Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/HqcZQB1I5hJmath0gbSpxOfhSSI.roa
File: HqcZQB1I5hJmath0gbSpxOfhSSI.roa (raw, json)
Hash identifier: 2K8SEBnHj+5srzFQ91fQb+7aLOqJl5YQRONyQqujlr4=
Subject key identifier: 1E:A7:19:40:1D:48:E6:12:66:6A:D8:74:81:B4:A9:C4:E7:E1:49:22
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018E514BCC323868AD806F66AC650183A002
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/HqcZQB1I5hJmath0gbSpxOfhSSI.roa
Signing time: Mon 18 Mar 2024 11:21:45 +0000
ROA not before: Mon 18 Mar 2024 11:21:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 45.8.89.0/24 maxlen: 24
45.15.75.0/24 maxlen: 24
45.153.49.0/24 maxlen: 24
77.83.95.0/24 maxlen: 24
92.119.128.0/24 maxlen: 24
92.119.130.0/24 maxlen: 24
93.157.105.0/24 maxlen: 24
194.93.3.0/24 maxlen: 24
194.169.161.0/24 maxlen: 24
194.169.162.0/24 maxlen: 24
213.139.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:4b:cc:32:38:68:ad:80:6f:66:ac:65:01:83:a0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Mar 18 11:21:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ea719401d48e612666ad87481b4a9c4e7e14922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1c:6f:70:d7:38:e4:ba:d2:cf:5c:b3:8a:b7:
3a:3b:eb:f6:44:1f:7e:62:04:1f:ed:25:ac:75:68:
14:f3:3b:87:ff:07:82:7d:7e:8d:88:3f:0f:48:96:
55:a9:74:b7:3a:31:d7:1a:8e:05:c3:aa:4b:46:bf:
b6:f8:0f:06:7b:1b:ed:b9:42:c8:51:f1:7c:b0:16:
38:55:df:38:f8:3a:e5:bb:85:9d:7f:b9:bc:4c:8a:
ee:b6:50:62:99:b9:30:32:1a:d4:a5:eb:71:04:fb:
49:31:51:c6:99:2c:04:88:6a:0b:79:eb:3b:8f:f4:
9c:3c:10:5d:9a:8c:bb:41:f0:ff:21:70:2a:b4:ce:
db:ce:c0:eb:3f:02:fc:72:5a:33:8b:c4:21:d5:cc:
d6:71:6c:33:72:76:a4:85:f4:f3:3c:04:85:12:33:
b4:65:f5:73:eb:ba:8c:4c:57:f0:dd:31:78:8c:0e:
99:3d:b7:bf:f8:c1:6a:5c:29:44:1c:00:43:02:97:
bb:9a:e1:94:3e:78:1b:b0:87:9c:39:30:67:50:bb:
28:78:1e:2e:7c:a1:ff:2e:42:cf:be:c9:8c:3d:a7:
d4:71:6e:79:1f:bc:09:77:8c:3e:c7:2a:3f:af:7b:
81:a6:37:67:69:10:d6:33:f8:d5:eb:38:bc:f2:42:
f2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A7:19:40:1D:48:E6:12:66:6A:D8:74:81:B4:A9:C4:E7:E1:49:22
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/HqcZQB1I5hJmath0gbSpxOfhSSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.89.0/24
45.15.75.0/24
45.153.49.0/24
77.83.95.0/24
92.119.128.0/24
92.119.130.0/24
93.157.105.0/24
194.93.3.0/24
194.169.161.0-194.169.162.255
213.139.203.0/24
Signature Algorithm: sha256WithRSAEncryption
15:be:c6:a5:53:b2:37:5b:1c:32:ba:0a:0e:b9:d7:5d:a2:fa:
1e:f8:e6:66:de:89:02:7e:24:97:e3:c0:33:d0:3a:cd:2d:86:
3c:15:e0:c7:a6:dd:bd:01:18:65:7b:b0:d0:ba:02:e0:b2:ce:
d0:91:3d:aa:b7:23:3b:be:15:83:e9:13:05:de:cd:16:8e:44:
56:f1:9d:79:3f:bb:44:72:5b:d4:85:36:f6:a3:62:b4:c5:85:
85:81:b0:8a:64:3c:3e:97:a5:51:3a:d1:b1:1e:b9:7c:4e:19:
c5:d9:18:75:82:ca:cb:3c:8b:5e:79:6a:d4:2c:62:5d:ec:49:
73:5a:b9:32:94:2c:32:fd:36:85:07:d8:d5:d3:fe:a6:d2:ca:
32:70:8f:5b:0a:03:74:28:ea:fb:c1:46:9b:91:00:f0:31:6a:
fa:cc:9e:45:95:91:61:1b:f5:8f:f3:9e:2e:dc:13:41:cc:19:
49:ed:b3:ee:02:e9:dc:46:97:13:71:d1:75:70:81:35:36:37:
57:4f:55:3c:d4:59:d1:63:fa:11:96:fe:b2:e3:27:61:5e:f5:
77:a4:6e:23:09:96:25:01:0d:16:20:9f:4e:ae:19:72:95:8b:
2e:86:8b:3d:49:df:ca:95:c7:52:a0:c3:52:b1:8e:59:13:82:
3f:e5:13:20
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 19 19:45:33 2024 by rpki-client on console-fra.rpki-client.org