Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hRPhe0O3xIg4N7Mu2lTmcCTP6Xo.roa
File: hRPhe0O3xIg4N7Mu2lTmcCTP6Xo.roa (raw, json)
Hash identifier: 7X6L/cXlQFD+2p+6RpiChEbCT1hg0ra1590p3iYUDQk=
Subject key identifier: 85:13:E1:7B:43:B7:C4:88:38:37:B3:2E:DA:54:E6:70:24:CF:E9:7A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 019427B395F5FA58FFDD86A05B7925B4074B
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hRPhe0O3xIg4N7Mu2lTmcCTP6Xo.roa
Signing time: Thu 02 Jan 2025 15:47:48 +0000
ROA not before: Thu 02 Jan 2025 15:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20712
IP address blocks: 45.140.215.0/24 maxlen: 24
45.142.205.0/24 maxlen: 24
45.142.207.0/24 maxlen: 24
45.144.157.0/24 maxlen: 24
45.144.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 09:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:95:f5:fa:58:ff:dd:86:a0:5b:79:25:b4:07:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 15:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8513e17b43b7c4883837b32eda54e67024cfe97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6b:0f:25:c4:df:fe:51:d8:66:24:b6:3e:30:
b3:ce:68:d9:e2:46:cf:cd:98:28:a1:a8:14:90:da:
3c:f6:cc:22:e3:bb:b4:18:18:a2:e9:8c:dc:41:92:
c5:e9:7a:6b:60:35:f7:b8:f0:cc:1d:71:a9:64:ca:
4e:29:05:ec:a9:98:03:7e:91:a8:f3:11:96:58:9a:
95:01:4b:ae:55:36:25:5e:bd:d3:04:7a:d1:d2:f8:
9e:1e:7a:b2:33:23:ab:f1:bd:18:03:df:a2:03:63:
75:92:51:f8:ee:e5:6f:91:e6:f7:db:d0:3f:1f:b3:
ce:16:3b:3c:2c:01:19:92:1a:47:9a:42:21:48:1a:
a1:07:ed:5d:01:cd:0e:2b:80:2f:7d:98:b3:44:bf:
90:21:47:76:c4:00:31:af:10:f3:65:a6:95:17:45:
a8:e0:ba:8b:62:35:87:33:a7:e4:a0:4c:38:b9:b4:
f8:22:63:0a:38:21:d2:bf:7c:08:59:dc:de:33:d6:
07:8a:7a:7a:e9:b7:97:28:6f:49:f4:1c:59:ea:d7:
82:49:4c:dc:8d:3d:b9:0c:d7:d7:64:d3:34:39:d8:
29:e4:01:28:5f:b5:99:4d:8d:d0:7b:93:5c:ed:c0:
9b:75:3b:dd:2c:4e:48:40:4d:0b:92:3a:b3:b0:d8:
8a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:13:E1:7B:43:B7:C4:88:38:37:B3:2E:DA:54:E6:70:24:CF:E9:7A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hRPhe0O3xIg4N7Mu2lTmcCTP6Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.215.0/24
45.142.205.0/24
45.142.207.0/24
45.144.157.0/24
45.144.159.0/24
Signature Algorithm: sha256WithRSAEncryption
90:d5:28:29:f9:ef:03:4c:15:14:91:81:e8:46:4a:a3:13:cf:
d1:a7:41:72:83:5d:f5:19:f8:cb:b3:2a:42:83:bb:e9:00:fc:
be:7f:32:2a:87:fe:20:7c:7f:7c:89:48:50:c4:a8:0c:f3:39:
44:98:be:68:ef:b5:0f:ab:56:a1:c6:57:22:6b:3a:96:06:c5:
17:ce:1e:06:67:47:6e:44:ae:19:e6:7a:21:88:91:c3:1b:11:
45:7a:18:99:b2:da:dd:81:0d:4b:d4:e4:15:a3:79:98:0a:65:
d9:72:f2:16:f3:00:06:67:90:b6:90:c6:26:aa:1a:29:7a:3a:
a2:82:e3:de:7b:cf:a6:f9:50:ed:3e:84:09:22:84:c6:d0:ba:
ac:9c:9b:c6:65:2f:68:81:44:11:5c:f3:2f:1f:f2:43:7f:cd:
ff:91:b9:ad:0b:77:c0:5e:28:59:b6:c2:d4:f5:ed:ee:ce:b9:
39:cf:7f:b1:d0:ba:c0:d2:b0:32:59:c4:01:ab:ac:b5:d2:01:
f1:0a:a1:6f:95:7c:d2:c0:6f:7a:f3:52:bf:b1:ef:79:16:19:
12:13:da:02:48:86:91:9e:56:92:ce:25:27:4a:d9:ea:b9:ac:
9c:e5:27:45:1c:61:15:95:b3:a2:cd:3c:04:74:f1:f3:7f:74:
28:39:2b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:55:23 2025 by rpki-client