Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/7E_dX3h_yq9IpuUeXERAVp26uBs.roa
File: 7E_dX3h_yq9IpuUeXERAVp26uBs.roa (raw, json)
Hash identifier: 2YghdoTgGAqbseRvLXYv1nMmjrjbl0y174agjusQwZQ=
Subject key identifier: EC:4F:DD:5F:78:7F:CA:AF:48:A6:E5:1E:5C:44:40:56:9D:BA:B8:1B
Certificate issuer: /CN=b660d78320860d5efe729e208b5eb4b2abebe078
Certificate serial: 019030FEF9116A60208950D6EA390DF4D5F3
Authority key identifier: B6:60:D7:83:20:86:0D:5E:FE:72:9E:20:8B:5E:B4:B2:AB:EB:E0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmDXgyCGDV7-cp4gi160sqvr4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/7E_dX3h_yq9IpuUeXERAVp26uBs.roa
Signing time: Wed 19 Jun 2024 14:55:34 +0000
ROA not before: Wed 19 Jun 2024 14:55:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51198
IP address blocks: 45.132.8.0/24 maxlen: 24
45.132.9.0/24 maxlen: 24
45.132.10.0/24 maxlen: 24
45.132.11.0/24 maxlen: 24
185.179.179.0/24 maxlen: 24
2a0e:6540::/29 maxlen: 29
2a0e:6542::/32 maxlen: 32
2a13:7d00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/tmDXgyCGDV7-cp4gi160sqvr4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/tmDXgyCGDV7-cp4gi160sqvr4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tmDXgyCGDV7-cp4gi160sqvr4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 02:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:30:fe:f9:11:6a:60:20:89:50:d6:ea:39:0d:f4:d5:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b660d78320860d5efe729e208b5eb4b2abebe078
Validity
Not Before: Jun 19 14:55:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec4fdd5f787fcaaf48a6e51e5c4440569dbab81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:81:6d:c4:d4:a0:94:d4:c7:c1:ad:80:ab:f6:
8e:d4:4f:d8:4f:42:c3:d5:61:a1:c8:e8:7c:97:5b:
f5:9d:53:7f:47:7a:ce:2b:19:4b:69:ef:29:5f:3e:
b1:95:28:52:80:47:df:c6:9d:c9:3b:d1:29:3a:88:
c5:ea:27:0c:e6:b2:24:83:a8:8b:9c:54:f1:98:bd:
de:e2:fb:1d:6f:25:5e:a2:54:73:d3:4e:fd:62:e2:
11:b6:e3:92:df:6e:ec:2d:4a:b7:9b:79:ab:2d:b0:
55:08:6a:60:3f:c8:ac:bb:cb:73:a8:ae:fb:fe:09:
d8:35:61:3c:4c:c3:a1:1b:a2:12:ce:ce:7e:51:07:
40:33:d2:af:c4:3d:71:29:07:e2:66:b3:91:cf:74:
52:8b:f0:e4:bd:28:10:d6:04:79:4d:f7:68:e5:7e:
12:86:e8:1a:f0:b7:64:7f:c2:b4:f9:7b:60:20:65:
53:98:bc:5d:84:ee:73:f2:69:02:20:ff:e5:66:12:
ca:05:2c:e0:89:04:76:b8:f7:9c:84:c2:de:59:66:
17:8d:af:76:33:15:f8:3b:bf:b4:62:04:e7:28:bc:
8c:f9:d7:1c:62:38:05:ce:4d:1d:d2:80:49:1f:a8:
9b:a5:0c:93:e8:ab:eb:8e:c4:92:d4:43:18:0e:31:
ed:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4F:DD:5F:78:7F:CA:AF:48:A6:E5:1E:5C:44:40:56:9D:BA:B8:1B
X509v3 Authority Key Identifier:
keyid:B6:60:D7:83:20:86:0D:5E:FE:72:9E:20:8B:5E:B4:B2:AB:EB:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmDXgyCGDV7-cp4gi160sqvr4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/7E_dX3h_yq9IpuUeXERAVp26uBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/tmDXgyCGDV7-cp4gi160sqvr4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.8.0/22
185.179.179.0/24
IPv6:
2a0e:6540::/29
2a13:7d00::/29
Signature Algorithm: sha256WithRSAEncryption
61:37:fa:0d:da:c6:31:9f:36:12:01:22:6a:ca:3b:41:29:ab:
2c:d8:91:da:92:a1:7f:cd:0e:0f:60:57:e0:c9:07:f7:d5:62:
f1:5b:c0:52:7e:31:d4:0f:49:8a:65:85:fb:76:4a:6a:86:b0:
85:e9:c2:ba:89:4b:e9:ec:ad:d9:0a:a9:92:37:31:72:fb:4c:
4c:36:c2:62:b8:67:f4:ef:f6:cf:77:4e:6d:8b:d0:ea:bd:ec:
68:8d:a8:9c:fc:8e:fe:47:df:4e:ed:20:38:66:ff:34:54:ed:
74:0b:ef:5a:ab:6c:ae:66:12:f5:ea:5b:11:06:ba:ea:36:9b:
75:d6:75:b9:5a:5e:93:7b:04:b3:46:4e:2d:e7:95:41:e5:26:
54:94:11:e2:0d:21:6c:3e:b3:06:48:33:4c:07:95:98:4d:c0:
72:3a:4f:d4:77:19:47:b5:70:f1:6a:4a:3a:7f:b2:09:dc:bb:
c6:36:78:9b:86:83:25:50:53:fa:bf:7a:9b:6a:90:ac:0e:ff:
b7:55:70:e9:1d:ae:aa:75:0b:59:51:32:09:f7:c6:25:c3:0c:
b2:77:b4:dc:39:51:81:15:0b:89:69:8d:60:20:6d:65:7b:44:
cf:e7:f6:f9:cf:f0:ce:42:48:28:cb:83:48:14:fd:16:f5:64:
2f:a1:b5:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:31:16 2024 by rpki-client on console-ams.rpki-client.org