Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/x-bY3h1_afkW3jT3jH3m8ULmHbM.roa
File: x-bY3h1_afkW3jT3jH3m8ULmHbM.roa (raw, json)
Hash identifier: puWs/thkzFWjZma4+9po93+gYdoFtmnoqfR6W4zeoNc=
Subject key identifier: C7:E6:D8:DE:1D:7F:69:F9:16:DE:34:F7:8C:7D:E6:F1:42:E6:1D:B3
Certificate issuer: /CN=bd6fa37a2483cf579fa86250119ac0133475aad8
Certificate serial: 018CC9BBDD10B1FC882FCCCE37A7A58DC4D2
Authority key identifier: BD:6F:A3:7A:24:83:CF:57:9F:A8:62:50:11:9A:C0:13:34:75:AA:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vW-jeiSDz1efqGJQEZrAEzR1qtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/x-bY3h1_afkW3jT3jH3m8ULmHbM.roa
Signing time: Tue 02 Jan 2024 10:33:01 +0000
ROA not before: Tue 02 Jan 2024 10:33:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6134
IP address blocks: 45.138.80.0/22 maxlen: 24
45.86.140.0/22 maxlen: 24
45.133.228.0/22 maxlen: 24
45.147.24.0/24 maxlen: 24
45.147.25.0/24 maxlen: 24
45.158.229.0/24 maxlen: 24
45.147.27.0/24 maxlen: 24
45.147.26.0/24 maxlen: 24
45.158.228.0/24 maxlen: 24
45.158.230.0/24 maxlen: 24
45.158.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/vW-jeiSDz1efqGJQEZrAEzR1qtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/vW-jeiSDz1efqGJQEZrAEzR1qtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vW-jeiSDz1efqGJQEZrAEzR1qtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:dd:10:b1:fc:88:2f:cc:ce:37:a7:a5:8d:c4:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd6fa37a2483cf579fa86250119ac0133475aad8
Validity
Not Before: Jan 2 10:33:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7e6d8de1d7f69f916de34f78c7de6f142e61db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:46:34:7a:9a:43:49:f7:76:a8:bc:22:d6:da:
2d:37:d1:49:08:39:b1:89:c4:6f:40:cb:c2:84:b9:
b7:e6:0e:49:50:1f:7a:8f:75:b8:08:da:d1:6a:e8:
8a:ce:17:dd:d5:8f:d6:7a:17:86:9f:a3:00:2f:db:
6e:0e:91:ce:7d:07:fc:75:3a:0a:a0:53:34:5c:95:
8f:97:0e:bc:b4:d5:0d:dc:16:77:7a:46:28:72:8e:
b9:db:20:48:ce:ab:56:10:a2:42:a3:c1:8e:ec:8c:
82:65:60:8d:7f:f5:73:9e:98:54:24:3c:da:8f:72:
10:48:98:dc:26:d2:d7:b5:28:66:87:fe:dd:e0:36:
41:46:23:0b:fc:95:9c:70:f7:5f:aa:7c:8f:ee:d6:
51:84:c0:fe:8c:c6:fb:01:75:5c:96:38:f4:40:ed:
32:ea:6b:3d:0f:db:70:ed:ec:71:46:b4:fe:8b:a3:
5f:6f:18:07:05:4a:ec:cf:a6:fc:15:a7:d0:c4:c0:
bf:78:c7:23:c2:9d:c8:79:4d:04:d3:a4:f5:07:ff:
d1:cb:9a:e0:36:68:e2:89:21:50:d6:5a:38:b7:9c:
57:ad:0b:0e:b6:a3:a3:d9:f4:fc:37:b5:b4:04:36:
1a:ee:57:8a:49:3b:8b:c9:a4:1d:2f:8b:94:26:2f:
ef:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E6:D8:DE:1D:7F:69:F9:16:DE:34:F7:8C:7D:E6:F1:42:E6:1D:B3
X509v3 Authority Key Identifier:
keyid:BD:6F:A3:7A:24:83:CF:57:9F:A8:62:50:11:9A:C0:13:34:75:AA:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vW-jeiSDz1efqGJQEZrAEzR1qtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/x-bY3h1_afkW3jT3jH3m8ULmHbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/vW-jeiSDz1efqGJQEZrAEzR1qtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.140.0/22
45.133.228.0/22
45.138.80.0/22
45.147.24.0/22
45.158.228.0/22
Signature Algorithm: sha256WithRSAEncryption
73:43:86:25:8c:95:2e:c7:b0:3a:47:51:56:aa:b1:c5:d1:12:
52:83:7a:50:1d:22:d1:74:76:4b:82:10:bc:77:44:89:88:27:
77:cd:a5:4d:fe:c1:81:6f:9a:3e:39:bb:2d:c1:16:7a:89:37:
76:28:7d:86:e9:2a:e2:45:7c:06:33:23:15:be:be:78:d9:80:
e9:0d:b8:0e:d0:50:c2:b8:d7:62:18:ef:b9:ce:82:d3:0a:a1:
19:a4:ee:a4:2d:09:5a:a3:cd:e5:5d:96:ed:41:6e:53:25:1c:
3b:09:49:50:8d:51:fd:91:ff:a4:ff:ca:4d:fc:34:bf:38:be:
2f:dc:09:92:6a:f9:7d:91:69:cd:b7:a4:2c:7d:a2:49:27:89:
cc:e2:10:43:38:5d:33:c6:c7:3e:13:48:ab:ad:f7:43:da:40:
c7:9d:83:65:c6:3a:f5:7f:e6:75:0e:0e:11:df:7a:de:02:98:
5b:40:f8:95:c8:bb:7c:c1:76:2d:f4:e1:97:38:8b:ca:ab:1c:
23:ec:96:da:52:7a:cd:6e:e3:ec:65:91:d9:f4:b0:f2:cc:ff:
48:8c:68:0d:7d:75:7b:ce:12:39:a9:c9:f0:2f:8f:e4:62:d3:
11:c3:52:32:a8:2f:53:8a:d6:6b:d3:50:74:ad:4b:35:d5:0b:
f3:5b:83:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:46:27 2024 by rpki-client on console-ams.rpki-client.org