Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/jEAu0LnmdcuI0GRufxbfQOXaWps.roa
File: jEAu0LnmdcuI0GRufxbfQOXaWps.roa (raw, json)
Hash identifier: 5xrpY3v9lNPs2JcpzAql8Xe08+ZtXKmYQBfVoKH85KM=
Subject key identifier: 8C:40:2E:D0:B9:E6:75:CB:88:D0:64:6E:7F:16:DF:40:E5:DA:5A:9B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0191BB7660C71C75BA7008616E6AF0D6B6CA
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/jEAu0LnmdcuI0GRufxbfQOXaWps.roa
Signing time: Wed 04 Sep 2024 05:16:22 +0000
ROA not before: Wed 04 Sep 2024 05:16:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 45.84.216.0/24 maxlen: 24
45.85.90.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
45.130.143.0/24 maxlen: 24
45.146.53.0/24 maxlen: 24
45.148.25.0/24 maxlen: 24
45.157.98.0/24 maxlen: 24
45.157.99.0/24 maxlen: 24
136.144.26.0/24 maxlen: 24
136.144.27.0/24 maxlen: 24
185.227.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bb:76:60:c7:1c:75:ba:70:08:61:6e:6a:f0:d6:b6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Sep 4 05:16:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c402ed0b9e675cb88d0646e7f16df40e5da5a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:87:05:0d:1e:62:8d:03:fc:fe:83:e3:78:71:
6d:3a:84:55:5c:70:f1:11:48:66:e3:15:d9:ea:a0:
12:aa:e6:0c:cd:ab:73:ba:2a:85:cc:ff:e9:ea:ae:
67:ed:d4:db:95:f5:42:ca:47:01:d7:93:9b:10:2e:
5b:4b:d8:26:f8:a0:5f:ae:30:0c:f7:76:7e:13:e5:
ed:f2:38:e5:3c:26:4b:c9:40:33:f6:ef:35:60:1b:
8c:24:db:de:f8:53:7d:2a:fb:19:fd:78:6c:7a:ec:
48:fa:2a:f5:10:ad:bf:86:fa:16:e6:68:a6:24:57:
ea:64:82:52:e4:2c:78:22:cc:bc:73:66:a8:0a:2a:
37:42:29:45:db:38:f6:8b:6f:a8:36:59:91:93:0b:
2c:63:90:fa:b9:56:95:d5:f5:36:bd:f7:f0:31:ef:
1d:47:db:b3:ce:96:9b:76:1f:1f:ea:b9:72:81:7e:
d9:d4:f7:4e:5b:6c:b8:78:1a:3e:b4:ff:97:ec:0f:
e4:31:68:0a:90:c7:37:ce:27:49:8c:53:a5:25:e5:
da:f3:4f:3e:fb:0b:c8:e3:d0:2d:04:5a:d9:dc:81:
62:14:93:2a:59:d0:96:6c:0f:bb:53:30:58:5d:e5:
98:6f:49:eb:c0:6f:4e:59:69:79:86:aa:cc:1c:8a:
3f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:40:2E:D0:B9:E6:75:CB:88:D0:64:6E:7F:16:DF:40:E5:DA:5A:9B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/jEAu0LnmdcuI0GRufxbfQOXaWps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/24
45.85.90.0/24
45.95.243.0/24
45.130.143.0/24
45.146.53.0/24
45.148.25.0/24
45.157.98.0/23
136.144.26.0/23
185.227.33.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6f:59:92:06:fe:cb:2d:6b:5c:02:7e:68:02:90:eb:6d:bd:
2b:2c:8e:8d:da:5d:4a:b1:38:ef:ac:66:88:66:aa:3f:90:67:
66:71:83:7b:19:50:79:44:4e:bd:09:4b:a9:1d:e2:21:19:c3:
e7:5f:ca:03:02:5f:ab:5b:de:e7:db:61:3d:30:2e:52:b9:b0:
ad:11:02:fb:03:3c:31:bb:cd:eb:5c:f8:c9:74:52:1a:c2:14:
75:68:9e:c9:4c:22:9c:63:09:a1:a3:74:35:78:38:d5:6e:d8:
ef:cb:bc:b4:9d:9d:4a:b0:fd:0a:6a:1d:ef:bb:32:65:71:9c:
5e:4c:ca:f3:dc:7d:a6:8e:aa:5a:e6:25:8d:2f:65:32:b0:e7:
02:97:eb:1c:a3:60:c8:70:73:1d:53:a5:c8:44:24:a3:69:00:
7d:fa:78:2b:47:3e:84:96:64:d0:b5:04:e6:ac:7a:79:bb:ac:
f9:35:96:35:29:8d:3f:38:bc:bd:f7:ef:af:0a:f8:45:96:0c:
f9:9c:50:2f:2e:c2:50:a1:4d:49:ab:09:2b:e3:fb:c6:ff:77:
0d:9b:4d:02:27:be:b0:50:7b:ff:09:ee:ce:54:59:6a:24:5d:
b0:5a:02:d4:07:1f:ed:99:2f:f5:fc:13:6b:51:81:8f:2b:62:
34:cd:14:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:46:11 2024 by rpki-client on console-fra.rpki-client.org