Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/1-7vFeTyNXZ0VBcmBb37x2KSHniI.roa
File: 1-7vFeTyNXZ0VBcmBb37x2KSHniI.roa (raw, json)
Hash identifier: TGhNhzF/g9wjCyMFQuT4RrUWAtLpyP9JWwqY8z2pm0A=
Subject key identifier: FB:BB:C5:79:3C:8D:5D:9D:15:05:C9:81:6F:7E:F1:D8:A4:87:9E:22
Certificate issuer: /CN=9b32a2e8fcbeee63020ba93daab9076c37bc9991
Certificate serial: 018CC64A6130CD2F4D0EC92932199FFBD31A
Authority key identifier: 9B:32:A2:E8:FC:BE:EE:63:02:0B:A9:3D:AA:B9:07:6C:37:BC:99:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzKi6Py-7mMCC6k9qrkHbDe8mZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/1-7vFeTyNXZ0VBcmBb37x2KSHniI.roa
Signing time: Mon 01 Jan 2024 18:30:12 +0000
ROA not before: Mon 01 Jan 2024 18:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39074
IP address blocks: 45.15.202.0/24 maxlen: 24
45.15.203.0/24 maxlen: 24
45.15.200.0/24 maxlen: 24
45.15.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/mzKi6Py-7mMCC6k9qrkHbDe8mZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/mzKi6Py-7mMCC6k9qrkHbDe8mZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mzKi6Py-7mMCC6k9qrkHbDe8mZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:61:30:cd:2f:4d:0e:c9:29:32:19:9f:fb:d3:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b32a2e8fcbeee63020ba93daab9076c37bc9991
Validity
Not Before: Jan 1 18:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbbbc5793c8d5d9d1505c9816f7ef1d8a4879e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:d0:a7:8e:06:d8:ff:29:b8:64:50:da:9c:
74:2e:25:37:09:6a:71:ee:a4:06:12:4a:9e:55:eb:
18:9e:4b:21:45:81:b4:ee:66:fb:96:43:c6:d0:8c:
38:7f:f5:5f:87:9c:12:f8:6a:00:ae:74:dd:6c:c2:
a2:50:0f:e1:ec:65:d1:15:b5:2c:5e:fe:6c:c2:c0:
8c:ea:e7:b6:fb:7b:13:ff:d9:60:fb:d7:ce:27:ab:
87:16:46:bf:24:f2:cf:0c:e1:2a:4e:50:de:aa:20:
5e:b8:b5:47:97:ce:f6:f9:7b:1e:ab:8f:dc:22:76:
37:e1:5d:2c:b5:ee:d6:86:2a:2d:66:bc:1b:87:db:
14:85:5b:1d:22:cc:e8:b4:7c:b5:02:7d:ee:5f:58:
42:93:4b:da:28:fd:28:ee:1a:3a:bb:bb:eb:f3:7b:
4e:80:6f:8c:5b:1a:63:fe:2e:47:28:d2:cd:2f:b3:
fb:99:1b:6c:df:33:63:27:f5:17:23:f2:f5:c7:29:
b2:cb:59:cf:db:e2:8c:6e:0b:9a:3c:de:e2:ea:f0:
1e:f9:4a:27:0e:bf:cc:4d:7d:f3:f2:50:b3:7c:41:
4c:7a:b8:ef:be:cc:b2:55:e1:8e:f3:9d:df:da:04:
f1:68:47:ca:d3:c8:92:73:36:8a:24:e0:93:a4:b7:
33:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BB:C5:79:3C:8D:5D:9D:15:05:C9:81:6F:7E:F1:D8:A4:87:9E:22
X509v3 Authority Key Identifier:
keyid:9B:32:A2:E8:FC:BE:EE:63:02:0B:A9:3D:AA:B9:07:6C:37:BC:99:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzKi6Py-7mMCC6k9qrkHbDe8mZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/1-7vFeTyNXZ0VBcmBb37x2KSHniI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/mzKi6Py-7mMCC6k9qrkHbDe8mZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.200.0/22
Signature Algorithm: sha256WithRSAEncryption
85:80:cd:ad:8f:76:d8:3b:5b:4b:86:44:2a:05:88:64:22:fc:
7c:51:1d:53:ff:24:ca:73:3f:93:21:54:95:59:fd:8c:70:8a:
35:ec:6b:20:10:1e:00:e9:9a:46:45:20:70:cd:3f:16:71:40:
89:12:f7:4e:54:9a:9d:be:e9:cd:7d:7a:ac:c5:45:ad:6c:99:
86:4d:0c:a8:a0:54:60:7a:f0:9e:42:cc:11:4e:16:8a:71:50:
0c:fb:71:dc:69:c3:34:a3:89:df:51:2a:40:53:b5:8f:cd:f1:
79:4d:1e:94:2c:e5:a3:a5:0c:64:de:83:1b:e1:d3:37:62:7f:
83:bf:f5:1d:a5:93:ab:99:d0:95:3b:68:36:b4:3b:18:62:a1:
4c:3c:b7:7f:f5:2c:23:b7:5b:9a:f2:86:3f:b2:35:bc:fa:9f:
e3:57:79:fd:6d:ac:26:b0:32:f3:67:f0:c0:56:7e:83:d0:d6:
47:c2:b3:53:df:b4:b5:a2:06:d2:0c:18:e9:33:f1:63:22:76:
b1:e1:26:8f:2a:35:72:46:1b:b2:ab:22:d4:30:16:5c:a7:83:
1d:3c:3e:9a:44:8b:31:f6:fb:e4:a1:c2:6d:29:02:09:39:ab:
37:dd:78:e7:11:20:3f:2e:6b:1a:f1:a9:c6:53:be:18:7b:72:
46:67:10:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 07:08:59 2024 by rpki-client on console-fra.rpki-client.org