Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/1srBauO-lNpowASIriFFpLscCZk.roa
File: 1srBauO-lNpowASIriFFpLscCZk.roa (raw, json)
Hash identifier: k1oNEB9cfEXjV9NOF8dBpuENukwSJpK7P+bLbtLduoU=
Subject key identifier: D6:CA:C1:6A:E3:BE:94:DA:68:C0:04:88:AE:21:45:A4:BB:1C:09:99
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018E3243C32B517E5CB9604F5CDEDA2D1991
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/1srBauO-lNpowASIriFFpLscCZk.roa
Signing time: Tue 12 Mar 2024 10:44:45 +0000
ROA not before: Tue 12 Mar 2024 10:44:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 45.10.108.0/24 maxlen: 24
77.83.80.0/24 maxlen: 24
185.235.247.0/24 maxlen: 24
193.9.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:32:43:c3:2b:51:7e:5c:b9:60:4f:5c:de:da:2d:19:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Mar 12 10:44:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6cac16ae3be94da68c00488ae2145a4bb1c0999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:af:f6:90:bc:5d:67:d3:f5:a5:be:4f:4c:e4:
02:ce:bd:ad:81:53:a7:11:c9:2e:3f:95:3f:4d:2c:
d3:e2:50:48:ca:ef:a3:cc:75:b1:1f:f5:42:a0:5e:
d8:fb:31:2e:14:d0:c7:91:6c:29:71:7c:93:b4:d2:
7f:03:82:26:a9:68:4c:21:44:7f:10:9d:fa:12:21:
f9:30:84:57:9b:c1:d6:22:80:ad:bd:a2:f6:62:20:
75:d6:d5:67:23:cd:a6:4e:c4:7f:80:aa:52:27:a4:
1c:c9:e4:47:1c:37:b6:ed:43:55:f2:5d:29:fc:aa:
54:35:cf:ff:cf:10:0c:39:57:22:43:68:b7:e6:20:
8d:5e:55:e5:55:bb:df:f9:5d:ce:62:a5:12:77:2d:
39:24:89:50:bc:4a:3c:ed:36:6d:b2:9c:34:a6:d7:
1a:07:71:a8:88:41:e4:e4:14:da:31:7a:b8:9c:83:
9d:17:61:94:74:b1:27:55:61:9a:c5:04:3c:72:f6:
d2:b5:da:af:a3:b4:60:e0:24:d4:3d:fe:e4:6c:ff:
53:3f:78:a4:35:8d:12:c2:7b:f3:0e:ae:c9:6a:1a:
1e:04:27:a9:58:ab:27:5b:b5:c4:e5:c8:0c:1d:16:
f5:cf:b0:b6:05:4e:dd:c7:89:58:a4:2a:35:9d:b9:
61:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:CA:C1:6A:E3:BE:94:DA:68:C0:04:88:AE:21:45:A4:BB:1C:09:99
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/1srBauO-lNpowASIriFFpLscCZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.108.0/24
77.83.80.0/24
185.235.247.0/24
193.9.126.0/24
Signature Algorithm: sha256WithRSAEncryption
33:04:39:17:39:67:58:ef:9a:86:13:61:40:8c:5b:06:9c:58:
c6:be:34:68:cd:a7:50:00:82:51:ad:f2:2b:e7:18:b1:95:9d:
00:3f:5e:42:92:2a:ef:c2:6e:1c:94:8d:78:23:fe:af:48:f1:
f7:60:14:b4:81:04:e6:a8:47:74:91:f0:b1:65:71:fc:e9:6c:
0f:a6:6b:c2:ea:97:e4:a5:27:8e:4a:82:92:29:ce:96:e8:34:
34:7b:be:45:a1:2a:5d:f3:01:6e:cc:b4:87:5d:74:31:f3:fd:
21:85:88:51:59:fe:1e:46:0b:2d:7d:e8:82:18:7c:48:bf:b7:
d7:b2:c8:13:ae:06:78:09:65:4c:65:23:56:37:52:a8:6d:ab:
0c:4d:cc:9b:73:4c:43:9d:f7:36:2f:a2:b7:68:57:54:d1:6a:
8f:4a:d4:1c:0d:76:86:d7:83:e0:29:7f:15:b6:20:c7:69:f6:
39:c0:c8:7f:40:65:ff:bd:2c:40:c7:94:a2:fc:e2:db:af:28:
4e:eb:b0:09:c3:98:4d:8a:73:6d:c9:b6:58:e1:5f:49:39:8c:
d0:8f:73:bd:da:ca:d0:a4:e5:a6:6a:52:78:86:e3:0f:bc:38:
f4:1e:a8:56:2d:61:9a:5e:e6:a2:e5:c9:3d:85:ac:fe:b3:6a:
3d:fe:62:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 15:38:19 2024 by rpki-client on console-ams.rpki-client.org