Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/RTkwX3a8B4c1BYkhm5Z5BdZpPYA.roa
File: RTkwX3a8B4c1BYkhm5Z5BdZpPYA.roa (raw, json)
Hash identifier: 4C5fU3ntBjmzrPXv+BLWY7U9J7T4/22mtF9+CUclopw=
Subject key identifier: 45:39:30:5F:76:BC:07:87:35:05:89:21:9B:96:79:05:D6:69:3D:80
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019289574AC9555B66844311B1B360746887
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/RTkwX3a8B4c1BYkhm5Z5BdZpPYA.roa
Signing time: Mon 14 Oct 2024 04:44:12 +0000
ROA not before: Mon 14 Oct 2024 04:44:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214055
IP address blocks: 37.202.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:89:57:4a:c9:55:5b:66:84:43:11:b1:b3:60:74:68:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Oct 14 04:44:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4539305f76bc0787350589219b967905d6693d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:70:19:90:74:b5:54:5f:3c:93:6a:84:c7:80:
5c:ac:70:36:9c:d0:58:55:8d:e3:56:bb:3d:d3:37:
39:19:b0:e2:f3:64:7b:cb:78:1c:40:fa:f1:a7:87:
a1:24:ae:d3:38:74:08:1c:ca:16:03:90:50:87:84:
3b:50:bf:2f:a9:0c:bf:4f:4c:97:92:61:16:c6:26:
99:6a:a2:01:16:19:cf:76:d6:65:f8:94:e1:04:ba:
ed:f6:de:9f:b5:ad:c2:95:0d:02:ed:eb:91:3a:1d:
3a:25:8f:4b:24:9e:34:a8:e3:43:3a:35:6b:00:d7:
02:26:2b:ec:24:16:79:89:0c:f2:36:74:3d:5a:7b:
f6:6c:8c:0b:eb:9c:0e:9d:d5:d8:2d:65:76:9b:4f:
fe:8f:fb:a4:fc:18:39:a5:10:01:2b:b4:53:ed:20:
cb:c6:2c:3e:a9:d2:ab:15:7f:32:11:f6:f4:fc:82:
b0:9f:81:e5:31:05:2f:f5:77:a7:da:13:f0:40:19:
07:11:1e:37:65:2f:1b:0f:53:4c:27:ed:f5:2c:4b:
3e:b0:3e:8f:29:a5:76:47:f6:b0:fb:f8:39:35:fb:
18:cc:0a:17:5d:57:12:bc:ea:2e:57:69:22:99:7c:
ce:3f:30:b6:0f:0b:23:1a:75:e9:ef:55:ae:a7:7e:
db:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:39:30:5F:76:BC:07:87:35:05:89:21:9B:96:79:05:D6:69:3D:80
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/RTkwX3a8B4c1BYkhm5Z5BdZpPYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.204.0/24
Signature Algorithm: sha256WithRSAEncryption
60:22:c7:02:70:a6:2c:30:94:90:b1:ea:35:2b:ad:41:29:4f:
b4:56:dd:d4:aa:0d:b5:01:71:d9:ec:f2:42:7c:73:dd:a9:6e:
b4:52:7c:76:2a:67:31:cb:b9:97:fa:0b:fa:6b:07:be:a3:de:
e0:9d:88:54:3b:b3:49:02:ed:2b:17:3b:ce:ac:a9:95:f2:b5:
cf:17:78:69:16:42:7f:bd:42:0a:b9:16:23:d7:da:39:30:f1:
68:fd:f3:67:0c:60:a9:0d:b3:95:df:fd:5b:9a:0c:d6:42:b6:
f5:71:0f:ac:55:ec:ed:ef:69:2b:1c:2f:3b:16:79:72:d8:7f:
1a:3c:9b:cc:ba:2e:d4:3b:62:9e:4e:8e:43:ab:c0:48:54:7e:
fb:52:08:a2:c7:b8:e0:02:70:04:94:28:20:b7:04:4e:be:a6:
75:0e:9a:12:f0:dc:ea:c5:5f:a7:dd:76:f5:1b:92:55:79:3c:
8c:5c:bb:44:ee:6e:e9:53:82:62:f4:c8:b0:db:bd:96:56:a0:
39:45:0c:23:04:48:25:37:cd:9f:60:62:f8:63:85:24:7f:bf:
46:b0:86:75:e2:24:9b:94:32:d4:7f:32:a0:34:e3:e9:67:26:
1c:54:aa:03:7a:ff:59:f3:af:d0:74:26:04:d2:e5:fc:0f:89:
06:80:80:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:57:37 2024 by rpki-client on console-fra.rpki-client.org