Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/g_UNWCP0BPwj-XE2FVQiP7Sa4hY.roa
File: g_UNWCP0BPwj-XE2FVQiP7Sa4hY.roa (raw, json)
Hash identifier: tTmFLnH4tDZnujWOH98nGESNElgA7ZuGkk0OD/ylJJ4=
Subject key identifier: 83:F5:0D:58:23:F4:04:FC:23:F9:71:36:15:54:22:3F:B4:9A:E2:16
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 01936910D2440BBEF3AC1271835C3B2D924A
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/g_UNWCP0BPwj-XE2FVQiP7Sa4hY.roa
Signing time: Tue 26 Nov 2024 15:22:10 +0000
ROA not before: Tue 26 Nov 2024 15:22:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8796
IP address blocks: 45.81.128.0/24 maxlen: 24
45.91.80.0/24 maxlen: 24
45.91.81.0/24 maxlen: 24
45.91.82.0/24 maxlen: 24
45.91.83.0/24 maxlen: 24
45.135.116.0/24 maxlen: 24
45.135.117.0/24 maxlen: 24
45.140.88.0/24 maxlen: 24
45.140.89.0/24 maxlen: 24
45.153.8.0/24 maxlen: 24
45.153.9.0/24 maxlen: 24
45.155.222.0/24 maxlen: 24
45.155.223.0/24 maxlen: 24
193.227.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 09:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:10:d2:44:0b:be:f3:ac:12:71:83:5c:3b:2d:92:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Nov 26 15:22:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83f50d5823f404fc23f971361554223fb49ae216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b3:f8:52:ef:de:0f:d9:f0:30:69:9d:5b:39:
22:44:4f:e7:c0:b0:99:8b:b9:f3:e7:d9:b7:cd:a0:
23:fb:12:54:a9:1c:e7:8c:a4:86:8b:3a:a5:81:07:
dd:76:8b:c2:e0:c3:f2:3e:53:b9:c0:90:70:cb:9c:
e1:45:f9:85:08:c7:60:13:cd:66:1a:a3:45:0c:ae:
f8:5f:40:cd:e2:a5:cc:5a:24:1b:cf:1f:01:7c:8b:
d6:33:95:1f:7c:c3:3f:a8:f4:b4:96:8c:94:66:9a:
35:83:5c:3e:ba:d7:1c:f3:34:fc:5c:fd:20:bb:66:
8e:f5:3d:4e:ba:59:21:56:8e:23:35:75:21:7a:b5:
1a:16:1a:4a:4e:05:aa:5b:26:a9:71:31:c5:55:69:
0c:17:16:d4:87:4c:89:d5:91:71:9a:21:cc:11:c1:
36:87:3e:0f:e5:2d:77:25:5c:b9:3f:c4:fa:96:c1:
bf:fe:21:97:8a:5e:3b:3a:f2:0c:c8:f6:55:e8:c0:
e3:f7:41:9a:ae:21:f4:26:8b:4b:20:c9:78:76:58:
3e:eb:5b:bd:e1:c3:60:45:de:db:7f:90:21:48:1c:
1e:a5:2a:4d:38:ee:0a:1a:f0:f2:50:04:6a:8e:9c:
08:15:4d:47:b1:48:0d:65:ca:78:19:42:79:60:14:
40:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F5:0D:58:23:F4:04:FC:23:F9:71:36:15:54:22:3F:B4:9A:E2:16
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/g_UNWCP0BPwj-XE2FVQiP7Sa4hY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.128.0/24
45.91.80.0/22
45.135.116.0/23
45.140.88.0/23
45.153.8.0/23
45.155.222.0/23
193.227.121.0/24
Signature Algorithm: sha256WithRSAEncryption
06:98:fe:4f:d0:32:90:50:4c:2e:91:4c:b9:73:65:ab:f8:61:
ac:2f:e1:a3:2c:21:31:97:53:65:40:90:8f:6f:ab:ec:40:cb:
0c:96:76:47:a7:a6:18:3a:37:af:12:52:4a:bf:80:07:ec:33:
e6:38:5d:25:29:48:ff:10:15:b4:35:76:60:e3:35:4c:70:dd:
9f:c3:64:cb:e1:f1:0b:b0:9f:34:ac:c8:f6:63:dd:ee:ed:e2:
55:93:61:98:ad:1c:39:f5:ad:89:ae:de:c6:ba:f4:1c:9d:ed:
fa:2c:3e:d2:1d:a9:3a:38:f2:e0:12:95:c0:99:b8:d2:86:e7:
87:65:35:fc:79:46:11:d2:b5:6b:65:93:84:b8:4c:f6:8b:c3:
b6:a9:fa:b3:36:86:ba:19:37:4c:d5:c1:69:0a:4b:ef:82:e8:
e8:46:ef:bc:d4:4c:50:46:72:4c:64:b5:82:41:27:dd:a0:74:
43:4a:d9:3d:bd:d7:b3:4a:85:b4:b3:98:a8:24:bb:43:8c:1e:
bf:03:17:46:33:3a:74:60:c3:bc:8e:37:be:d6:11:d2:30:1f:
c4:5c:f8:13:d0:a3:79:57:ec:e9:a8:02:6e:a8:29:b4:05:2b:
d8:07:65:ee:15:91:42:b2:e5:26:81:78:26:f7:09:6f:61:c1:
17:e7:30:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 18:45:20 2024 by rpki-client on console-fra.rpki-client.org