:18:c2:86:
74:f6:76:64:f6:4c:db:70:3f:de:44:b4:86:d8:b5:a0:0c:0d:
9a:59:12:8f:90:ba:d3:86:2f:7f:82:cd:ca:70:b1:29:55:21:
f2:6e:81:7d:80:46:3e:a1:9b:ef:0b:e8:47:db:dc:7c:02:76:
30:b9:30:b7:1a:00:ca:6d:54:b4:48:f7:27:d3:d7:d4:37:95:
ba:c8:f7:59:26:f3:97:7d:7b:93:4c:e5:b0:6e:b1:00:03:52:
a8:64:26:25:58:02:e3:fc:5e:b5:4b:1b:04:29:cf:a0:d7:2f:
9b:65:71:74:4e:e5:7b:ea:18:1f:33:f3:4c:78:cb:ba:31:a0:
d2:94:0c:ed:af:c3:99:6e:21:cb:fc:70:0d:f3:16:31:b1:e4:
89:be:34:45:e7:af:1d:42:04:75:14:53:76:32:1f:4c:be:01:
7d:29:ef:4d:32:83:b5:4a:08:74:61:f5:f0:76:81:31:09:33:
b6:db:96:8e:53:b3:6f:02:2d:50:2b:d0:57:4c:92:32:d1:d5:
04:4b:3b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:23:17 2024 by rpki-client on console-ams.rpki-client.org