Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/j0Y4nfXE0_T2SX7EN3vH_Q4CQtc.roa
File: j0Y4nfXE0_T2SX7EN3vH_Q4CQtc.roa (raw, json)
Hash identifier: MjTanxgwmRAT+IUPBdXHv47hoWvusHlK+VB7Jl6dAAw=
Subject key identifier: 8F:46:38:9D:F5:C4:D3:F4:F6:49:7E:C4:37:7B:C7:FD:0E:02:42:D7
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018CC7946291A69ECC991DFAAAFEEDC75F85
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/j0Y4nfXE0_T2SX7EN3vH_Q4CQtc.roa
Signing time: Tue 02 Jan 2024 00:30:39 +0000
ROA not before: Tue 02 Jan 2024 00:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35830
IP address blocks: 212.119.40.0/23 maxlen: 23
45.80.106.0/23 maxlen: 23
45.140.204.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:62:91:a6:9e:cc:99:1d:fa:aa:fe:ed:c7:5f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 2 00:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f46389df5c4d3f4f6497ec4377bc7fd0e0242d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:90:e3:06:98:30:3d:ea:e1:f9:3e:62:e4:2b:
e8:80:6c:19:31:aa:71:0c:bb:c8:19:4e:74:7c:01:
91:2e:af:80:b8:91:26:4e:d9:b1:81:2f:38:b1:92:
f1:21:15:d5:d0:8b:98:c4:5f:d5:1e:ef:6c:a5:c0:
3f:9b:a3:01:1d:cc:ca:26:f8:20:33:e9:61:a3:f7:
f7:c9:a4:ef:21:24:4d:50:31:d6:be:ce:ec:4d:5e:
6e:91:44:e8:d8:60:59:c7:a2:e6:f6:be:4c:48:4a:
b3:90:c4:95:3d:d8:c5:5e:bd:03:e5:66:c3:f9:ff:
94:c8:c2:9e:67:02:f9:07:00:67:7c:4a:19:40:a5:
46:cd:75:5d:92:71:a3:4d:64:36:ad:bb:7b:d4:a0:
a6:20:4f:ec:7b:7c:03:37:2c:30:d0:a1:fd:c5:1d:
41:b1:31:5b:1b:f8:cf:ac:9c:1e:ab:4e:ce:84:81:
dc:f2:53:2b:ee:a3:d5:75:20:e9:d0:02:f5:be:fe:
1a:0b:32:fc:be:75:2a:1e:4b:4d:c9:cb:8b:19:38:
72:c9:cb:59:0a:d7:19:37:ca:e2:48:cf:7d:0e:ee:
fa:33:e7:68:9f:8b:9d:56:37:49:23:ea:5b:0a:98:
d1:54:05:06:44:10:f1:2d:94:e6:00:f9:99:47:a3:
bd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:46:38:9D:F5:C4:D3:F4:F6:49:7E:C4:37:7B:C7:FD:0E:02:42:D7
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/j0Y4nfXE0_T2SX7EN3vH_Q4CQtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.106.0/23
45.140.204.0/23
212.119.40.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:2c:a6:be:79:61:2e:1e:65:f1:d0:5f:32:33:46:56:a2:02:
03:aa:a3:df:f4:5a:4e:87:66:f1:0a:46:7b:e4:46:c2:0b:fb:
2e:b7:ee:78:81:03:b2:30:3b:ee:9c:20:1b:d8:4d:29:85:39:
a5:4f:09:eb:98:47:bb:17:b6:c0:8d:3d:46:bc:0c:a2:3b:ca:
9b:b4:25:7e:a6:2c:7e:f4:c6:7a:05:7a:29:f9:50:58:b3:b6:
8e:93:cf:cf:a5:78:9c:9b:13:91:ff:ec:20:38:64:29:c1:58:
ab:da:bf:69:91:51:5b:b3:e4:c0:65:6d:72:01:79:74:da:e9:
8e:67:bb:cc:64:2d:5a:ea:57:09:2f:a8:47:7a:41:ca:bc:01:
d1:57:72:ab:51:30:eb:a2:23:a1:ae:8d:82:f9:f5:6f:cd:b2:
cc:99:27:be:43:e5:6d:68:5a:52:f5:c0:47:ab:66:4e:45:35:
8d:af:c8:a4:7c:4a:e1:14:da:1b:cc:47:89:2b:b9:04:cd:0b:
2e:2b:7e:31:41:f4:ca:5d:53:88:5a:18:82:01:a5:26:04:6c:
c8:39:b4:19:d0:16:83:37:c9:da:b9:26:d9:c4:dc:f5:75:ff:
bd:e9:55:83:c9:f2:ac:13:5b:98:36:c5:09:17:3b:42:bb:68:
4b:d0:86:0d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:20 2024 by rpki-client on console-ams.rpki-client.org