Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/bjCtszoDlaSXUSLYueKMF1xQwzY.roa
File: bjCtszoDlaSXUSLYueKMF1xQwzY.roa (raw, json)
Hash identifier: xY3bFH3nM/4FxeVOCrgln0vAMMIlPB2UTBuK0Wc7vzU=
Subject key identifier: 6E:30:AD:B3:3A:03:95:A4:97:51:22:D8:B9:E2:8C:17:5C:50:C3:36
Certificate issuer: /CN=bf0dc1449316b6567c3e1e374b82ed892b5d0f63
Certificate serial: 01909CF892712CC9CF4419BC5BEBBA282BCC
Authority key identifier: BF:0D:C1:44:93:16:B6:56:7C:3E:1E:37:4B:82:ED:89:2B:5D:0F:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vw3BRJMWtlZ8Ph43S4LtiStdD2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/bjCtszoDlaSXUSLYueKMF1xQwzY.roa
Signing time: Wed 10 Jul 2024 14:07:34 +0000
ROA not before: Wed 10 Jul 2024 14:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213065
IP address blocks: 145.84.0.0/24 maxlen: 24
145.84.1.0/24 maxlen: 24
145.84.2.0/24 maxlen: 24
145.84.3.0/24 maxlen: 24
145.84.10.0/24 maxlen: 24
145.84.11.0/24 maxlen: 24
145.84.24.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/vw3BRJMWtlZ8Ph43S4LtiStdD2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/vw3BRJMWtlZ8Ph43S4LtiStdD2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/vw3BRJMWtlZ8Ph43S4LtiStdD2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9c:f8:92:71:2c:c9:cf:44:19:bc:5b:eb:ba:28:2b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf0dc1449316b6567c3e1e374b82ed892b5d0f63
Validity
Not Before: Jul 10 14:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e30adb33a0395a4975122d8b9e28c175c50c336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:40:9d:be:67:64:fd:82:58:93:d8:6d:56:55:
b6:13:64:49:9b:3a:12:c8:4d:a8:be:b5:85:f7:52:
84:54:9a:37:11:4d:1f:bd:d5:22:1e:e8:f6:31:6f:
3b:35:61:ab:d9:fe:91:ff:72:93:c4:ab:4e:41:7a:
04:f3:7d:ef:fc:f8:66:cf:8d:14:11:a0:2e:75:85:
81:0a:56:3b:66:73:be:91:1d:3b:bc:a1:29:5e:21:
7d:63:89:c2:d0:f7:d8:3d:21:e3:ab:ce:98:73:de:
3e:46:c3:d7:59:11:f5:ca:42:47:d9:08:d0:d9:14:
64:ad:3d:ee:07:90:31:9f:2b:c2:c4:71:a7:8a:b1:
8e:ba:dd:9c:2b:90:c0:58:87:3f:24:86:32:0f:26:
90:ba:69:b3:33:80:83:1d:7b:ca:cb:dc:53:e5:51:
b0:a9:02:a1:0d:74:31:f2:3d:31:d8:76:0a:c2:53:
72:ad:fc:f4:02:73:23:d0:70:23:6f:0b:8f:73:0e:
ac:3e:bf:3c:5e:34:ee:52:c8:b2:22:0e:c7:26:2e:
78:f5:95:7e:52:b9:51:18:a3:5d:f0:b8:52:ee:b8:
13:38:36:29:67:b9:06:4f:c5:01:1e:4e:77:cc:d8:
be:04:17:32:38:34:aa:12:f2:0a:e0:3e:1f:72:da:
28:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:30:AD:B3:3A:03:95:A4:97:51:22:D8:B9:E2:8C:17:5C:50:C3:36
X509v3 Authority Key Identifier:
keyid:BF:0D:C1:44:93:16:B6:56:7C:3E:1E:37:4B:82:ED:89:2B:5D:0F:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vw3BRJMWtlZ8Ph43S4LtiStdD2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/bjCtszoDlaSXUSLYueKMF1xQwzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/vw3BRJMWtlZ8Ph43S4LtiStdD2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.84.0.0/22
145.84.10.0/23
145.84.24.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:e7:ec:b2:39:dc:e3:82:cf:61:ec:d8:03:97:a1:b9:f7:0a:
17:8c:44:7e:7f:aa:68:d8:34:aa:9a:6b:4b:c1:7d:4b:7e:01:
ad:1a:bd:0a:17:92:04:33:b0:9a:ea:83:23:45:96:6b:45:35:
2d:66:7f:eb:ac:6a:04:4b:6d:96:ff:b4:70:93:6c:a8:78:f4:
71:9d:2d:5c:b6:1b:ea:d7:87:50:70:44:b2:46:5f:fe:8d:07:
2e:6a:b6:94:d0:b7:db:85:af:e7:b1:17:17:9a:55:69:11:e1:
97:54:fe:63:ce:b2:66:0c:29:96:4e:ef:c9:3b:c7:41:7d:cb:
4d:67:c4:4e:57:8c:2b:ac:6a:f4:c1:d9:c8:c6:e2:9e:ae:1f:
a8:cf:86:34:2f:14:0a:59:0a:7c:27:0e:dc:a9:db:63:ec:62:
54:80:bb:47:85:5f:62:81:2d:e5:76:c1:3e:91:cf:a6:b2:74:
17:67:c6:c1:f6:2b:d6:06:37:7b:a4:fe:b1:ac:66:ba:f6:79:
d6:5b:cd:75:d4:0f:66:cd:af:2d:98:2d:90:09:10:47:11:38:
96:44:f2:22:9c:d0:4d:0d:94:25:d6:77:58:2e:d3:88:c0:a4:
40:16:0b:f7:df:1d:3a:0f:f4:b4:0f:c6:f8:7d:cd:b0:15:25:
25:5e:13:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 00:11:54 2024 by rpki-client on console-ams.rpki-client.org