Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/G83L6jZrO4QurXEpIdqjQIPBuiM.roa
File: G83L6jZrO4QurXEpIdqjQIPBuiM.roa (raw, json)
Hash identifier: uCEaOpiSYQber69IiNUDtum4lgzwMONmek4DC1g+sBE=
Subject key identifier: 1B:CD:CB:EA:36:6B:3B:84:2E:AD:71:29:21:DA:A3:40:83:C1:BA:23
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018EF0E3D2432C5BF761DF75011DA239F7BE
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/G83L6jZrO4QurXEpIdqjQIPBuiM.roa
Signing time: Thu 18 Apr 2024 11:07:26 +0000
ROA not before: Thu 18 Apr 2024 11:07:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206092
IP address blocks: 45.84.216.0/24 maxlen: 24
45.86.200.0/24 maxlen: 24
45.86.202.0/24 maxlen: 24
45.92.229.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
45.146.54.0/24 maxlen: 24
45.154.138.0/24 maxlen: 24
136.144.17.0/24 maxlen: 24
136.144.19.0/24 maxlen: 24
136.144.33.0/24 maxlen: 24
136.144.42.0/24 maxlen: 24
193.36.224.0/24 maxlen: 24
193.36.225.0/24 maxlen: 24
193.37.32.0/24 maxlen: 24
193.37.33.0/24 maxlen: 24
193.176.211.0/24 maxlen: 24
194.5.48.0/24 maxlen: 24
194.5.53.0/24 maxlen: 24
194.34.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 14:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:e3:d2:43:2c:5b:f7:61:df:75:01:1d:a2:39:f7:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Apr 18 11:07:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bcdcbea366b3b842ead712921daa34083c1ba23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:22:29:dc:eb:0e:8e:fa:fd:a9:17:f4:3c:83:
c0:bd:1d:f2:9c:33:01:0a:8a:5e:4c:22:b6:04:e2:
22:b0:a5:2d:82:54:54:41:e8:f1:bc:b0:e4:62:e7:
a6:0e:e6:0b:67:86:af:93:0b:5b:2b:37:0c:8d:b9:
cc:11:25:07:5c:11:d3:f7:66:bb:71:59:e9:71:ea:
82:59:f5:9d:a2:fc:39:1d:5a:89:0c:e5:11:20:95:
03:d4:30:bb:13:50:c7:f1:48:8b:1b:fa:5e:27:29:
c3:66:f4:53:4f:48:28:8a:b0:e1:69:93:d8:05:91:
56:9e:0a:05:31:3d:fe:57:02:16:cb:6b:53:a7:b0:
86:17:00:fe:66:94:83:c3:a0:92:61:25:63:22:fa:
04:b2:e6:8e:e9:94:95:9a:35:86:29:01:ff:cb:87:
40:b7:ac:51:e3:ae:2a:6c:20:95:f8:d0:b0:55:50:
d1:a4:8b:5b:05:f8:34:f9:c0:e1:ea:ea:b5:a5:bf:
79:b7:fc:28:17:f6:59:c9:30:35:d7:3e:ee:39:f2:
d8:f0:03:26:24:cb:ad:65:1e:3f:be:3c:d4:20:cb:
85:6b:1d:33:16:83:18:bb:1d:ef:18:ff:69:bc:5c:
13:10:57:7b:af:e7:95:5f:db:3b:bb:e7:e7:82:ec:
b3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CD:CB:EA:36:6B:3B:84:2E:AD:71:29:21:DA:A3:40:83:C1:BA:23
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/G83L6jZrO4QurXEpIdqjQIPBuiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/24
45.86.200.0/24
45.86.202.0/24
45.92.229.0/24
45.95.243.0/24
45.146.54.0/24
45.154.138.0/24
136.144.17.0/24
136.144.19.0/24
136.144.33.0/24
136.144.42.0/24
193.36.224.0/23
193.37.32.0/23
193.176.211.0/24
194.5.48.0/24
194.5.53.0/24
194.34.173.0/24
Signature Algorithm: sha256WithRSAEncryption
25:1a:3b:48:55:09:e9:73:28:ac:16:7e:57:f6:54:8e:46:90:
67:40:a1:96:39:ed:99:5f:dc:a3:ca:67:f5:bc:e4:88:53:12:
29:7d:31:35:14:41:69:fa:78:5a:01:a2:38:e8:b7:b0:a5:6a:
ec:ea:6d:a7:88:30:bf:d3:85:58:03:0c:75:d8:c9:42:88:bd:
fd:b0:eb:17:40:d7:d8:fb:ff:44:ec:eb:f7:38:ef:b8:98:b7:
32:1d:8b:cc:ba:ea:ef:67:2c:17:27:ac:7c:2c:83:23:91:92:
27:c3:a4:9d:84:49:98:0c:7b:cc:58:00:eb:8c:b0:39:20:90:
e0:36:00:10:a7:af:ee:92:48:d4:96:b7:c3:67:2e:fc:e9:92:
b6:1d:a1:7b:cc:c8:31:be:5a:59:22:92:18:7e:19:b3:d7:2b:
25:50:bf:fa:53:2e:1d:00:8e:5b:60:94:90:31:a3:56:65:9f:
a3:af:b2:8e:94:31:60:d0:2b:03:42:8b:0f:87:f4:cb:7c:97:
ae:58:24:e0:ed:ea:b5:55:6b:8c:f9:35:a5:cb:4b:f9:6c:b5:
29:ce:93:75:db:98:7d:38:19:9a:7c:9e:b7:62:30:e4:6b:ed:
38:15:8b:ee:b9:da:92:c2:61:c9:df:58:bf:31:40:34:f7:64:
52:bc:7c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 18:50:00 2024 by rpki-client on console-ams.rpki-client.org