Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/3igjgixQj1hN_drzL1VL9ymZmeE.roa
File: 3igjgixQj1hN_drzL1VL9ymZmeE.roa (raw, json)
Hash identifier: K5NZcBSt9gkBC4xnF/tpianNiun9+7gEXM3OpqIUCZI=
Subject key identifier: DE:28:23:82:2C:50:8F:58:4D:FD:DA:F3:2F:55:4B:F7:29:99:99:E1
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018CC9BCAA288658BAB6129332F606D8A1F8
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/3igjgixQj1hN_drzL1VL9ymZmeE.roa
Signing time: Tue 02 Jan 2024 10:33:53 +0000
ROA not before: Tue 02 Jan 2024 10:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203952
IP address blocks: 145.15.112.0/24 maxlen: 24
145.15.113.0/24 maxlen: 24
145.15.41.0/24 maxlen: 24
145.15.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 12:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:aa:28:86:58:ba:b6:12:93:32:f6:06:d8:a1:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 10:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de2823822c508f584dfddaf32f554bf7299999e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:cf:db:42:c9:40:1a:c0:21:e1:9b:d2:0a:
ad:8a:1b:f7:4a:d9:1b:45:a2:da:ca:49:37:24:b9:
f6:63:fc:d0:a4:dd:b3:45:a2:65:fb:28:50:a3:c1:
40:bd:8d:c8:0a:7e:1d:a8:2d:2c:d8:7a:37:93:02:
af:54:95:6a:7d:61:cb:ca:fe:dc:08:cf:8a:ed:c0:
e6:a1:44:32:4e:8e:82:65:8e:78:b5:ba:58:3e:31:
fb:ae:4c:fe:45:71:56:7c:6f:29:4e:32:70:64:00:
d6:ae:aa:7b:47:72:f7:74:68:e7:5d:47:f4:20:e9:
fd:4d:fa:d9:22:b3:d2:2c:12:4c:3e:4d:34:06:9d:
a2:59:99:1c:55:ec:82:cc:ee:9d:8f:f3:23:33:f7:
44:3f:7b:fd:6c:eb:c8:13:6f:4e:6f:67:a4:07:7e:
f8:b7:e3:a2:c9:4f:e3:92:f3:7b:92:d4:53:07:da:
3a:48:d7:d3:74:ff:e8:fc:b3:6f:bc:88:08:14:37:
c5:92:b9:a4:2f:e2:1d:75:91:82:3d:ef:7d:8e:72:
dc:63:d3:a2:39:a2:7b:55:d8:e7:65:3a:59:29:29:
44:0b:c1:61:6d:e5:bb:de:83:0d:6e:1f:b0:af:17:
61:6d:1b:d1:1f:a6:72:c9:1b:9b:8c:6a:1d:83:2d:
b1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:28:23:82:2C:50:8F:58:4D:FD:DA:F3:2F:55:4B:F7:29:99:99:E1
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/3igjgixQj1hN_drzL1VL9ymZmeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.15.40.0/23
145.15.112.0/23
Signature Algorithm: sha256WithRSAEncryption
73:bf:9e:98:64:97:b0:a6:82:26:60:a5:78:43:b0:3e:fb:14:
94:68:2b:b9:ce:a2:03:a5:05:dd:2a:e2:40:a4:30:98:f2:78:
2d:87:71:d7:28:92:db:51:c7:df:08:b1:95:b7:aa:fa:c8:92:
d8:51:d0:83:fb:8b:39:6c:f1:7e:a3:37:7f:b4:4b:6a:fa:59:
29:ea:19:8f:de:6c:4f:73:a4:36:28:35:3b:13:a0:fd:60:84:
01:f8:7c:6f:58:c6:1c:80:b7:91:21:b3:93:1e:74:76:5e:1d:
01:01:ee:e4:58:72:8c:12:ad:50:59:b3:ba:66:64:10:b5:c4:
97:0c:73:88:1b:3a:66:61:10:23:8e:0b:7d:1f:1b:56:9a:42:
ac:32:a7:19:ec:7b:3a:3e:7f:a0:57:26:d1:42:c6:05:59:64:
1f:c5:10:25:ad:0c:b4:d3:30:bf:ee:84:2b:9f:3a:0c:a6:7d:
a0:2f:83:32:0b:b0:c1:a1:45:16:7a:ad:2d:fe:e1:e2:e8:c0:
97:1e:97:d3:b2:b5:18:65:d1:e8:c3:9c:59:5e:e2:cb:7c:96:
25:ff:a1:19:ef:4a:f2:41:26:66:c8:d8:78:3a:0b:3d:06:9d:
52:bf:4d:3d:98:88:1b:bc:2c:9e:95:32:ec:ee:01:44:d0:7c:
d6:69:ee:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:33:08 2024 by rpki-client on console-ams.rpki-client.org