Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/RZSVudVF7DhOz5Rhcc6t-uEnKtE.roa
File: RZSVudVF7DhOz5Rhcc6t-uEnKtE.roa (raw, json)
Hash identifier: 7+drY18B4rEBQq3CsQf+o7SAIlnInEt59svsbnnJWGg=
Subject key identifier: 45:94:95:B9:D5:45:EC:38:4E:CF:94:61:71:CE:AD:FA:E1:27:2A:D1
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FB3A298005B6FD6B48DDC7F520C07
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/RZSVudVF7DhOz5Rhcc6t-uEnKtE.roa
Signing time: Tue 02 Jan 2024 04:30:12 +0000
ROA not before: Tue 02 Jan 2024 04:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206238
IP address blocks: 45.142.144.0/22 maxlen: 24
45.137.88.0/22 maxlen: 24
45.138.52.0/22 maxlen: 24
45.137.100.0/22 maxlen: 24
45.142.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:b3:a2:98:00:5b:6f:d6:b4:8d:dc:7f:52:0c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=459495b9d545ec384ecf946171ceadfae1272ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:dd:96:d9:44:dd:e2:ff:b6:5c:18:9b:c3:
29:12:ed:8d:14:eb:9a:06:47:09:65:83:71:5a:e8:
0a:0d:9f:88:96:74:43:bd:5d:48:f7:df:43:bb:3d:
69:26:c3:51:47:43:07:b6:e8:dc:ee:72:1e:09:82:
50:b2:24:b4:93:3a:77:65:b4:af:5f:52:f6:a3:2e:
8e:4a:32:7e:9a:5a:08:a3:d3:b5:9a:d3:f4:6e:9d:
67:8d:f6:d2:03:32:e0:70:60:d9:5d:5d:82:19:d9:
e5:a2:94:09:54:21:25:b5:bd:12:7a:99:d7:01:d5:
ec:71:b6:92:d1:81:10:13:46:34:22:bb:0d:60:cb:
76:32:65:25:35:32:ff:d0:f4:f7:f9:57:d1:37:96:
d2:74:ee:88:78:df:73:6a:e2:35:83:2c:61:70:31:
6a:da:33:af:58:84:46:55:68:44:b8:46:63:9c:93:
27:29:d1:ab:24:ad:86:58:c9:f7:66:58:3e:16:7a:
e5:90:13:3a:fd:8f:c9:38:8f:3f:bc:93:a7:e9:bf:
8a:de:2d:e8:53:9c:60:a3:2f:a5:c1:24:77:51:43:
4b:07:5e:98:1f:38:03:d5:70:cf:77:9d:fb:fe:a2:
60:94:c8:b1:56:ea:aa:9f:8f:9a:01:aa:3a:ca:09:
b5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:94:95:B9:D5:45:EC:38:4E:CF:94:61:71:CE:AD:FA:E1:27:2A:D1
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/RZSVudVF7DhOz5Rhcc6t-uEnKtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.88.0/22
45.137.100.0/22
45.138.52.0/22
45.142.16.0/22
45.142.144.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:a7:f2:6f:22:cb:08:d4:e4:d0:e6:f1:a1:4b:3e:b8:d2:67:
1e:af:07:68:e2:00:0c:a7:eb:d2:5d:6a:f3:d0:11:47:25:31:
e2:f1:b9:ae:a7:15:cc:b6:a5:0f:4e:cb:6e:33:b1:2a:e5:ac:
56:3b:e8:e5:0a:34:66:2c:a1:a9:57:0b:f6:90:bc:c2:76:8e:
a9:64:70:5e:52:6a:e2:85:86:4f:20:9e:04:95:77:6b:3e:3c:
13:25:cb:12:c0:15:f1:23:ed:63:c5:02:86:3b:00:af:d4:c2:
59:b9:01:35:72:44:b5:ef:c4:a8:78:6d:16:60:04:df:40:6e:
31:75:ab:29:2e:ed:d4:7c:6f:d4:5e:8c:f0:d4:e5:26:07:bc:
e1:65:77:79:85:56:ec:90:07:f0:26:5b:b9:3f:a1:4a:8f:75:
67:bf:74:cd:dd:cb:a2:4c:c7:5a:5c:68:65:32:68:ef:ac:75:
b4:c2:48:aa:ab:19:e0:56:c3:11:e8:e2:3b:c5:4c:0a:90:39:
71:a6:c9:93:06:94:bb:16:18:4e:ee:a0:1d:49:3d:7d:e6:b7:
ef:f8:c1:2a:57:0d:f0:ce:7f:a9:06:81:f5:cb:3d:0e:de:d8:
07:84:9d:00:f7:66:d0:f6:71:5d:e5:a5:84:a8:f5:81:66:0b:
f2:d2:54:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:07:00 2024 by rpki-client on console-ams.rpki-client.org