Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/Re3_6e2kXQcOztU83Mu58u36N0M.roa
File: Re3_6e2kXQcOztU83Mu58u36N0M.roa (raw, json)
Hash identifier: Bni55NI1We9WDXlHbBdGq1d2B4hSApmnYsrC1TuwHUs=
Subject key identifier: 45:ED:FF:E9:ED:A4:5D:07:0E:CE:D5:3C:DC:CB:B9:F2:ED:FA:37:43
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018CC9BCA7BC9878392EE91FE1D1D74AF70A
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/Re3_6e2kXQcOztU83Mu58u36N0M.roa
Signing time: Tue 02 Jan 2024 10:33:53 +0000
ROA not before: Tue 02 Jan 2024 10:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21286
IP address blocks: 145.15.96.0/22 maxlen: 22
145.15.92.0/22 maxlen: 22
145.15.0.0/22 maxlen: 22
145.15.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a7:bc:98:78:39:2e:e9:1f:e1:d1:d7:4a:f7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 10:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45edffe9eda45d070eced53cdccbb9f2edfa3743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c0:0a:96:41:32:a0:78:8a:e5:08:92:7b:74:
cb:38:57:96:2b:87:02:61:c0:12:58:c8:c9:7b:56:
ab:cd:e0:34:99:a8:33:72:f5:d8:52:c2:d6:e6:c2:
4f:f3:7c:b5:41:e2:ab:65:d7:97:81:88:98:67:ca:
9c:15:47:d3:88:f7:44:20:43:d9:3d:2d:b8:62:56:
e0:03:65:86:fb:4a:05:27:b4:1b:aa:a2:28:40:d5:
e7:d6:1b:ac:ab:3d:2b:3e:03:e4:d0:45:3f:43:3c:
d6:0f:21:a0:34:5f:f7:9a:75:af:bd:b0:60:c1:8b:
fd:3e:09:bc:4d:88:0f:10:38:a3:9c:cb:90:9a:90:
12:89:d1:3c:12:33:da:90:90:d2:7e:7b:2c:65:d2:
d6:b6:e2:a4:a6:52:e1:45:c2:09:5e:7b:e3:be:d6:
0e:15:e8:15:db:a2:9b:43:25:76:0a:7e:55:59:4f:
f7:ab:6d:5e:8c:f8:0b:65:39:a2:22:4e:2b:51:d4:
58:04:b1:b0:1f:22:d5:60:ff:0c:42:5f:c0:79:81:
5e:40:7a:8f:8b:ea:80:f2:86:49:c9:b2:9a:e3:45:
68:36:e6:7b:c1:56:c5:94:26:c5:e7:07:6e:75:0a:
be:fc:e9:66:b9:b8:95:5a:44:46:80:6d:cc:3e:83:
ab:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:ED:FF:E9:ED:A4:5D:07:0E:CE:D5:3C:DC:CB:B9:F2:ED:FA:37:43
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/Re3_6e2kXQcOztU83Mu58u36N0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.15.0.0/22
145.15.90.0/24
145.15.92.0-145.15.99.255
Signature Algorithm: sha256WithRSAEncryption
1c:c6:a5:07:2b:45:f2:0f:a2:e5:b2:40:a6:b9:31:be:36:e6:
61:f1:eb:36:24:f2:1a:a9:03:81:94:d4:af:10:e6:d5:f0:e2:
8e:c3:85:bf:c1:75:83:2a:3c:f6:70:cc:0f:89:30:3c:ba:b8:
ee:7f:52:ca:38:45:f7:88:9e:7b:80:19:a2:f2:33:e2:e6:a1:
19:39:d2:53:b9:59:b5:10:39:ec:8c:37:e6:18:8a:f9:af:57:
26:2e:9d:d9:cb:ec:b4:57:fa:a9:63:41:d9:7f:e1:b0:79:92:
73:2c:d1:4a:8a:bb:2a:15:e4:1b:24:ea:58:d3:13:33:ff:c8:
1d:86:b8:02:ac:a0:ca:6a:67:e8:b4:10:01:21:56:9a:2b:d3:
ea:43:9e:af:52:c8:b7:72:be:cb:33:89:f9:f3:ca:12:83:6c:
f3:e0:b1:34:69:2d:7e:3a:3b:f7:dd:93:bc:d2:ad:55:3d:d2:
37:a8:1f:5a:b3:f0:28:9a:d1:d5:54:d4:3e:07:50:c8:cc:e5:
e5:c4:88:b0:a6:6c:18:ab:03:cd:c6:f7:dd:f1:7c:88:ab:d8:
e3:76:af:87:32:4a:f9:8a:d4:f9:a0:95:13:59:32:33:66:dd:
e5:aa:cb:75:6f:eb:0a:2d:d3:ac:1c:4b:9c:11:1b:e7:e5:8f:
ab:75:6c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:48:10 2024 by rpki-client on console-fra.rpki-client.org