Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/Ck-gRdeqQg_mD5akQhcNSUGePI8.roa
File: Ck-gRdeqQg_mD5akQhcNSUGePI8.roa (raw, json)
Hash identifier: KSvIuGzpLJAivBUb4Q2CMIshLo9k5XslKK6KYYpLr3E=
Subject key identifier: 0A:4F:A0:45:D7:AA:42:0F:E6:0F:96:A4:42:17:0D:49:41:9E:3C:8F
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 018CC86F7FB200AF028AF6C065ED8566DA8D
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/Ck-gRdeqQg_mD5akQhcNSUGePI8.roa
Signing time: Tue 02 Jan 2024 04:29:59 +0000
ROA not before: Tue 02 Jan 2024 04:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 45.141.50.0/24 maxlen: 24
45.141.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:7f:b2:00:af:02:8a:f6:c0:65:ed:85:66:da:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Jan 2 04:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a4fa045d7aa420fe60f96a442170d49419e3c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:dd:17:60:a8:6b:18:96:80:98:9c:b1:81:65:
05:49:0b:4b:d4:b6:25:16:c9:94:3a:a5:01:94:40:
fe:c2:c4:94:11:32:6c:0b:82:68:bd:e6:eb:c7:5e:
5b:ae:83:62:b9:95:5c:ca:53:41:86:be:bc:c2:41:
90:b4:ed:9a:52:ae:18:af:44:fb:ad:94:88:c5:85:
4b:5a:61:59:75:e6:7a:66:1f:c6:c6:83:3e:0b:76:
df:e9:92:d6:4b:8a:58:58:fa:fe:bb:aa:ff:68:e7:
af:01:26:a9:62:9f:4c:58:65:55:0d:d8:68:70:6e:
e7:4c:0a:68:82:af:7e:6b:d5:13:3e:4e:b3:e2:1f:
aa:9b:c8:29:58:f9:b8:e4:0f:fb:52:2f:ba:ef:30:
ef:50:f6:da:ef:f1:2c:8a:7b:e1:f5:de:df:3f:cd:
90:fb:db:11:e1:75:8f:da:fd:8c:23:2f:35:11:ae:
ac:72:7b:bd:db:51:8f:72:29:03:4f:2b:99:52:aa:
58:15:ce:66:44:e1:a0:24:85:27:b3:cb:a3:62:0e:
f0:d3:99:54:d9:99:b6:af:84:f6:26:3e:f2:7a:72:
db:2e:f1:5d:ff:34:90:ff:e5:a9:23:29:e1:e6:26:
52:73:26:81:c7:d0:64:41:5b:48:4a:2c:93:06:53:
16:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:4F:A0:45:D7:AA:42:0F:E6:0F:96:A4:42:17:0D:49:41:9E:3C:8F
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/Ck-gRdeqQg_mD5akQhcNSUGePI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.48.0/24
45.141.50.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:50:c5:51:4c:e7:44:91:9a:b5:b5:d7:3a:55:e9:a8:af:80:
34:9c:49:ad:dc:76:73:f3:b8:33:30:6f:47:35:43:e5:20:42:
0d:07:9c:2e:dd:68:e5:05:ef:45:92:88:bf:de:32:a6:1f:8e:
8e:e4:df:84:08:d8:9a:3d:68:32:85:f4:7c:ea:bc:40:5f:52:
f4:f7:fd:8e:7f:3d:88:49:97:c9:e2:37:b1:f4:64:27:e1:a4:
33:86:0d:2c:d1:f7:fb:96:56:56:99:d6:c6:97:bb:63:dc:f8:
40:71:0d:a9:6a:73:3c:1d:f9:e4:17:b1:0a:81:15:da:96:bb:
98:a9:90:fb:bc:cf:a9:9e:ab:10:14:0d:d5:2d:51:ce:34:3a:
0c:5f:52:6d:7e:4c:10:c5:61:83:76:a3:e6:0e:c7:68:64:17:
9b:2c:c9:68:83:61:cc:e7:d3:ca:0f:fa:42:9b:92:01:f4:dc:
7e:0e:80:4a:7b:e1:86:d1:8b:57:3a:1e:9b:61:f9:3f:05:33:
b3:f4:e1:37:4a:40:76:7a:fe:68:f0:96:7d:8a:e4:6e:55:fc:
ae:3f:d8:c8:b9:6c:f6:aa:8e:ea:da:75:ec:87:c6:52:f2:e0:
7a:e8:d4:64:f2:e9:68:db:45:95:62:a4:17:3b:a2:42:89:bc:
ac:12:fe:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 15:30:02 2024 by rpki-client on console-ams.rpki-client.org