Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/B0_jzQpy0p2Irmxi5lPsZdEWQ4o.roa
File: B0_jzQpy0p2Irmxi5lPsZdEWQ4o.roa (raw, json)
Hash identifier: WShLqvsfxPQH3KSvwO9ErkQQ/MD9nfaKFv4tk0s4J1s=
Subject key identifier: 07:4F:E3:CD:0A:72:D2:9D:88:AE:6C:62:E6:53:EC:65:D1:16:43:8A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018CC26D22F4256589F9645414D057BAF1B0
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/B0_jzQpy0p2Irmxi5lPsZdEWQ4o.roa
Signing time: Mon 01 Jan 2024 00:29:41 +0000
ROA not before: Mon 01 Jan 2024 00:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41378
IP address blocks: 185.145.244.0/24 maxlen: 24
45.9.8.0/24 maxlen: 24
45.9.8.0/22 maxlen: 24
45.9.9.0/24 maxlen: 24
45.9.10.0/24 maxlen: 24
45.9.11.0/24 maxlen: 24
2a0e:aa00:100::/44 maxlen: 48
2a0e:aa00:300::/44 maxlen: 48
2a0e:aa00:200::/44 maxlen: 48
2a0e:aa00:120::/44 maxlen: 48
2a0e:aa00:220::/44 maxlen: 48
2a0e:aa00:140::/44 maxlen: 48
2a0e:aa02::/32 maxlen: 48
2a0e:aa00:110::/44 maxlen: 48
2a0e:aa00:310::/44 maxlen: 48
2a0e:aa00:210::/44 maxlen: 48
2a0e:aa00:130::/44 maxlen: 48
2a0e:aa00:230::/44 maxlen: 48
2a0e:aa00:aa00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:22:f4:25:65:89:f9:64:54:14:d0:57:ba:f1:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 00:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=074fe3cd0a72d29d88ae6c62e653ec65d116438a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:39:91:eb:74:5f:9a:ef:3d:8d:86:e3:07:7d:
ee:6a:3a:3c:71:df:be:bb:21:83:ca:80:52:b5:eb:
aa:75:c4:b7:48:65:55:ef:03:2e:75:6f:8d:2b:58:
9a:e7:c5:55:67:42:b1:f7:82:9e:96:fd:d0:d0:08:
ac:ea:c2:ab:47:ff:51:cf:d1:cc:2d:ca:12:0f:69:
f9:76:bc:c4:de:f2:41:e7:fe:9a:5e:67:17:64:f7:
f2:6c:f1:08:61:24:1c:f3:f1:03:3f:73:a7:1d:3e:
86:2e:f0:57:52:82:cd:c0:e7:ef:22:17:10:f0:07:
69:31:20:e7:51:1c:05:59:0b:99:77:7f:ad:9b:d1:
1f:74:b0:17:1a:fd:d1:b4:4a:52:bf:0b:63:be:d8:
3f:c6:14:e8:2e:65:6c:09:ed:85:71:dd:79:50:21:
96:32:ae:43:39:3e:1a:b2:80:07:cf:1b:1d:f2:0f:
f9:42:41:25:4f:7e:42:c4:63:f9:56:01:54:7b:4f:
56:39:12:bc:c7:d7:07:4d:b1:ef:85:0d:7a:6d:8c:
5c:d5:9b:7b:00:ad:65:80:ed:b1:75:be:e2:e9:ea:
89:86:3c:f3:73:db:d0:e1:f4:fd:46:99:dc:8c:3e:
2b:71:0d:58:bb:96:7c:1a:7d:25:b8:29:8c:96:3e:
6a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4F:E3:CD:0A:72:D2:9D:88:AE:6C:62:E6:53:EC:65:D1:16:43:8A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/B0_jzQpy0p2Irmxi5lPsZdEWQ4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.8.0/22
185.145.244.0/24
IPv6:
2a0e:aa00:100::-2a0e:aa00:14f:ffff:ffff:ffff:ffff:ffff
2a0e:aa00:200::/42
2a0e:aa00:300::/43
2a0e:aa00:aa00::/40
2a0e:aa02::/32
Signature Algorithm: sha256WithRSAEncryption
61:45:1f:36:fe:dc:3f:c3:e0:71:c3:77:17:e4:ad:7b:8b:77:
7e:d8:b9:8a:4a:aa:d0:d5:34:02:1d:42:fd:d7:bb:18:ff:61:
5a:62:7b:15:52:d8:95:12:6e:b1:f1:0f:f9:4f:f1:a6:ff:d1:
d7:6e:be:7f:0f:6e:c4:ac:38:26:4f:68:c9:13:1c:37:26:a6:
d8:6e:62:e4:00:1a:ec:5d:1b:ea:f6:c2:ff:57:0a:18:c6:4e:
a5:c0:6e:09:dd:15:37:af:a7:88:e3:f0:3a:36:93:38:39:68:
6e:82:0c:d4:61:34:97:3c:57:33:1a:51:0b:81:a3:55:d3:2a:
76:4a:2b:13:eb:d0:ef:69:bc:b3:a8:0f:fa:6e:1d:77:ec:c6:
f2:a6:90:04:70:c1:1d:83:47:cf:5e:7d:be:e5:08:1f:ce:3b:
68:97:8e:d2:2c:75:17:47:41:9d:bd:1e:5a:c7:64:b8:4d:4c:
d2:b8:c8:56:88:97:69:26:b9:af:3d:47:43:a3:b4:62:be:5d:
9c:f2:ea:bd:48:e7:15:e1:b4:99:43:d1:25:70:f1:f2:14:9d:
5b:ac:1c:87:e6:28:07:a9:b3:b2:1e:a5:e7:b7:87:4a:1f:3e:
45:c0:d3:dc:35:9f:4e:f1:43:f3:1c:24:29:00:52:aa:17:d7:
70:b4:a8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:53:14 2024 by rpki-client on console-ams.rpki-client.org