Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e2df0e-7bfe-44a9-bf86-f9ef97420764/1/AxIrorYut5WtFz1Y_41j-dLtYco.roa
File: AxIrorYut5WtFz1Y_41j-dLtYco.roa (raw, json)
Hash identifier: htT/nvQHTuI14l27mvD56BJmEUJerBxUXtUiT60Cl9s=
Subject key identifier: 03:12:2B:A2:B6:2E:B7:95:AD:17:3D:58:FF:8D:63:F9:D2:ED:61:CA
Certificate issuer: /CN=16e9aaace50279585b5c5a5d8ee85610686c26c0
Certificate serial: 018CCA29CBF151CEAB00E88E591A4B94BF25
Authority key identifier: 16:E9:AA:AC:E5:02:79:58:5B:5C:5A:5D:8E:E8:56:10:68:6C:26:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FumqrOUCeVhbXFpdjuhWEGhsJsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e2df0e-7bfe-44a9-bf86-f9ef97420764/1/AxIrorYut5WtFz1Y_41j-dLtYco.roa
Signing time: Tue 02 Jan 2024 12:33:05 +0000
ROA not before: Tue 02 Jan 2024 12:33:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35367
IP address blocks: 45.155.72.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/e2df0e-7bfe-44a9-bf86-f9ef97420764/1/FumqrOUCeVhbXFpdjuhWEGhsJsA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/e2df0e-7bfe-44a9-bf86-f9ef97420764/1/FumqrOUCeVhbXFpdjuhWEGhsJsA.mft
rsync://rpki.ripe.net/repository/DEFAULT/FumqrOUCeVhbXFpdjuhWEGhsJsA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:cb:f1:51:ce:ab:00:e8:8e:59:1a:4b:94:bf:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16e9aaace50279585b5c5a5d8ee85610686c26c0
Validity
Not Before: Jan 2 12:33:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03122ba2b62eb795ad173d58ff8d63f9d2ed61ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5a:29:f2:7f:25:7c:f2:aa:68:1e:01:f6:cf:
14:aa:bb:ba:b6:ad:88:dc:87:df:3e:2b:d4:05:3e:
32:f0:39:5c:e0:34:24:67:51:c4:70:7b:e5:09:e7:
b8:a0:f1:69:a7:a3:3f:77:3e:eb:97:78:00:08:98:
21:71:27:60:87:83:c2:6b:fe:40:0f:bd:db:56:78:
24:77:5d:7f:c1:c5:62:8b:2e:d2:6a:69:ef:21:ff:
62:ca:26:58:a3:3e:34:d6:ca:9a:60:2c:1d:a0:46:
cd:51:11:df:ea:a4:14:ba:6a:31:9c:8b:a7:c0:c7:
4f:e3:a7:b6:c9:fc:2e:02:6c:cd:06:03:ff:e0:ab:
54:1d:e9:5f:b8:0e:db:cd:2c:4f:8f:ea:9e:54:db:
74:91:8e:a6:6d:ef:91:28:a7:d4:b5:d8:dd:c3:bc:
ce:2d:8e:92:61:44:30:95:3a:b7:44:1e:95:78:c8:
cd:7a:2b:b2:9a:9c:e0:1b:15:ac:27:06:62:7d:bb:
2c:aa:77:3a:42:46:10:6f:91:c3:f0:21:30:a8:f3:
70:5b:9d:04:5f:26:02:f1:81:90:95:ba:81:4b:44:
f8:bd:53:a6:cd:e6:a0:d4:9e:79:7f:02:46:3a:3d:
9d:dc:83:b4:8e:e8:22:b5:35:8b:6d:75:d4:cf:42:
18:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:12:2B:A2:B6:2E:B7:95:AD:17:3D:58:FF:8D:63:F9:D2:ED:61:CA
X509v3 Authority Key Identifier:
keyid:16:E9:AA:AC:E5:02:79:58:5B:5C:5A:5D:8E:E8:56:10:68:6C:26:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FumqrOUCeVhbXFpdjuhWEGhsJsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e2df0e-7bfe-44a9-bf86-f9ef97420764/1/AxIrorYut5WtFz1Y_41j-dLtYco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e2df0e-7bfe-44a9-bf86-f9ef97420764/1/FumqrOUCeVhbXFpdjuhWEGhsJsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.72.0/22
Signature Algorithm: sha256WithRSAEncryption
51:ca:a5:ba:21:26:d1:11:f5:83:40:bb:06:05:1b:71:1a:74:
43:39:78:98:09:43:bc:f9:c8:25:f8:b6:94:3c:e5:ca:7d:23:
0a:2e:3e:81:1f:1d:f3:40:7c:7d:55:4d:2c:55:5e:8a:17:27:
bb:82:2e:df:88:68:07:bd:ad:3f:33:0a:6d:78:fb:9c:08:d4:
0a:07:fb:36:c3:4e:be:5d:45:71:d5:b9:96:e9:4d:ae:7f:b0:
ac:83:f9:7c:69:a6:6b:ea:28:a8:13:44:0a:b6:74:bf:39:1b:
ad:a9:b2:5b:06:02:9b:9c:06:5f:d8:08:68:3c:d8:14:0f:83:
ee:d8:fa:2e:5f:2c:82:d5:08:fc:f3:f1:35:92:31:6f:23:d8:
42:c1:d0:35:03:22:b0:7c:62:52:81:dc:a5:d5:d3:4c:e0:ef:
2e:a9:1d:b3:3e:ff:3f:04:63:30:93:d9:15:f7:f9:b9:bd:cd:
e3:9e:9c:c5:1f:13:79:43:c2:75:f6:1e:82:b6:e6:88:62:45:
d7:4d:20:96:2e:e1:84:b2:e0:0c:6e:f8:43:cd:46:f8:16:75:
6d:08:12:fb:48:21:d9:e0:1d:c5:4e:0a:75:28:17:23:8c:14:
b1:a1:4e:da:cd:b6:74:09:73:0e:94:af:e3:e3:38:0e:9f:0f:
b3:fd:4a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 23:02:20 2024 by rpki-client on console-fra.rpki-client.org