Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SHLodv6HQ1GCkUqyn3EhlJNZZfk.roa
File: SHLodv6HQ1GCkUqyn3EhlJNZZfk.roa (raw, json)
Hash identifier: jD4YD+2PAwOL4ZrNfZxiBdkvfpZa71g9ZkrtVn7fe+I=
Subject key identifier: 48:72:E8:76:FE:87:43:51:82:91:4A:B2:9F:71:21:94:93:59:65:F9
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 019192D8BA9A6D2D7DB9387BEA339853D432
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SHLodv6HQ1GCkUqyn3EhlJNZZfk.roa
Signing time: Tue 27 Aug 2024 07:59:22 +0000
ROA not before: Tue 27 Aug 2024 07:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137409
IP address blocks: 45.130.141.0/24 maxlen: 24
2a0f:2740::/29 maxlen: 48
2a0f:e383::/32 maxlen: 48
2a0f:e384::/32 maxlen: 48
2a0f:e385::/32 maxlen: 48
2a0f:e387::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:d8:ba:9a:6d:2d:7d:b9:38:7b:ea:33:98:53:d4:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Aug 27 07:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4872e876fe87435182914ab29f712194935965f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b1:60:19:2b:62:47:e0:78:fe:d8:26:e4:43:
49:5e:37:fd:73:62:5e:5f:3f:6e:33:a6:63:67:86:
e4:17:28:90:36:00:1c:c7:a6:3c:8c:9f:2f:7a:24:
0c:d1:ab:76:b8:3a:b4:9a:ec:4e:7d:6e:5e:e7:fe:
b1:1f:a7:19:6f:c2:25:9a:65:1d:d3:e1:ca:fb:c9:
e1:25:57:13:38:11:ff:49:0a:34:ca:23:b6:6a:a9:
b0:4c:2f:b3:55:33:38:cf:7c:a0:c5:db:2a:83:a1:
f0:70:96:2f:47:d3:73:22:f3:7f:0a:67:01:de:03:
0e:2d:31:c1:fc:35:9e:58:2f:47:7b:18:18:29:ed:
35:20:25:70:93:04:eb:34:d0:24:bf:7f:ae:d3:be:
a1:58:e0:aa:68:80:db:9f:d7:85:b5:21:05:16:fb:
68:a4:f3:4c:14:6c:80:b6:44:a4:be:aa:cf:00:8b:
95:33:49:c4:2e:d0:f5:3b:be:55:a9:2a:4d:2d:95:
b8:cd:aa:69:e8:9d:b9:49:e2:84:10:bf:ba:4a:72:
38:38:71:a7:10:fe:b6:ae:87:ef:6a:bb:39:5f:71:
ed:db:60:2b:3c:22:39:fe:dd:23:9f:6d:de:f9:27:
90:dc:07:39:a9:f2:d3:1d:68:ca:61:5a:4a:be:01:
b0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:72:E8:76:FE:87:43:51:82:91:4A:B2:9F:71:21:94:93:59:65:F9
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SHLodv6HQ1GCkUqyn3EhlJNZZfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.141.0/24
IPv6:
2a0f:2740::/29
2a0f:e383::-2a0f:e385:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:e387::/32
Signature Algorithm: sha256WithRSAEncryption
58:99:df:5a:13:e9:f4:a3:4a:c5:e5:c4:f0:62:f2:41:cb:11:
6f:f2:c2:cb:c7:6f:2b:cb:0e:4c:21:2b:d9:15:21:ce:ab:e9:
90:70:5d:e8:57:a0:66:27:b3:ee:43:c5:bb:68:25:19:f7:59:
47:34:f0:30:57:8f:0a:e6:fb:13:8a:5d:2d:7a:92:96:08:4a:
63:a1:f6:09:e2:e3:5d:db:3a:2c:14:49:d6:25:ea:b2:1a:a3:
05:07:b5:54:13:44:4d:1e:db:05:a7:78:52:19:b6:6f:52:ec:
70:1e:ee:a5:8c:1f:17:dc:c2:2b:01:f4:da:cb:50:f5:7d:64:
9e:19:7e:2e:ed:c8:b0:cc:d2:80:37:bf:df:5a:8b:29:c8:fd:
07:37:fc:3a:df:67:e7:f8:89:9a:56:96:b0:cc:22:5a:f8:e1:
7d:1e:46:08:42:ee:31:06:a1:09:11:fd:3c:c2:a8:5e:16:b4:
05:90:12:78:11:e2:84:cd:0b:ea:cb:07:cd:9f:33:d2:e8:5a:
ad:0e:cb:21:b9:44:3d:c0:69:f2:e1:a9:00:b0:e5:d8:6c:48:
53:41:3b:20:16:fa:84:ff:bf:7a:3d:48:ef:a0:e7:0e:50:c3:
54:25:ef:31:ee:12:00:03:d3:65:c4:6c:a1:ac:a6:43:e3:57:
d4:c0:4b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:40:14 2024 by rpki-client on console-ams.rpki-client.org