Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/xwWgTr-3zmESjvyC00ZWiVgDOo0.roa
File: xwWgTr-3zmESjvyC00ZWiVgDOo0.roa (raw, json)
Hash identifier: 9u2LTyb2f9entgyDrsHb6WJXL6NH/CaqHJ9uba0dK2w=
Subject key identifier: C7:05:A0:4E:BF:B7:CE:61:12:8E:FC:82:D3:46:56:89:58:03:3A:8D
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01902639697C69F7D65B28CDF2326BAB3264
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/xwWgTr-3zmESjvyC00ZWiVgDOo0.roa
Signing time: Mon 17 Jun 2024 12:43:34 +0000
ROA not before: Mon 17 Jun 2024 12:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60798
IP address blocks: 45.138.18.0/24 maxlen: 24
45.139.162.0/24 maxlen: 24
45.145.250.0/24 maxlen: 24
45.149.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:26:39:69:7c:69:f7:d6:5b:28:cd:f2:32:6b:ab:32:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 17 12:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c705a04ebfb7ce61128efc82d346568958033a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:e9:53:f9:36:5e:11:64:2e:87:d0:be:27:
48:41:4f:8a:96:1d:0d:91:86:41:87:d5:59:91:0b:
cd:87:b3:5a:1b:58:a9:5c:de:be:07:ef:2f:a7:5c:
57:48:34:ae:9d:71:e4:09:94:b6:19:2c:af:d1:bc:
50:89:13:6f:f0:86:75:06:51:c0:83:2c:8a:b6:8d:
b7:57:22:a3:b5:32:ce:11:fe:d6:2e:75:3a:da:ca:
e0:da:c5:a1:cd:c3:ed:e4:2f:5b:4e:69:e1:92:72:
80:de:dd:90:13:d7:4d:4f:4c:e4:41:12:71:6d:b4:
6f:b0:cd:77:0d:9a:cd:43:95:08:ce:52:e2:3d:21:
6a:f3:02:05:5f:a1:21:18:13:25:04:84:99:9d:56:
45:04:89:27:1b:71:ef:e4:37:79:84:62:0b:1c:22:
8a:70:c7:8f:07:99:bf:bf:50:8e:c6:cf:9a:e8:56:
05:26:52:b7:2f:9c:41:4f:b6:e6:ba:63:46:f1:db:
a5:7a:42:1d:85:e6:ec:aa:54:9d:18:57:9c:74:3b:
86:e0:e4:13:53:5d:1f:92:8e:26:a9:58:43:0c:d2:
eb:ef:33:52:40:5a:94:fc:28:07:3c:41:4a:30:df:
26:5b:47:04:dd:ca:65:d5:35:1b:df:76:29:4d:38:
83:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:05:A0:4E:BF:B7:CE:61:12:8E:FC:82:D3:46:56:89:58:03:3A:8D
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/xwWgTr-3zmESjvyC00ZWiVgDOo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.18.0/24
45.139.162.0/24
45.145.250.0/24
45.149.1.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:27:a8:79:7a:27:8a:ad:aa:22:f6:0a:b3:d6:6b:45:65:0a:
00:6c:e7:60:66:40:64:49:e6:2e:12:60:c1:b8:ad:54:42:25:
12:f5:f8:81:55:07:fb:d1:5c:c9:ef:10:fa:2d:c6:3e:83:30:
52:ce:9e:57:90:e5:67:97:db:44:a3:be:f3:36:13:8a:e4:23:
df:c8:34:ef:55:bf:bb:07:76:e3:a9:fe:f8:27:17:c7:03:17:
c3:49:db:12:fd:ac:59:58:80:7f:12:7b:38:c8:6c:5a:0f:d0:
8c:0f:d1:9a:fc:e9:18:ed:33:20:09:c7:3a:ed:b1:03:1f:5c:
14:51:fa:65:9a:49:90:b5:ce:7f:90:a0:40:60:d3:40:5b:2f:
c9:7c:60:55:61:83:04:17:4e:f7:2b:09:cb:e8:2f:3b:17:ea:
9c:c5:9a:02:e4:93:32:6e:07:74:15:7f:18:e2:92:48:71:dc:
b7:d5:d8:1f:74:40:72:22:4c:e7:10:46:de:e1:a0:db:87:d4:
82:81:d4:bb:27:b4:97:c5:29:f3:ea:c6:a2:db:91:e6:7c:91:
9d:12:fb:41:40:a4:65:e0:40:df:64:98:63:75:98:9e:d4:16:
f2:75:d4:90:cc:64:49:bb:61:0f:5c:7a:91:dc:21:ba:22:b1:
83:66:2c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:05:49 2024 by rpki-client on console-fra.rpki-client.org