Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/1zhcsv4EIUrEH1QoC-WRlyRDBHk.roa
File: 1zhcsv4EIUrEH1QoC-WRlyRDBHk.roa (raw, json)
Hash identifier: vPDAh8exDW3aNS35XVgkysCYwjQuBNJtKIXdssE8/t8=
Subject key identifier: D7:38:5C:B2:FE:04:21:4A:C4:1F:54:28:0B:E5:91:97:24:43:04:79
Certificate issuer: /CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Certificate serial: 018F39E9863EC52C18DEB1B751785BE0818E
Authority key identifier: DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/1zhcsv4EIUrEH1QoC-WRlyRDBHk.roa
Signing time: Thu 02 May 2024 15:25:56 +0000
ROA not before: Thu 02 May 2024 15:25:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28756
IP address blocks: 145.64.128.0/21 maxlen: 21
145.64.128.0/22 maxlen: 22
145.64.130.0/24 maxlen: 24
145.64.132.0/22 maxlen: 22
145.64.132.0/23 maxlen: 23
145.64.134.0/24 maxlen: 24
145.64.144.0/20 maxlen: 20
145.64.144.0/23 maxlen: 23
145.64.146.0/24 maxlen: 24
145.64.148.0/24 maxlen: 24
145.64.149.0/24 maxlen: 24
145.64.157.0/24 maxlen: 24
145.64.158.0/24 maxlen: 24
145.64.159.0/24 maxlen: 24
145.64.160.0/20 maxlen: 20
145.64.160.0/24 maxlen: 24
145.64.161.0/24 maxlen: 24
145.64.162.0/24 maxlen: 24
145.64.170.0/24 maxlen: 24
145.64.240.0/21 maxlen: 21
145.64.242.0/24 maxlen: 24
145.64.245.0/24 maxlen: 24
145.64.248.0/21 maxlen: 21
145.64.248.0/22 maxlen: 22
145.64.250.0/24 maxlen: 24
145.64.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:39:e9:86:3e:c5:2c:18:de:b1:b7:51:78:5b:e0:81:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Validity
Not Before: May 2 15:25:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7385cb2fe04214ac41f54280be5919724430479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:18:ce:cb:42:16:a3:c0:1a:d0:d1:9f:a6:50:
b1:82:a8:db:f0:9a:67:d2:cc:d1:8b:c1:35:48:a5:
03:8a:68:4b:93:25:24:bc:34:5f:dd:eb:58:cb:c6:
c5:26:ae:df:e8:54:43:9c:8a:37:19:12:88:43:23:
ef:0e:9b:75:03:db:ee:22:ec:f3:88:2e:43:44:7f:
b8:08:9a:d0:ce:ba:2d:12:e4:a4:5e:8a:da:82:b1:
c2:1d:7d:57:59:f9:fb:44:58:81:73:6f:73:3d:ac:
34:8c:a9:5c:2d:47:e9:2a:70:3f:f0:1d:39:91:2e:
cb:46:9c:ee:47:e8:ef:85:c1:e9:4e:ec:16:f7:bb:
7d:89:29:65:2e:44:af:d7:63:22:46:6b:1b:dd:7b:
ca:4e:38:ad:d0:d5:ab:24:63:31:6e:53:43:96:47:
7c:a7:ec:b9:13:6b:43:c8:42:83:82:bf:5f:6d:39:
c8:39:d3:42:b7:dd:7e:94:5e:33:ea:a2:3a:66:ff:
e7:b3:c1:a7:8b:92:f2:a0:86:33:d7:7c:6c:81:94:
f8:ec:5f:29:10:cb:bd:a0:64:4d:9c:4e:0a:6f:02:
5d:53:f9:09:a1:86:66:46:b9:17:9b:c5:2a:87:a2:
1c:17:57:bf:83:62:4f:a2:82:d0:de:93:78:e8:c7:
59:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:38:5C:B2:FE:04:21:4A:C4:1F:54:28:0B:E5:91:97:24:43:04:79
X509v3 Authority Key Identifier:
keyid:DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/1zhcsv4EIUrEH1QoC-WRlyRDBHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.64.128.0/21
145.64.144.0-145.64.175.255
145.64.240.0/20
Signature Algorithm: sha256WithRSAEncryption
15:5e:63:0b:18:7f:3a:c7:73:6c:34:6f:70:35:02:01:63:99:
f6:a5:28:27:97:53:f9:2b:85:1c:d5:01:6b:c8:2a:b7:00:dd:
4a:ec:0d:f4:ab:97:91:95:a6:0b:91:11:25:2d:85:39:43:20:
67:a7:bc:0c:37:60:38:a5:a0:ba:38:90:7b:35:5f:03:93:83:
da:af:f4:36:a1:7c:38:38:f9:0c:f6:3c:a9:8a:f6:f6:14:66:
23:42:53:f0:80:44:f6:99:2f:96:7d:a2:a3:0d:8c:89:39:a8:
64:f8:01:80:9a:71:90:e3:d6:22:77:44:19:50:7c:90:18:77:
35:8f:10:70:5e:88:4b:35:81:78:ab:65:2e:a0:6f:30:1a:e8:
3e:ba:0e:7f:80:8f:b2:db:d2:5f:7c:f6:f6:ef:b9:90:9a:f1:
24:d0:f3:ff:5c:10:71:8e:4c:f2:7f:95:ee:2b:5c:80:46:14:
f8:eb:fa:77:05:ea:0c:46:cc:7c:fd:b7:87:35:a2:15:20:91:
bd:91:09:ff:94:ee:9e:a5:ca:28:e9:f0:d3:f9:dc:dc:70:57:
be:f6:ee:53:bc:f1:96:2c:1b:40:ab:ac:52:c3:c8:c8:38:e6:
09:54:4e:8f:52:f3:72:5f:73:1e:c0:3f:35:1e:a3:ea:47:4f:
4b:98:06:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 23:35:01 2024 by rpki-client on console-ams.rpki-client.org