Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/J1fIDOvPNxmL5YtKK9wMuDp-JC4.roa
File: J1fIDOvPNxmL5YtKK9wMuDp-JC4.roa (raw, json)
Hash identifier: xj3OQnDTuCcIwB5WlvNRyIeHq1SZLeoyhvd/e4ClIa4=
Subject key identifier: 27:57:C8:0C:EB:CF:37:19:8B:E5:8B:4A:2B:DC:0C:B8:3A:7E:24:2E
Certificate issuer: /CN=5954c7b7e6df7578466d82b52715cb209f7f21c5
Certificate serial: 018F04A4EDA1582657A26D7A30964DA0B3A7
Authority key identifier: 59:54:C7:B7:E6:DF:75:78:46:6D:82:B5:27:15:CB:20:9F:7F:21:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/J1fIDOvPNxmL5YtKK9wMuDp-JC4.roa
Signing time: Mon 22 Apr 2024 07:11:08 +0000
ROA not before: Mon 22 Apr 2024 07:11:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35710
IP address blocks: 45.84.32.0/22 maxlen: 24
91.132.200.0/22 maxlen: 24
185.168.151.0/24 maxlen: 24
193.111.100.0/22 maxlen: 24
2a09:d180::/29 maxlen: 32
2a0e:9580::/29 maxlen: 32
2a12:13c0::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:04:a4:ed:a1:58:26:57:a2:6d:7a:30:96:4d:a0:b3:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5954c7b7e6df7578466d82b52715cb209f7f21c5
Validity
Not Before: Apr 22 07:11:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2757c80cebcf37198be58b4a2bdc0cb83a7e242e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6d:51:d8:84:dc:a5:ce:d6:f9:61:6d:b9:88:
6a:fe:64:68:cd:2f:dd:6e:15:d3:ab:aa:e1:03:33:
bc:d2:fa:44:7e:bf:87:08:0e:97:98:16:90:ca:a0:
56:71:87:ca:09:fb:6e:18:02:f1:43:16:05:20:c6:
66:29:1e:38:a8:1e:fb:6b:bd:08:f8:80:35:26:c0:
f5:77:3c:b9:8c:b7:dd:03:26:e5:6e:dd:41:1a:00:
62:94:da:30:98:fc:ba:e7:fa:71:3e:36:f3:67:f4:
80:25:a6:14:4c:6a:c2:54:0a:be:c8:79:cf:03:3f:
63:1f:80:09:72:27:44:9e:45:6f:2c:0a:eb:0d:63:
58:33:67:92:42:16:f8:c0:3f:8e:df:54:b9:02:04:
92:a9:b1:e2:5a:e9:96:82:46:3a:40:ad:8c:83:2a:
21:82:85:9c:7c:26:b1:ae:a4:46:49:a4:db:93:12:
32:d0:37:d8:ea:d3:7b:97:22:73:2d:f0:50:9c:8f:
90:da:96:af:8f:de:2f:60:bf:ad:00:45:a9:0e:3d:
9b:64:83:e7:f5:26:e0:40:0f:d7:56:c7:fb:d1:ec:
3e:cd:a6:5d:02:42:7d:98:c6:49:09:fb:e2:c2:1e:
71:fb:39:57:80:50:26:5b:04:17:d0:59:70:05:c2:
9d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:57:C8:0C:EB:CF:37:19:8B:E5:8B:4A:2B:DC:0C:B8:3A:7E:24:2E
X509v3 Authority Key Identifier:
keyid:59:54:C7:B7:E6:DF:75:78:46:6D:82:B5:27:15:CB:20:9F:7F:21:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/J1fIDOvPNxmL5YtKK9wMuDp-JC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.32.0/22
91.132.200.0/22
185.168.151.0/24
193.111.100.0/22
IPv6:
2a09:d180::/29
2a0e:9580::/29
2a12:13c0::/29
Signature Algorithm: sha256WithRSAEncryption
59:17:6d:d9:e1:0c:ea:5e:cc:0d:8c:3e:fa:e9:80:82:fd:3b:
21:6f:4f:45:b7:68:4b:cf:ab:ed:4a:f6:a8:a0:2a:af:46:cc:
af:e2:dd:06:60:2a:99:22:1f:d9:b1:c5:5f:e9:b9:19:a3:97:
f8:38:12:3a:b6:19:15:ac:ea:6b:eb:1c:3d:8f:56:de:fc:8f:
be:ea:7b:0c:14:45:f2:e2:fa:df:ef:c1:6a:cc:9a:cc:e3:f5:
ef:a4:56:83:1c:b7:7a:3f:43:92:35:0d:9b:58:30:cc:f4:a8:
80:98:9c:a6:11:6b:9b:ca:98:dc:d7:3b:0f:f2:7d:d4:62:2f:
0d:89:ec:c0:ce:b6:ba:14:79:95:9c:09:3b:c0:6d:c9:aa:50:
ee:79:c1:13:9a:5c:bc:6a:ce:1c:58:3e:20:cd:dd:77:68:39:
76:a5:8b:9d:97:a1:13:6b:24:89:9e:a9:5d:d5:5d:86:b3:81:
4c:c8:a8:6e:38:31:58:d0:ae:df:4a:f6:bf:e8:63:66:25:27:
50:34:a8:44:c4:08:e6:44:52:13:41:8b:79:83:99:24:dc:23:
d3:87:49:16:60:50:6a:62:61:5a:25:81:ab:a8:7e:ff:a6:1f:
2b:c1:df:9b:fd:b2:ab:c5:2c:b4:6e:0c:30:17:67:de:de:10:
bf:09:3a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:58:00 2024 by rpki-client on console-fra.rpki-client.org