Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/cLFewt6tvSyET8c1mrxISiwMYvY.roa
File: cLFewt6tvSyET8c1mrxISiwMYvY.roa (raw, json)
Hash identifier: SIIkGDNfH5S6oMK2lTpzqiJb81G2rHZ6qQHgbBO4q7M=
Subject key identifier: 70:B1:5E:C2:DE:AD:BD:2C:84:4F:C7:35:9A:BC:48:4A:2C:0C:62:F6
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 018FBD676C287572A2CA1543F09E7259A6D5
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/cLFewt6tvSyET8c1mrxISiwMYvY.roa
Signing time: Tue 28 May 2024 04:13:42 +0000
ROA not before: Tue 28 May 2024 04:13:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 45.86.84.0/24 maxlen: 24
45.132.112.0/24 maxlen: 24
45.152.34.0/23 maxlen: 24
62.68.81.0/24 maxlen: 24
79.143.128.0/24 maxlen: 24
79.143.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bd:67:6c:28:75:72:a2:ca:15:43:f0:9e:72:59:a6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: May 28 04:13:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70b15ec2deadbd2c844fc7359abc484a2c0c62f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:47:62:da:f1:39:3c:c8:ef:72:ee:16:1c:7a:
02:43:22:b5:25:2c:a6:d3:ca:45:ad:e8:1b:7c:df:
b9:15:7f:00:27:90:4b:cd:5c:0c:a4:80:dc:ca:5d:
1b:28:d5:ab:8b:24:ba:3a:2a:0d:38:23:95:4e:96:
99:29:44:73:d7:af:b9:2e:f0:ab:f1:90:68:cb:26:
53:1d:03:bf:d3:77:72:a0:af:2e:7c:c6:2a:2b:3b:
bb:9a:24:61:3d:3c:60:06:9e:64:2f:33:64:ad:d8:
41:dd:0f:2c:58:be:d5:40:8d:05:5b:f1:1e:0b:d3:
f8:99:53:78:dc:4c:ce:3d:4a:fa:e2:90:47:88:ff:
1d:59:7b:a9:12:c4:90:78:45:ce:5c:9c:5a:0b:ac:
5f:a4:62:14:80:37:af:da:27:d3:c9:37:1c:95:a1:
bf:f4:79:2a:16:bf:7c:b0:ca:35:bd:13:62:d3:ca:
b6:d0:de:87:1d:aa:64:0f:fa:85:d6:f1:4b:16:0a:
41:23:ed:e5:a4:e0:e0:38:68:40:dc:f5:b7:ce:5f:
fd:76:71:02:f3:6b:49:05:d4:ae:45:8a:4c:3e:5b:
e7:dd:cf:79:9b:66:21:fc:30:fb:3e:fc:4d:f3:0e:
27:9c:f3:b6:01:0e:87:d5:58:9a:6b:5c:1c:35:4b:
b6:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B1:5E:C2:DE:AD:BD:2C:84:4F:C7:35:9A:BC:48:4A:2C:0C:62:F6
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/cLFewt6tvSyET8c1mrxISiwMYvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.84.0/24
45.132.112.0/24
45.152.34.0/23
62.68.81.0/24
79.143.128.0/24
79.143.130.0/24
Signature Algorithm: sha256WithRSAEncryption
37:3b:57:1f:f4:de:ad:9e:99:90:68:9a:bb:8b:69:cc:82:6b:
31:89:e1:b0:4e:c9:8c:bd:dc:66:ac:1e:e4:81:58:cf:6f:a5:
45:93:3c:98:cf:59:d6:d4:34:ed:0e:e2:1a:27:3e:fc:4e:4f:
63:3c:b3:cb:f7:c3:fc:b4:a7:41:d8:2e:c0:7d:3a:3b:ea:81:
6c:0e:c8:05:63:2c:5f:c3:f4:49:c6:5a:cd:7d:fb:68:8c:47:
f3:4b:8e:ef:f5:c4:1e:c3:7f:41:78:94:89:30:9d:6b:56:40:
f2:df:7d:c4:88:24:c2:21:c7:54:7b:ea:dd:32:22:33:d0:c0:
4e:0f:c8:7b:70:67:d9:e7:c6:63:b2:57:13:c7:a0:a4:44:ec:
95:91:22:16:26:1c:a7:81:ba:c7:1e:e4:32:4b:b1:23:11:ff:
c1:98:71:89:d6:9c:09:52:3d:0d:bf:34:6f:61:92:da:9d:21:
98:7a:5e:20:2c:ce:d0:a2:de:a5:94:48:fc:81:21:a8:42:2b:
fd:ef:ca:4e:43:ab:33:45:57:f9:2a:f0:89:8b:c2:e6:4a:5b:
98:ac:eb:53:8d:b1:28:78:ee:6f:e1:27:5c:da:b1:57:f5:7e:
36:dc:02:83:37:ad:20:a3:4c:81:a8:db:35:88:1e:3b:35:71:
d7:2f:bf:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:30:35 2024 by rpki-client on console-ams.rpki-client.org