Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/Os4V_uoUzWtpbQ6OzJwuKYHZMpg.roa
File: Os4V_uoUzWtpbQ6OzJwuKYHZMpg.roa (raw, json)
Hash identifier: kUyWI3HvlWziG2f/NGSGYN+snmx3ZTwrybkDoiBDgK8=
Subject key identifier: 3A:CE:15:FE:EA:14:CD:6B:69:6D:0E:8E:CC:9C:2E:29:81:D9:32:98
Certificate issuer: /CN=126c660b30f5692b2b16e289b24901c518fda520
Certificate serial: 018DB256FDAAFFCBCC9ADA35AFBDB3BAF45D
Authority key identifier: 12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/Os4V_uoUzWtpbQ6OzJwuKYHZMpg.roa
Signing time: Fri 16 Feb 2024 14:34:21 +0000
ROA not before: Fri 16 Feb 2024 14:34:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 45.83.112.0/22 maxlen: 24
80.254.236.0/22 maxlen: 24
185.220.28.0/22 maxlen: 24
192.144.52.0/22 maxlen: 24
193.9.40.0/22 maxlen: 24
193.187.168.0/22 maxlen: 24
194.39.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:56:fd:aa:ff:cb:cc:9a:da:35:af:bd:b3:ba:f4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126c660b30f5692b2b16e289b24901c518fda520
Validity
Not Before: Feb 16 14:34:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ace15feea14cd6b696d0e8ecc9c2e2981d93298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:58:10:c7:5e:79:6a:4f:2e:df:91:b7:6b:82:
62:ec:b2:b5:38:24:ed:19:b3:97:73:70:d3:46:bd:
c1:48:a9:ec:17:ec:2a:20:ad:a9:45:7c:76:3c:c1:
a4:54:90:a3:90:d0:58:18:a8:4d:ef:40:54:f4:bc:
f8:0a:2a:40:14:f3:c6:b7:9f:8e:e8:4f:5d:e8:cf:
8c:49:63:a5:5e:a5:45:8d:fb:e0:74:bd:d5:f8:9d:
89:5f:c0:2d:51:7a:6a:fc:76:fd:b5:30:b9:39:59:
77:b8:bc:5d:8f:69:a5:5e:e8:71:7f:20:ed:d1:15:
cb:87:e0:35:8d:34:09:8d:85:4f:65:ea:00:7b:e3:
55:dd:b8:20:49:e0:15:e2:4f:f5:f8:19:48:be:17:
06:7d:85:a5:5e:23:c1:be:60:cc:8a:5f:8a:77:d5:
02:3f:6e:4b:22:69:dd:7c:fe:51:d4:0b:31:46:54:
b3:7a:4a:45:c6:3b:54:7a:73:69:ac:78:b3:fe:fc:
2c:f0:fd:df:2d:a0:be:05:21:79:f6:ee:f4:f1:68:
af:0d:55:4f:e6:52:46:f8:f3:a1:ef:cd:59:85:df:
37:1b:53:f0:65:02:ff:ab:dc:ec:db:2c:ab:93:9b:
3a:6a:38:f6:9c:0a:f5:58:1f:a1:f0:4e:05:22:f6:
a3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:CE:15:FE:EA:14:CD:6B:69:6D:0E:8E:CC:9C:2E:29:81:D9:32:98
X509v3 Authority Key Identifier:
keyid:12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/Os4V_uoUzWtpbQ6OzJwuKYHZMpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.112.0/22
80.254.236.0/22
185.220.28.0/22
192.144.52.0/22
193.9.40.0/22
193.187.168.0/22
194.39.68.0/22
Signature Algorithm: sha256WithRSAEncryption
91:b6:17:ac:19:67:29:6a:93:92:c0:fc:6e:5a:0b:0f:6c:b5:
41:f4:a1:a8:a7:a0:65:9f:1c:a3:db:6e:cb:f8:b3:6f:41:0c:
97:64:1f:bd:f2:39:b2:3d:9d:06:14:10:ea:e1:e1:2c:de:d0:
77:c4:6c:29:b5:05:78:0d:8f:51:fd:de:48:7f:3c:8d:bf:b9:
3f:0d:d1:c6:0f:a1:45:04:fd:01:bc:da:23:1f:e7:23:cc:49:
c6:6e:6a:d5:75:35:98:b9:ae:7d:2f:81:fa:47:29:eb:52:0d:
f4:5c:a1:31:4b:42:b2:4b:9f:46:b5:82:7c:a6:36:96:84:7f:
cc:35:a8:7a:81:a6:32:f7:67:b5:80:a7:ee:42:ad:49:24:b9:
b7:3a:a5:1c:eb:fe:68:c3:31:66:ae:de:73:73:48:07:ea:9f:
39:db:da:bb:54:8a:be:68:14:ca:43:b8:67:ca:d3:df:29:64:
7d:6c:3d:16:06:cf:05:44:20:00:45:29:09:d5:86:c8:fc:77:
67:a3:cb:ee:83:0c:65:3f:da:1a:99:5c:ad:7c:a6:ea:81:d3:
2e:d2:b2:17:04:87:99:5e:e4:26:4d:26:08:57:29:3b:66:e0:
b2:ee:56:78:e0:8a:1a:2b:ee:63:86:8a:a4:8f:84:2e:89:16:
91:02:5a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:42:16 2024 by rpki-client on console-ams.rpki-client.org