Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/bo82_6jnrICB9ITbjwq9lY_dfuM.roa
File: bo82_6jnrICB9ITbjwq9lY_dfuM.roa (raw, json)
Hash identifier: ff8mLc4A6pGMkJm2IIiBnnKd3U5qOVqFFC1Pn5KQH4Q=
Subject key identifier: 6E:8F:36:FF:A8:E7:AC:80:81:F4:84:DB:8F:0A:BD:95:8F:DD:7E:E3
Certificate issuer: /CN=16cde139ae0573b0a4dda93e77b57ff27f9beba1
Certificate serial: 018CC6B8AFE35BE967C9A34FA7902454A88C
Authority key identifier: 16:CD:E1:39:AE:05:73:B0:A4:DD:A9:3E:77:B5:7F:F2:7F:9B:EB:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/bo82_6jnrICB9ITbjwq9lY_dfuM.roa
Signing time: Mon 01 Jan 2024 20:30:41 +0000
ROA not before: Mon 01 Jan 2024 20:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8132
IP address blocks: 155.45.0.0/17 maxlen: 17
155.45.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:af:e3:5b:e9:67:c9:a3:4f:a7:90:24:54:a8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16cde139ae0573b0a4dda93e77b57ff27f9beba1
Validity
Not Before: Jan 1 20:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e8f36ffa8e7ac8081f484db8f0abd958fdd7ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:dc:08:a9:2e:f8:c1:2a:5d:13:d8:c5:00:ed:
89:84:d5:c9:7a:ee:53:73:0c:f8:07:7b:90:81:68:
35:5c:da:02:ad:b7:f9:7f:2b:63:82:7f:a6:f2:ae:
5a:ad:cd:ca:8a:fb:32:e4:c5:58:c9:66:f5:1a:5f:
48:77:93:d0:3a:47:1f:39:e7:6b:58:23:f5:cc:3e:
db:75:9b:59:45:b4:61:b4:8e:94:a7:fb:cd:fa:3f:
16:08:d8:02:e2:49:61:51:ed:d5:63:79:75:12:e8:
de:3f:13:39:cf:3e:39:4f:ba:df:55:03:97:8f:65:
0d:0e:6b:28:41:31:6e:01:a1:16:51:36:c9:32:57:
49:ef:d3:63:67:33:be:eb:a6:96:ab:7e:92:c7:16:
75:73:71:d0:a0:26:43:ba:a2:75:3b:95:91:ca:38:
bb:a4:f8:04:57:84:c8:c2:3f:8b:d3:93:2d:07:6e:
ef:4a:16:40:da:73:45:2d:12:76:d3:15:fc:b1:db:
1a:f0:c8:c8:5a:81:97:68:76:dc:27:41:29:22:c2:
69:ba:5a:4e:57:48:7f:04:4a:c0:66:09:6d:a8:14:
0c:05:92:9e:58:5d:46:10:86:26:c6:ff:35:4b:34:
26:41:14:d4:69:94:c6:61:d8:e5:b2:59:82:6b:ee:
24:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8F:36:FF:A8:E7:AC:80:81:F4:84:DB:8F:0A:BD:95:8F:DD:7E:E3
X509v3 Authority Key Identifier:
keyid:16:CD:E1:39:AE:05:73:B0:A4:DD:A9:3E:77:B5:7F:F2:7F:9B:EB:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/bo82_6jnrICB9ITbjwq9lY_dfuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c02f6-7c41-49bb-b9de-b69dce7547a1/1/Fs3hOa4Fc7Ck3ak-d7V_8n-b66E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.45.0.0/17
155.45.249.0/24
Signature Algorithm: sha256WithRSAEncryption
54:dc:53:66:0c:29:04:5a:f1:39:0a:23:e5:00:c7:2a:fb:c3:
bb:7b:9d:95:c4:3c:56:c4:af:d3:1a:c8:86:3d:9c:bb:36:d5:
66:d3:90:77:80:0c:f0:f5:0f:c1:c3:e9:68:35:89:fe:d0:f4:
28:52:91:da:b5:87:ad:2f:4f:d9:c0:32:33:be:3e:b8:4e:ff:
18:c5:eb:08:45:34:3c:e1:e2:2d:03:ad:ed:9b:4f:24:2d:7c:
9f:3a:20:c6:ee:17:02:c0:1f:02:df:21:bb:90:a2:33:bd:44:
fa:f4:da:1e:18:2d:fd:f0:fa:30:dc:ae:f6:57:4a:7f:3d:62:
99:16:a4:6b:df:f4:80:4e:33:b2:96:4e:e7:d5:2a:e9:3f:3d:
be:9f:66:56:bd:db:ed:6a:fa:78:e1:bc:cc:cd:90:ad:5d:de:
93:41:48:ad:03:c0:85:1d:0c:c1:1e:99:23:9a:4b:4f:8e:28:
fc:17:a7:03:ef:4d:dd:6a:e2:5d:ca:4e:5d:17:06:e1:10:91:
3f:46:92:90:80:0f:76:ae:49:cf:ab:fb:1e:cc:0d:64:34:27:
e6:13:0b:aa:e0:5b:62:5f:f6:1a:a3:c2:e0:63:8e:f4:af:d3:
66:27:83:ac:1b:2a:03:6f:55:bb:83:a8:8d:32:03:81:0b:48:
85:c4:15:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 23:09:19 2024 by rpki-client on console-fra.rpki-client.org