Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/ZB8poDHsgXcIZT1fwB-zLFeVhL0.roa
File: ZB8poDHsgXcIZT1fwB-zLFeVhL0.roa (raw, json)
Hash identifier: l7aViy8WvahA5iZMOfZ94sIP20XP8wwwRuvl2K2Bq2g=
Subject key identifier: 64:1F:29:A0:31:EC:81:77:08:65:3D:5F:C0:1F:B3:2C:57:95:84:BD
Certificate issuer: /CN=16cde139ae0573b0a4dda93e77b57ff27f9beba1
Certificate serial: 018CC6B8B10633A258C9C59A96F68F2C07C6
Authority key identifier: 16:CD:E1:39:AE:05:73:B0:A4:DD:A9:3E:77:B5:7F:F2:7F:9B:EB:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/ZB8poDHsgXcIZT1fwB-zLFeVhL0.roa
Signing time: Mon 01 Jan 2024 20:30:41 +0000
ROA not before: Mon 01 Jan 2024 20:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21150
IP address blocks: 155.45.176.0/20 maxlen: 20
155.45.208.0/21 maxlen: 21
155.45.240.0/21 maxlen: 21
155.45.255.0/24 maxlen: 24
155.45.160.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 22:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:b1:06:33:a2:58:c9:c5:9a:96:f6:8f:2c:07:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16cde139ae0573b0a4dda93e77b57ff27f9beba1
Validity
Not Before: Jan 1 20:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=641f29a031ec817708653d5fc01fb32c579584bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:60:ed:36:92:85:5d:92:80:69:21:b1:c5:fd:
a8:9a:c0:ca:af:e6:76:72:8c:95:4e:58:04:c1:c7:
14:14:76:01:4f:76:18:52:21:e6:c7:4e:0d:f5:44:
b5:65:62:69:36:6b:e4:eb:77:99:08:4a:cc:b0:50:
48:38:dd:b5:86:39:6f:6d:bf:82:3f:d5:08:b6:9b:
be:d7:f9:5e:36:ef:4c:8e:60:a0:23:65:3e:c3:ce:
68:07:f3:47:92:0a:88:bf:98:c4:da:5c:14:fe:69:
90:ce:61:25:9b:80:d5:3c:e4:c3:c5:d9:39:5d:96:
c5:99:e1:f8:bf:59:dc:4d:a1:e7:71:5a:b2:89:c0:
17:23:b5:06:89:19:8c:e6:6a:b2:6e:64:d5:30:71:
ff:da:dd:3b:fe:93:ab:9b:41:0c:0e:15:30:57:cd:
d2:1b:67:90:ac:13:4c:15:d2:91:9c:82:2c:ef:be:
a7:b5:81:93:47:2d:44:d8:65:33:f3:5c:49:7c:d5:
29:a3:40:c9:90:f0:a0:50:0b:a5:36:3d:d4:e0:35:
54:d8:40:13:8f:65:91:cc:5c:8d:fa:04:46:bc:b6:
ed:96:3e:b8:ee:7a:a0:e6:3f:a0:71:23:88:f5:94:
47:76:52:2a:2c:e6:a2:ee:43:f1:51:d0:bd:a4:42:
7b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:1F:29:A0:31:EC:81:77:08:65:3D:5F:C0:1F:B3:2C:57:95:84:BD
X509v3 Authority Key Identifier:
keyid:16:CD:E1:39:AE:05:73:B0:A4:DD:A9:3E:77:B5:7F:F2:7F:9B:EB:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/ZB8poDHsgXcIZT1fwB-zLFeVhL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.45.160.0/19
155.45.208.0/21
155.45.240.0/21
155.45.255.0/24
Signature Algorithm: sha256WithRSAEncryption
55:36:87:de:9a:ed:e0:65:c9:cf:85:17:80:3e:a1:8b:dd:86:
e3:7a:cb:98:8f:1d:7f:20:a7:ca:68:35:ae:ef:57:6a:24:bf:
6a:39:ac:a8:24:ac:1e:45:d5:d9:bb:f6:b4:42:74:27:3b:b1:
96:86:3d:d0:c5:8f:c6:ba:ca:a1:aa:1c:27:b1:d1:17:1c:db:
98:30:d3:2c:35:be:d8:db:b7:fa:00:2e:2f:a7:02:2e:14:aa:
f6:85:a9:fe:9f:56:d5:14:c7:7c:26:63:f3:e7:ca:f3:5c:40:
60:39:6a:17:e8:06:b3:ee:17:44:ea:7f:cc:b4:fe:9f:92:8e:
a8:8a:60:33:96:38:31:86:bd:e5:ba:08:e2:ab:59:2e:c7:67:
14:6c:86:11:13:92:26:1f:52:9f:e3:41:ff:49:1e:60:73:2e:
3c:0e:29:7c:f6:e3:03:b0:46:a6:a3:48:73:53:88:8b:9c:97:
f4:94:2c:ee:0b:ff:46:c6:1a:61:2c:64:63:a0:6a:e2:5f:79:
f0:34:e9:e5:e2:de:a3:90:ca:79:ef:22:c3:56:fa:32:40:26:
36:be:7a:7c:92:a4:f9:29:39:62:67:0c:2f:6f:f2:0f:fc:53:
b1:9f:d8:cb:03:61:b3:3a:27:83:45:b5:5c:2a:f1:62:39:50:
35:80:95:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 05:15:14 2024 by rpki-client on console-fra.rpki-client.org