Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/WopWO5Q1e4T34Azz4Qtnqs7pMSg.roa
File: WopWO5Q1e4T34Azz4Qtnqs7pMSg.roa (raw, json)
Hash identifier: bsQSTjGwPEQ4zd9yG4mOvqARd0vU/BLZH4C2BG/ZaUk=
Subject key identifier: 5A:8A:56:3B:94:35:7B:84:F7:E0:0C:F3:E1:0B:67:AA:CE:E9:31:28
Certificate issuer: /CN=6fa86d1c1676a59a46acf37336192e985cff0e5b
Certificate serial: 018F1A055083217ABFB9DD5B79C415D82FA5
Authority key identifier: 6F:A8:6D:1C:16:76:A5:9A:46:AC:F3:73:36:19:2E:98:5C:FF:0E:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6htHBZ2pZpGrPNzNhkumFz_Dls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/WopWO5Q1e4T34Azz4Qtnqs7pMSg.roa
Signing time: Fri 26 Apr 2024 10:48:26 +0000
ROA not before: Fri 26 Apr 2024 10:48:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209242
IP address blocks: 45.14.174.0/24 maxlen: 24
45.80.109.0/24 maxlen: 24
45.80.111.0/24 maxlen: 24
80.94.83.0/24 maxlen: 24
188.244.122.0/24 maxlen: 24
193.9.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/b6htHBZ2pZpGrPNzNhkumFz_Dls.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/b6htHBZ2pZpGrPNzNhkumFz_Dls.mft
rsync://rpki.ripe.net/repository/DEFAULT/b6htHBZ2pZpGrPNzNhkumFz_Dls.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 16:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1a:05:50:83:21:7a:bf:b9:dd:5b:79:c4:15:d8:2f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa86d1c1676a59a46acf37336192e985cff0e5b
Validity
Not Before: Apr 26 10:48:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a8a563b94357b84f7e00cf3e10b67aacee93128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c7:04:41:42:e6:73:6e:d7:c5:c4:f9:64:ad:
65:7e:53:73:ca:93:b9:af:19:19:b3:ba:fe:cb:05:
2d:42:1a:80:b5:d9:b5:eb:b0:96:d7:c6:56:b2:ce:
78:a9:f8:04:9d:84:05:3e:d9:16:84:74:60:67:16:
72:34:b1:59:66:6b:db:b0:52:39:ee:37:85:f2:96:
f8:03:b6:86:54:f8:26:7d:29:f6:87:2c:01:db:6b:
9b:25:10:50:68:b9:c0:68:f1:e6:22:6d:87:f1:80:
99:cd:be:45:cd:52:72:05:ae:84:1b:52:b3:4d:36:
2c:40:c7:59:a8:fc:d9:80:d9:38:de:b7:54:f5:df:
cc:f9:f8:d7:d5:f3:c0:76:b4:f5:29:46:c4:b1:30:
5e:34:3a:25:78:13:e5:e6:3f:07:86:82:0e:d5:a2:
9b:60:96:47:da:0b:5e:d1:cd:9f:1b:e1:80:db:f6:
1c:44:e4:11:49:58:aa:ab:51:7f:3b:77:27:65:5b:
d6:a3:c5:47:f4:09:75:a6:0e:49:d2:01:3a:e0:21:
58:e3:45:b3:6e:22:9e:a0:9a:92:43:62:db:15:77:
4f:13:68:63:a7:de:be:cc:83:0b:6f:20:ae:61:db:
2e:97:b3:80:30:b2:88:8c:92:b2:c9:50:21:b4:aa:
f0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8A:56:3B:94:35:7B:84:F7:E0:0C:F3:E1:0B:67:AA:CE:E9:31:28
X509v3 Authority Key Identifier:
keyid:6F:A8:6D:1C:16:76:A5:9A:46:AC:F3:73:36:19:2E:98:5C:FF:0E:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6htHBZ2pZpGrPNzNhkumFz_Dls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/WopWO5Q1e4T34Azz4Qtnqs7pMSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/b6htHBZ2pZpGrPNzNhkumFz_Dls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.174.0/24
45.80.109.0/24
45.80.111.0/24
80.94.83.0/24
188.244.122.0/24
193.9.49.0/24
Signature Algorithm: sha256WithRSAEncryption
22:fc:53:57:89:02:f1:3a:18:34:96:17:b1:e5:cd:df:c9:55:
e4:a7:e9:0d:38:12:5c:69:5a:f4:5d:77:03:b9:26:d7:be:ff:
78:56:cd:83:45:0e:e3:91:b5:5c:e7:47:0f:e6:92:7f:9d:78:
29:cb:d5:05:06:94:01:4e:82:25:03:bf:d6:5b:22:e3:db:da:
89:89:11:ee:82:0c:ce:f9:45:f4:74:4a:77:2a:06:81:13:78:
cd:2d:fc:15:da:b1:8f:76:04:e0:e0:b5:9a:4b:f1:2d:00:19:
9e:c4:39:76:8d:d4:bf:d2:8a:7d:1f:46:86:13:07:36:1a:ad:
ad:33:d7:ec:86:14:39:bd:21:12:9f:23:dd:c1:5b:84:74:d7:
e4:75:10:53:3b:2e:1f:07:4a:8a:82:6c:53:36:c9:09:ee:9a:
c1:10:a2:20:4b:ce:98:9c:79:11:41:bf:5d:4f:2f:62:01:1e:
25:0a:e6:8b:7d:be:f4:77:01:ec:dd:e6:9d:33:37:d4:82:24:
2d:ad:ca:22:74:42:3d:d8:d4:5d:19:6a:eb:ac:99:bb:ca:c6:
5c:4d:eb:a2:f3:45:0f:70:bd:d7:fc:61:83:bf:a1:d8:35:d0:
c7:e6:22:e5:2d:ec:55:8f:5e:28:e3:31:b5:ce:93:08:6b:34:
1a:41:e2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:19:25 2024 by rpki-client on console-ams.rpki-client.org