Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/80fcb9-ca84-46a2-b1b0-fd5e4465d144/1/rHB1IR3biF_1y0WWcE83Lma3ssg.roa
File: rHB1IR3biF_1y0WWcE83Lma3ssg.roa (raw, json)
Hash identifier: in+s76s0GZO0/9gzs+iaVNNn6YvOtwG3pXvjw78Z0HU=
Subject key identifier: AC:70:75:21:1D:DB:88:5F:F5:CB:45:96:70:4F:37:2E:66:B7:B2:C8
Certificate issuer: /CN=78950ba19b4f17a3473127fd077a9a2002ebea36
Certificate serial: 018CC56EDA0871BD535895F63E11794A6CEF
Authority key identifier: 78:95:0B:A1:9B:4F:17:A3:47:31:27:FD:07:7A:9A:20:02:EB:EA:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eJULoZtPF6NHMSf9B3qaIALr6jY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/80fcb9-ca84-46a2-b1b0-fd5e4465d144/1/rHB1IR3biF_1y0WWcE83Lma3ssg.roa
Signing time: Mon 01 Jan 2024 14:30:25 +0000
ROA not before: Mon 01 Jan 2024 14:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207044
IP address blocks: 45.87.224.0/24 maxlen: 24
45.87.225.0/24 maxlen: 24
2a0d:f700:1000::/38 maxlen: 38
2a0d:f700:c00::/38 maxlen: 38
2a0d:f700:800::/38 maxlen: 38
2a0d:f700:400::/38 maxlen: 38
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/80fcb9-ca84-46a2-b1b0-fd5e4465d144/1/eJULoZtPF6NHMSf9B3qaIALr6jY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/80fcb9-ca84-46a2-b1b0-fd5e4465d144/1/eJULoZtPF6NHMSf9B3qaIALr6jY.mft
rsync://rpki.ripe.net/repository/DEFAULT/eJULoZtPF6NHMSf9B3qaIALr6jY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:da:08:71:bd:53:58:95:f6:3e:11:79:4a:6c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78950ba19b4f17a3473127fd077a9a2002ebea36
Validity
Not Before: Jan 1 14:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac7075211ddb885ff5cb4596704f372e66b7b2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2f:25:88:ed:0d:f8:4a:e3:1d:47:98:23:fe:
2b:16:c7:46:76:b9:5b:28:27:15:93:3f:67:82:ee:
63:67:71:a0:5d:9c:7c:04:62:91:fc:ab:5e:29:88:
82:15:47:96:77:34:0f:bb:c8:bd:22:fb:cd:05:78:
3c:d8:50:ec:c2:9b:c9:70:db:f0:3a:d0:3e:16:44:
a9:a1:60:04:85:9c:3c:28:04:ff:42:19:c7:70:3e:
26:ff:31:ab:70:1e:29:7d:b3:05:c0:7f:f5:94:3b:
3a:04:57:ea:1e:28:a0:27:d3:42:db:65:09:10:4d:
2c:5e:75:b2:5f:2b:62:a0:3f:92:73:25:7b:46:ad:
02:68:0b:76:5f:cc:f5:b1:8d:4a:9c:fa:1b:c2:43:
bd:4e:f7:20:42:c8:57:78:9d:54:b4:bb:ba:d7:fa:
f3:44:27:7d:2e:7c:8c:9b:60:0e:05:52:17:b7:dd:
78:03:36:90:64:ad:af:5c:b1:9e:49:de:fe:90:bc:
15:e2:a3:66:e5:23:3e:d8:96:8d:f2:8a:58:24:ee:
cf:ac:7a:b6:fa:34:d8:48:bf:02:d1:21:a9:db:aa:
bb:58:dd:63:c5:24:0c:1a:77:96:3b:9b:52:23:21:
ce:73:85:32:8d:4e:e8:90:65:c2:e5:fb:b1:58:f5:
f0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:70:75:21:1D:DB:88:5F:F5:CB:45:96:70:4F:37:2E:66:B7:B2:C8
X509v3 Authority Key Identifier:
keyid:78:95:0B:A1:9B:4F:17:A3:47:31:27:FD:07:7A:9A:20:02:EB:EA:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eJULoZtPF6NHMSf9B3qaIALr6jY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/80fcb9-ca84-46a2-b1b0-fd5e4465d144/1/rHB1IR3biF_1y0WWcE83Lma3ssg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/80fcb9-ca84-46a2-b1b0-fd5e4465d144/1/eJULoZtPF6NHMSf9B3qaIALr6jY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.224.0/23
IPv6:
2a0d:f700:400::-2a0d:f700:13ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2f:2e:02:fb:f9:94:de:65:ed:c7:20:43:12:0d:e2:bf:d0:17:
00:b1:69:ac:72:f4:c0:a1:e5:10:1f:a9:2c:23:ff:a0:82:a9:
e9:19:dc:45:0e:be:23:db:d8:ea:72:2d:3f:b6:81:b9:e2:7c:
e5:2a:65:c8:4f:67:f8:e5:23:99:7c:c4:63:f3:4f:c4:6a:d6:
ab:e2:42:cd:f9:a9:aa:19:b1:d8:5d:a4:bb:78:75:ef:65:2e:
67:9d:41:e9:9e:74:d2:35:d5:5c:e4:bf:ec:31:0d:dd:82:65:
30:66:55:52:7b:0b:dd:8c:72:c0:cf:dc:06:df:37:b2:d5:b7:
4b:a6:3c:42:49:92:08:6a:0b:90:7e:a6:ee:d9:72:8e:fe:3e:
f6:0f:b1:a8:11:ab:e1:50:aa:81:25:00:0b:2b:c8:c7:da:d1:
4b:16:df:b7:b8:47:14:f3:a5:34:0d:ba:07:3b:29:e3:e7:58:
41:b3:31:4d:5f:82:62:08:ae:d3:6e:39:a1:6e:a6:ba:d9:40:
93:cc:24:51:37:7a:c1:dd:91:ac:02:57:2d:12:ed:40:89:e5:
1a:ba:8e:86:a7:c5:0e:1e:fa:7c:54:a6:a5:f9:75:82:17:4f:
be:74:ac:15:7c:95:5a:bb:40:9c:b1:a4:a2:7f:17:3a:b1:c9:
11:b5:f9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 20:55:35 2024 by rpki-client on console-fra.rpki-client.org