Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/CBusiP3PtqT2_XgtRL8pQhgL16g.roa
File: CBusiP3PtqT2_XgtRL8pQhgL16g.roa (raw, json)
Hash identifier: zp9mVSLbq7jODlF14Iiq3xn6Z8iBHJSqgaL6D2PvAEE=
Subject key identifier: 08:1B:AC:88:FD:CF:B6:A4:F6:FD:78:2D:44:BF:29:42:18:0B:D7:A8
Certificate issuer: /CN=ee1b0899e38a96b54fc4cbcd10ef539c54ed4d38
Certificate serial: 018CC4932FAA2CA9CEE99EA49F83DCF5598B
Authority key identifier: EE:1B:08:99:E3:8A:96:B5:4F:C4:CB:CD:10:EF:53:9C:54:ED:4D:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hsImeOKlrVPxMvNEO9TnFTtTTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/CBusiP3PtqT2_XgtRL8pQhgL16g.roa
Signing time: Mon 01 Jan 2024 10:30:29 +0000
ROA not before: Mon 01 Jan 2024 10:30:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 90.155.112.0/24 maxlen: 24
90.155.113.0/24 maxlen: 24
90.155.114.0/24 maxlen: 24
90.155.115.0/24 maxlen: 24
90.155.116.0/24 maxlen: 24
90.155.117.0/24 maxlen: 24
90.155.118.0/24 maxlen: 24
90.155.119.0/24 maxlen: 24
90.155.120.0/24 maxlen: 24
90.155.121.0/24 maxlen: 24
90.155.122.0/24 maxlen: 24
90.155.123.0/24 maxlen: 24
90.155.124.0/24 maxlen: 24
90.155.125.0/24 maxlen: 24
90.155.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/7hsImeOKlrVPxMvNEO9TnFTtTTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/7hsImeOKlrVPxMvNEO9TnFTtTTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hsImeOKlrVPxMvNEO9TnFTtTTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:2f:aa:2c:a9:ce:e9:9e:a4:9f:83:dc:f5:59:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1b0899e38a96b54fc4cbcd10ef539c54ed4d38
Validity
Not Before: Jan 1 10:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=081bac88fdcfb6a4f6fd782d44bf2942180bd7a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:de:98:7b:94:9c:3a:32:16:ca:ee:86:e5:5b:
d5:4b:a5:4b:49:49:3f:94:50:7c:9f:40:cd:17:ad:
f1:85:d4:f3:5f:53:c7:97:e5:15:97:3c:63:ef:90:
5e:86:90:c5:39:50:82:cf:61:c1:ff:34:59:40:d8:
72:4a:9c:df:9c:d1:07:cc:64:73:5a:62:28:ff:22:
2d:80:86:3c:6d:1a:98:22:bb:1f:07:16:f5:97:b9:
40:aa:45:8a:99:65:c2:59:b1:65:b3:8e:04:33:39:
57:4d:c5:c0:9c:69:72:77:b7:51:65:10:0c:fc:7a:
19:fd:79:0a:03:dd:b8:eb:74:8c:12:2f:ef:d5:3e:
d9:a7:54:7e:9a:55:6c:96:0f:95:e8:9a:cf:e7:03:
d2:13:07:f9:f9:b1:12:8e:1b:36:cc:b8:d8:5b:e9:
25:ee:54:1a:6a:ee:10:9f:78:37:97:ba:6b:2d:c2:
22:c6:2b:66:58:24:db:a7:dc:6e:ec:b7:7f:a7:cf:
2f:b6:03:d9:53:d8:2c:de:05:0b:16:3f:54:b6:22:
62:5d:a3:2f:be:6a:79:84:d3:e0:ad:dc:0d:8f:6b:
69:ec:d7:12:1d:11:5a:cd:2c:e2:01:5c:6d:13:88:
65:df:96:cb:1c:8a:35:16:a4:86:db:c1:02:72:8c:
c5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1B:AC:88:FD:CF:B6:A4:F6:FD:78:2D:44:BF:29:42:18:0B:D7:A8
X509v3 Authority Key Identifier:
keyid:EE:1B:08:99:E3:8A:96:B5:4F:C4:CB:CD:10:EF:53:9C:54:ED:4D:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hsImeOKlrVPxMvNEO9TnFTtTTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/CBusiP3PtqT2_XgtRL8pQhgL16g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/7hsImeOKlrVPxMvNEO9TnFTtTTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.155.112.0-90.155.126.255
Signature Algorithm: sha256WithRSAEncryption
14:a6:fd:f4:0d:f8:6f:8d:f4:f9:b7:cf:22:2f:b7:2c:a3:a6:
d0:2e:a6:62:32:63:d6:80:0e:71:fb:40:ef:e3:fe:df:ca:70:
d0:67:b2:f9:82:64:4a:ed:e8:a7:18:37:23:14:b2:fe:ff:e8:
cd:ef:b6:15:d6:02:e9:59:e7:6f:08:07:77:6e:96:b9:46:b6:
c0:78:18:ec:78:cb:a5:b5:27:37:e6:67:c2:f7:f2:83:e6:0b:
0a:41:48:d8:da:37:b0:94:35:8f:e6:30:5d:2c:80:fa:c8:03:
02:fc:d8:c1:a7:c8:08:e4:1d:03:ce:f9:ea:25:50:cc:31:40:
8f:f7:a8:05:ae:15:3f:9f:eb:ec:77:64:0e:72:2e:8d:5c:a5:
d1:43:43:0b:fb:38:2e:5e:0b:67:9b:f9:6e:04:85:bf:3a:77:
c8:2c:ba:29:15:10:7a:17:5d:5a:9e:7b:8a:81:c4:21:41:57:
47:d9:a0:7b:e6:cc:4c:7d:82:92:7a:95:82:4f:c0:91:03:90:
49:87:0b:06:b3:16:28:f4:0e:89:14:27:77:41:40:04:5c:2a:
64:36:2c:e4:f4:0e:85:c3:e0:33:8b:d4:0e:04:ad:7d:fe:83:
3e:99:2c:ab:b2:51:61:45:1c:b4:44:4c:37:41:ee:22:9d:9b:
15:04:da:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 18:47:35 2024 by rpki-client on console-fra.rpki-client.org