Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/51kYpCPz3E_Je8_5N2ynohAf8TI.roa
File: 51kYpCPz3E_Je8_5N2ynohAf8TI.roa (raw, json)
Hash identifier: xZ3k+i0Q+neBDhDtdeAeSI/MB/aQy179i4sY3s3BgaQ=
Subject key identifier: E7:59:18:A4:23:F3:DC:4F:C9:7B:CF:F9:37:6C:A7:A2:10:1F:F1:32
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FA4B2592F2C7359F251D5A91E55D3
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/51kYpCPz3E_Je8_5N2ynohAf8TI.roa
Signing time: Tue 02 Jan 2024 04:30:09 +0000
ROA not before: Tue 02 Jan 2024 04:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25151
IP address blocks: 45.134.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:a4:b2:59:2f:2c:73:59:f2:51:d5:a9:1e:55:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e75918a423f3dc4fc97bcff9376ca7a2101ff132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cd:53:bd:ae:53:e0:36:f1:b5:63:78:ae:ad:
6d:5d:dc:34:d6:ad:ae:fc:52:17:b5:8e:13:ad:ba:
f4:f4:17:f9:41:14:fa:8f:f1:1c:a5:c0:2b:88:6a:
a8:d2:8a:d6:29:6c:c2:ed:e1:88:eb:5f:af:e3:f4:
d6:59:5a:a5:e6:e6:5a:a8:ab:85:e2:35:6d:cc:f8:
13:69:56:ef:9f:fa:87:c7:f8:e0:62:fd:35:eb:e3:
5a:57:5a:63:c6:e3:63:b6:08:a1:cb:86:05:60:92:
48:98:3a:04:00:59:41:5f:07:5d:34:37:f3:ad:25:
ae:d3:0f:05:d8:f4:73:57:71:04:f4:48:3f:64:19:
f4:a2:a2:f9:20:43:32:ae:5c:41:d7:af:bb:a0:54:
86:b8:29:c0:7d:bf:38:b0:07:e2:de:6c:88:61:35:
5d:e4:94:9d:cd:b2:d4:bb:7f:62:88:b7:dc:cc:81:
92:cd:49:d2:12:e3:15:51:58:9a:28:eb:b8:c4:80:
64:21:47:cb:ce:08:76:03:84:41:c3:5a:20:7e:fd:
70:2c:d1:86:eb:85:90:c9:a4:1f:08:1b:31:98:db:
f3:14:07:50:ef:6f:30:54:af:a1:87:3d:e2:be:15:
c6:e5:0b:cb:6f:bc:09:7f:ad:6d:7e:1f:bd:3d:86:
b2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:59:18:A4:23:F3:DC:4F:C9:7B:CF:F9:37:6C:A7:A2:10:1F:F1:32
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/51kYpCPz3E_Je8_5N2ynohAf8TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.223.0/24
Signature Algorithm: sha256WithRSAEncryption
98:85:d6:46:86:08:0b:72:58:dd:f9:33:e0:b1:83:c4:2e:f9:
4f:28:c2:12:00:1f:ad:94:95:83:69:63:05:a2:58:75:da:d7:
b3:0b:cd:3c:01:f3:a3:ea:40:6c:e9:a5:93:d6:af:f7:6c:27:
cb:c4:22:4b:b7:4e:b8:31:45:ef:26:92:a5:ea:3a:ed:bc:28:
66:77:9d:cd:95:a6:3f:96:2e:55:29:5e:2d:18:4c:c7:ee:93:
4b:ad:08:09:0a:80:60:97:47:6c:eb:02:5e:b7:37:17:20:c9:
4b:c5:0d:59:e7:2c:75:5e:5c:ea:48:90:ca:e8:94:bd:73:2a:
e3:d8:9e:36:6c:8f:57:96:f6:ca:01:00:8f:bb:66:ce:44:55:
6c:35:bd:ed:0d:22:67:c3:6a:d3:5a:7e:19:bc:51:9d:11:ac:
90:c8:9f:8f:2f:91:b0:d1:b5:4b:14:cc:45:39:d4:b5:3a:a5:
32:c7:26:c0:3b:ad:e0:4c:82:a1:b4:fd:fa:02:88:e9:0e:6b:
00:69:65:bb:b0:e3:e5:be:b5:6b:54:cc:54:e1:4d:f2:20:df:
b4:e9:0c:ed:af:13:be:9a:41:7c:6e:2e:e5:8f:ed:7c:e2:aa:
00:38:2d:ad:38:1a:d3:da:9f:9c:19:d3:34:4a:ce:cc:cc:a1:
fe:b3:5f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:45:21 2024 by rpki-client on console-ams.rpki-client.org