Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/TTfVXPWsTD0Lf9XbdPaqI46YSLk.roa
File: TTfVXPWsTD0Lf9XbdPaqI46YSLk.roa (raw, json)
Hash identifier: MdaFHfSp+x/miDN/s9xD2TdMS/ErCEoKY/7wB+vEFPQ=
Subject key identifier: 4D:37:D5:5C:F5:AC:4C:3D:0B:7F:D5:DB:74:F6:AA:23:8E:98:48:B9
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CC50131D0A33794C57CA3E542D4BE9662
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/TTfVXPWsTD0Lf9XbdPaqI46YSLk.roa
Signing time: Mon 01 Jan 2024 12:30:39 +0000
ROA not before: Mon 01 Jan 2024 12:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396356
IP address blocks: 45.80.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:31:d0:a3:37:94:c5:7c:a3:e5:42:d4:be:96:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 12:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d37d55cf5ac4c3d0b7fd5db74f6aa238e9848b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:00:7b:78:1d:48:cd:87:c9:f6:b1:1e:77:4e:
4f:a3:4a:ef:94:b0:28:a0:05:e7:cd:18:02:0c:b9:
df:22:64:58:7d:a8:39:0b:88:d2:0f:5b:4d:c7:d8:
eb:d4:67:60:e8:18:d6:69:80:cf:fe:9c:db:ea:02:
64:2a:02:73:80:e5:29:67:c7:42:0c:85:be:aa:19:
0b:0a:0f:b7:92:4b:d1:b5:e1:c2:04:53:a1:73:7c:
8d:9c:6f:ae:de:30:e9:d8:87:72:c9:7e:e0:8a:8c:
85:09:ba:41:96:8a:08:e2:ba:c4:f9:43:d5:b7:4e:
65:e2:89:b6:35:83:72:b1:14:73:38:cb:2f:84:04:
95:4a:bf:87:0b:13:36:13:45:ef:65:e0:ed:cb:ca:
1e:82:fb:c4:46:45:61:82:c5:f3:2f:ae:8d:6b:bf:
12:29:b6:50:e0:4f:05:d7:16:ec:49:52:7b:eb:23:
8c:a2:e6:02:21:0e:86:53:6a:23:cc:bc:b5:3f:76:
51:5a:2c:1f:9f:ea:80:87:fe:06:5e:c1:5d:a8:5f:
59:41:b4:be:1d:5e:1e:2d:58:7c:b4:37:6e:11:dd:
ed:14:0a:55:90:8d:2a:eb:ed:ef:25:ed:62:7f:6a:
10:6f:8b:a0:14:9a:43:26:56:d2:73:57:be:2b:5a:
9a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:37:D5:5C:F5:AC:4C:3D:0B:7F:D5:DB:74:F6:AA:23:8E:98:48:B9
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/TTfVXPWsTD0Lf9XbdPaqI46YSLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.159.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:a5:21:67:4d:e8:20:9a:47:73:bc:2a:70:cf:da:8b:69:f9:
cd:e1:a7:16:ce:97:54:b2:a4:b4:12:5d:72:c0:89:13:35:85:
64:54:16:3d:65:fd:17:03:f7:72:33:ed:bb:8d:ef:cd:c6:16:
48:18:95:9e:a7:75:dd:90:6e:39:5e:7e:1d:94:f7:82:3c:cf:
1c:49:ae:e7:96:e5:cb:65:a6:22:f4:b7:5b:cf:4d:d9:a6:e0:
99:e9:ff:42:29:c9:9b:d3:b1:96:87:d2:15:b1:1f:23:d8:25:
53:de:22:25:a2:c0:bf:fd:e3:2e:c9:55:89:23:88:a4:61:15:
6d:6e:b5:f0:f7:ca:9b:75:c8:81:67:bd:68:17:98:64:b0:2a:
06:cc:41:75:b5:be:41:70:01:6a:47:ab:74:33:1a:37:7c:cf:
c0:74:51:c6:d1:54:de:b8:ce:f1:83:22:89:91:4a:a6:d9:23:
d1:21:62:80:c6:28:e0:53:fb:bf:88:85:c6:5a:9a:45:4c:6f:
8c:1e:a4:0c:8b:64:7b:9b:82:81:fe:1a:9f:6a:c6:2f:17:44:
05:ca:95:a1:ba:57:21:da:2f:43:4c:e3:80:f8:1d:b9:ab:5f:
4f:93:44:54:3e:bb:9f:ed:16:0b:c0:34:00:62:f1:73:ad:78:
e5:d0:bf:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 20:04:47 2024 by rpki-client on console-ams.rpki-client.org