Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/RaJeMyJ17K-0c8bz6_IAt-TCq9k.roa
File: RaJeMyJ17K-0c8bz6_IAt-TCq9k.roa (raw, json)
Hash identifier: tX4sWvDL6tqhr+9xX2ZviaShC2Yq0Ho5olzZwI02zKA=
Subject key identifier: 45:A2:5E:33:22:75:EC:AF:B4:73:C6:F3:EB:F2:00:B7:E4:C2:AB:D9
Certificate issuer: /CN=c2aeab522f043b88c0507f05f864b3bd5ec42c57
Certificate serial: 018CC49388C7ADCAE53A5CFE242B72247521
Authority key identifier: C2:AE:AB:52:2F:04:3B:88:C0:50:7F:05:F8:64:B3:BD:5E:C4:2C:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wq6rUi8EO4jAUH8F-GSzvV7ELFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/RaJeMyJ17K-0c8bz6_IAt-TCq9k.roa
Signing time: Mon 01 Jan 2024 10:30:52 +0000
ROA not before: Mon 01 Jan 2024 10:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204996
IP address blocks: 193.30.134.0/24 maxlen: 24
193.30.166.0/24 maxlen: 24
193.30.162.0/24 maxlen: 24
193.30.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/wq6rUi8EO4jAUH8F-GSzvV7ELFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/wq6rUi8EO4jAUH8F-GSzvV7ELFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/wq6rUi8EO4jAUH8F-GSzvV7ELFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 01:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:88:c7:ad:ca:e5:3a:5c:fe:24:2b:72:24:75:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2aeab522f043b88c0507f05f864b3bd5ec42c57
Validity
Not Before: Jan 1 10:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45a25e332275ecafb473c6f3ebf200b7e4c2abd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:02:3a:1c:19:20:48:4b:93:83:0e:e4:0f:e3:
18:bc:f8:c8:ae:1b:ca:25:0a:7a:d5:7c:4a:65:13:
7a:0f:9d:ef:2a:73:4c:0c:5a:f4:c4:43:1a:1b:1a:
c1:74:fc:8e:45:1f:4f:11:ec:63:c0:4b:4a:cc:28:
3f:ff:99:5c:e0:d0:58:a0:9d:d8:ae:99:89:43:f2:
ec:ad:5f:5f:10:32:fa:af:80:76:a8:64:83:87:18:
c1:8a:3e:25:c7:17:b1:0c:63:15:a0:f5:74:79:66:
60:2f:c5:28:aa:f0:af:5e:6a:cc:a7:b4:26:ef:49:
8b:70:23:d4:8c:5e:d1:75:72:a2:2f:44:3e:ee:1a:
05:2e:39:d1:e1:06:83:c5:3b:ba:23:c9:3c:94:f5:
40:d3:58:1d:a7:a9:b9:b5:74:20:b3:6e:b3:33:20:
5f:a1:b9:75:cc:54:00:a4:2f:4f:12:aa:f2:c0:3e:
f0:fb:90:04:30:aa:b5:94:66:56:e7:00:53:ee:85:
c3:1e:47:ee:39:6b:37:34:3f:b8:69:fc:3d:ab:45:
cd:5c:cb:a9:2d:a1:ca:37:91:05:9a:48:14:fb:56:
5d:96:9e:ad:c8:71:0c:0c:a0:54:87:37:6b:80:32:
b8:5e:a8:c4:c0:c4:30:a5:77:94:03:72:8b:52:52:
30:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A2:5E:33:22:75:EC:AF:B4:73:C6:F3:EB:F2:00:B7:E4:C2:AB:D9
X509v3 Authority Key Identifier:
keyid:C2:AE:AB:52:2F:04:3B:88:C0:50:7F:05:F8:64:B3:BD:5E:C4:2C:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wq6rUi8EO4jAUH8F-GSzvV7ELFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/RaJeMyJ17K-0c8bz6_IAt-TCq9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/wq6rUi8EO4jAUH8F-GSzvV7ELFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.134.0/24
193.30.162.0/24
193.30.165.0-193.30.166.255
Signature Algorithm: sha256WithRSAEncryption
27:42:33:ec:e3:a4:41:02:ce:e4:2c:20:78:6f:77:17:32:d6:
2a:92:90:0b:db:8d:90:97:69:78:49:d3:6b:ca:49:8e:df:02:
13:2d:f2:65:d8:25:c2:ac:57:0c:a9:87:d5:b3:38:2f:0e:f4:
fd:ab:83:61:74:39:59:b3:f9:d0:c9:64:db:9c:a2:88:ff:a2:
23:20:2e:30:61:84:3e:c9:f1:f5:81:1d:6a:92:2f:21:a7:c3:
46:75:8e:6f:8d:c6:88:80:5c:76:bd:91:ff:aa:13:1a:1c:8a:
e6:29:24:b1:91:4d:a3:83:4f:64:1d:ae:a8:e2:18:fe:8a:36:
6e:91:0c:89:32:ab:00:aa:43:bc:98:26:39:8a:b8:26:48:5e:
86:7d:10:85:ed:68:de:48:3a:da:c6:53:b5:76:ea:c8:92:22:
ad:2f:96:86:f0:e3:d2:e3:05:1c:3b:58:ea:51:15:88:13:c2:
b9:57:8c:60:10:51:22:25:8d:1e:e1:f0:15:ea:ef:83:ab:73:
29:d9:3e:1a:4c:4a:36:f7:a8:55:ba:75:05:ed:af:3e:91:7b:
8e:bf:bd:4d:82:88:e3:8c:06:e7:a1:37:7f:0c:05:8a:b5:43:
39:e6:2f:5f:89:e5:26:b5:5d:da:87:58:89:7e:40:98:ed:5a:
12:62:c4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 10:01:27 2024 by rpki-client on console-ams.rpki-client.org