Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SbvIm1SCVR13-6_8mAnSjWuJiwA.roa
File: SbvIm1SCVR13-6_8mAnSjWuJiwA.roa (raw, json)
Hash identifier: 0ZIEr/OTnU76LDtFeNaWuKnqCxE8OiCkNGyh1DtV5IQ=
Subject key identifier: 49:BB:C8:9B:54:82:55:1D:77:FB:AF:FC:98:09:D2:8D:6B:89:8B:00
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018F1926A114D1BDFBF400DDE412BA54000F
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SbvIm1SCVR13-6_8mAnSjWuJiwA.roa
Signing time: Fri 26 Apr 2024 06:45:13 +0000
ROA not before: Fri 26 Apr 2024 06:45:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 45.141.208.0/22 maxlen: 24
45.150.8.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:26:a1:14:d1:bd:fb:f4:00:dd:e4:12:ba:54:00:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Apr 26 06:45:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49bbc89b5482551d77fbaffc9809d28d6b898b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ba:15:8c:7e:52:4c:71:16:5f:e9:79:ac:14:
f3:e3:5b:7f:bf:49:13:92:b5:73:c6:6a:fe:15:24:
8b:cb:51:3b:9d:11:15:fe:80:82:4d:09:e4:ea:4d:
e0:df:b4:c5:69:8d:58:e7:47:ee:f5:8a:80:3c:9e:
45:9c:87:75:f9:47:61:f7:10:a8:3c:4e:ba:ba:40:
74:a9:4e:ad:22:aa:07:aa:06:53:00:31:69:b2:92:
88:4d:21:cf:94:f4:c8:0f:3a:36:97:36:d8:9a:d2:
90:35:7c:3c:f1:d9:21:cc:ff:13:b4:5b:24:c9:60:
a6:dc:21:02:aa:29:aa:b0:ef:42:7b:d8:93:42:30:
2a:63:c9:ff:f8:af:5b:b2:af:7b:50:94:04:cf:76:
4d:f4:a1:f8:c0:e9:3f:eb:c5:16:ad:d9:78:c3:17:
4d:38:47:ca:f1:bc:cb:ee:c4:52:53:22:2f:0e:48:
b7:f2:b4:e5:37:cd:65:5f:10:be:85:b2:08:b2:6a:
05:08:9a:ca:61:27:e5:42:3e:6e:f2:3a:f4:f3:78:
83:af:23:e7:12:43:d4:8f:be:23:9b:e4:fb:17:93:
21:1d:b2:46:97:22:40:8e:eb:06:72:41:37:de:25:
22:25:ab:54:a4:90:5e:16:36:1f:da:c8:8f:c5:4f:
db:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BB:C8:9B:54:82:55:1D:77:FB:AF:FC:98:09:D2:8D:6B:89:8B:00
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SbvIm1SCVR13-6_8mAnSjWuJiwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.208.0/22
45.150.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:ca:ab:f8:e7:3d:34:3a:a5:e9:6c:12:49:a8:59:f4:e2:2f:
ac:0d:c2:fd:01:3f:03:a4:3f:22:ec:ec:60:70:45:48:e2:86:
40:b5:af:bc:e8:4d:d3:0a:f1:16:0b:49:80:55:49:a4:f3:48:
39:2c:02:71:93:ee:94:ec:37:26:63:5f:f9:d7:55:6c:d3:90:
48:b5:d4:7a:a2:d7:fd:b4:0d:fc:d6:fc:28:05:50:71:a4:6b:
cb:60:e7:ca:c1:fe:f3:e0:d5:88:a7:e5:1f:00:55:85:92:ca:
48:1d:e7:51:59:21:a3:7a:ad:b4:ec:b1:b5:47:c8:60:eb:61:
ca:83:95:cf:ff:be:7b:b6:b4:ca:0c:8f:86:24:73:a0:4f:a1:
24:52:c2:5e:5e:d6:66:2e:65:57:d6:c9:b2:17:0c:47:d8:3a:
d1:9f:c0:7a:0d:9c:aa:d6:a0:e3:77:8e:2e:b8:7a:08:58:5c:
2c:9c:9a:6b:a8:49:de:1f:9f:dc:12:5c:9e:1f:a7:52:2b:aa:
aa:d7:6f:af:8c:47:81:b9:72:58:0c:15:7e:09:03:19:ef:f4:
4b:82:eb:83:81:c5:52:61:37:cc:b5:23:02:d8:b8:b9:15:ee:
c8:8b:df:25:92:2a:91:39:f6:7b:7a:47:b2:df:9b:db:ce:c4:
e2:47:4a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 09:39:32 2024 by rpki-client on console-fra.rpki-client.org