Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/w4AVYBGR4pPB7nRzkHD5qDXAJ2w.roa
File: w4AVYBGR4pPB7nRzkHD5qDXAJ2w.roa (raw, json)
Hash identifier: nNah6v0gbGgj8O43FShOP7STTI6Ix2Pk/iZB5WIiaKA=
Subject key identifier: C3:80:15:60:11:91:E2:93:C1:EE:74:73:90:70:F9:A8:35:C0:27:6C
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 018CC349575848903F868243D0F7F3820B48
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/w4AVYBGR4pPB7nRzkHD5qDXAJ2w.roa
Signing time: Mon 01 Jan 2024 04:30:12 +0000
ROA not before: Mon 01 Jan 2024 04:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51295
IP address blocks: 185.165.184.0/22 maxlen: 22
185.179.156.0/22 maxlen: 22
185.248.196.0/22 maxlen: 22
194.165.26.0/24 maxlen: 24
45.153.91.0/24 maxlen: 24
45.153.88.0/24 maxlen: 24
2a0a:8880:1::/48 maxlen: 48
2a0a:8880:2::/48 maxlen: 48
2a0a:8880:aaaa::/48 maxlen: 48
2a0f:4440:aaaa::/48 maxlen: 48
2a0f:4440:abcd::/48 maxlen: 48
2a0a:8880::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:57:58:48:90:3f:86:82:43:d0:f7:f3:82:0b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Jan 1 04:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c38015601191e293c1ee74739070f9a835c0276c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:4d:b0:04:9e:0c:19:cc:97:a1:3d:b8:53:
49:ce:8c:b8:8b:c8:9a:53:6d:69:59:5b:0c:86:0e:
3f:ae:16:52:94:02:69:0f:60:b9:08:f8:6f:5b:06:
89:a5:69:b5:dc:8e:ee:d5:fe:d6:79:40:a3:ee:ce:
74:90:b7:b9:dd:99:79:7b:b5:23:f0:07:18:a0:1d:
04:f3:33:00:1b:3d:bf:39:0d:23:25:a7:06:1e:dc:
d7:e4:2f:36:a0:11:e6:ec:27:b0:a3:d7:26:76:81:
09:f8:d6:c8:c1:2e:04:c3:f2:f9:10:f1:dd:2a:ed:
b1:f6:18:ae:75:eb:a5:05:e9:ab:19:80:27:d8:85:
ea:32:83:ec:88:8c:54:f6:e1:11:f2:5b:3d:ff:15:
8b:85:90:67:c0:e6:dd:07:30:13:5c:05:90:58:bd:
7c:fd:53:ed:8e:d2:44:4a:ff:d5:4d:ea:13:e8:cf:
5c:6d:90:50:e1:7c:bc:84:ee:45:51:5a:b6:0e:53:
67:0f:a8:dc:99:b1:6a:98:ef:86:65:86:02:b0:68:
40:15:3e:b1:96:06:61:d9:a3:19:fa:94:b5:96:c3:
6a:0b:16:5b:65:55:8b:de:2d:e8:3e:32:45:9c:c6:
06:c6:6e:4b:a6:a1:6e:e2:68:90:ed:c5:a9:af:70:
41:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:80:15:60:11:91:E2:93:C1:EE:74:73:90:70:F9:A8:35:C0:27:6C
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/w4AVYBGR4pPB7nRzkHD5qDXAJ2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.88.0/24
45.153.91.0/24
185.165.184.0/22
185.179.156.0/22
185.248.196.0/22
194.165.26.0/24
IPv6:
2a0a:8880::-2a0a:8880:2:ffff:ffff:ffff:ffff:ffff
2a0a:8880:aaaa::/48
2a0f:4440:aaaa::/48
2a0f:4440:abcd::/48
Signature Algorithm: sha256WithRSAEncryption
7e:98:38:4b:d8:f8:61:fc:07:55:0a:6d:31:87:0e:be:72:dc:
c8:a8:35:a8:ac:a7:39:43:70:a2:0a:c2:d2:a5:f6:6d:30:67:
f3:53:69:86:97:a9:5d:7b:fb:0c:a8:7d:4b:12:dc:e2:db:19:
b6:50:62:f6:4a:6d:86:d2:ac:08:e0:c4:03:8a:4d:72:ef:73:
bd:9c:70:43:ec:a0:1b:d3:50:74:21:6e:91:66:bc:cb:8a:7a:
b2:b2:98:57:99:cb:64:3f:50:68:19:3c:f5:3a:ec:d6:aa:44:
c4:0a:a2:0f:a4:26:fa:04:4e:d5:15:8a:2e:0a:bd:37:c4:5c:
12:cf:8d:a7:81:33:23:d5:dd:71:61:97:94:d3:51:fb:03:e7:
0e:a4:be:8d:5e:39:3d:df:9b:61:4d:f8:43:b7:7d:47:08:ae:
ba:28:87:b4:4c:d3:48:cd:71:4d:67:47:6f:64:fa:51:ca:e4:
3d:16:5a:b1:d2:dd:93:f3:e0:b8:b7:f1:5b:36:35:5b:36:77:
b4:85:cf:72:7d:29:6f:e5:c2:3a:20:0f:28:72:17:32:33:4a:
90:18:9a:de:06:d9:89:25:b4:7b:bf:f2:ca:e3:0f:9f:a2:55:
52:5b:07:cc:2f:42:51:55:d6:cf:7f:75:0c:b8:cd:5e:6e:41:
c2:22:97:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 14:57:18 2024 by rpki-client on console-ams.rpki-client.org