Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/Yty59qPHmnMYtfYDQwPZn9nnuT4.roa
File: Yty59qPHmnMYtfYDQwPZn9nnuT4.roa (raw, json)
Hash identifier: PBqBbRA0M5rZsHqwhx1SfcEYouNde0+lwmzOku6g6+U=
Subject key identifier: 62:DC:B9:F6:A3:C7:9A:73:18:B5:F6:03:43:03:D9:9F:D9:E7:B9:3E
Certificate issuer: /CN=d64065a5415d9942390145f2247901d9364589d7
Certificate serial: 018CC5DC3F4A8BEFB5423ED57D5EE0C392A6
Authority key identifier: D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/Yty59qPHmnMYtfYDQwPZn9nnuT4.roa
Signing time: Mon 01 Jan 2024 16:29:54 +0000
ROA not before: Mon 01 Jan 2024 16:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 135391
IP address blocks: 45.82.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:3f:4a:8b:ef:b5:42:3e:d5:7d:5e:e0:c3:92:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d64065a5415d9942390145f2247901d9364589d7
Validity
Not Before: Jan 1 16:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62dcb9f6a3c79a7318b5f6034303d99fd9e7b93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:99:bb:6f:8c:8d:a7:07:35:df:19:70:11:47:
b5:54:30:04:d1:8d:e9:d5:23:42:ee:23:c7:97:07:
8a:ed:29:55:eb:c1:5d:c2:a8:36:c1:9d:d5:74:68:
23:2b:a3:99:b1:d4:2a:cb:4b:d9:b3:b1:b6:0d:95:
ea:25:cf:87:19:4b:8a:0f:a2:8e:93:1b:ee:ee:f8:
9a:21:6e:52:35:ad:23:8e:be:72:de:05:dc:15:7a:
6a:9d:fc:cd:c6:04:96:4c:30:dc:40:e6:0f:19:2a:
b4:4e:40:be:30:97:a4:e7:f2:e6:e9:38:be:9e:7e:
3e:21:f3:5f:db:86:1d:fa:fb:12:b5:1a:7a:df:8c:
c7:b8:47:7c:ca:6b:3f:37:ea:f5:ec:4b:f1:29:c1:
c9:ad:33:39:5d:c9:87:f2:e0:da:15:2e:80:ca:5e:
22:02:0d:37:ea:59:64:30:6f:ef:7e:35:01:a5:7c:
c2:bd:b6:0d:88:7c:94:ab:8b:57:a6:ca:83:a6:9e:
1d:e1:2f:a4:d3:87:51:d8:d2:fa:6b:89:e4:2a:f8:
69:7b:db:0a:00:b3:bb:91:af:00:2e:f1:89:ea:28:
ca:30:5c:8a:89:88:e7:a5:38:94:f1:38:c1:82:c6:
a0:06:0d:6e:b6:30:66:ef:13:6b:de:30:65:ac:84:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DC:B9:F6:A3:C7:9A:73:18:B5:F6:03:43:03:D9:9F:D9:E7:B9:3E
X509v3 Authority Key Identifier:
keyid:D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/Yty59qPHmnMYtfYDQwPZn9nnuT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.242.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:2b:da:ee:51:fe:5f:a9:37:e5:2a:d2:c6:37:a2:5e:e4:20:
03:d9:78:af:39:19:ed:07:f4:15:a5:53:16:71:19:a1:43:41:
5f:e3:7a:46:b9:8e:90:25:1e:d9:da:c0:2b:53:e1:1d:43:99:
06:1d:cb:00:c7:07:ae:66:97:4a:21:f9:8d:f8:29:37:39:1e:
e3:e5:56:15:a5:c3:6c:3d:87:2c:ea:1b:60:e6:3e:59:2e:2f:
82:2b:6e:00:a0:ae:3d:aa:0f:e1:d1:b9:9b:cd:56:2d:5c:d5:
96:8b:90:f7:e0:37:60:c1:94:32:89:1d:ec:a7:3a:b2:ff:53:
c8:7b:f2:79:dd:e6:c6:42:29:8f:4f:03:89:3a:33:c6:14:f9:
fb:f0:c6:89:46:f5:8a:c2:b5:46:2d:41:ab:8d:07:9f:ca:6b:
2c:30:99:3a:fd:74:46:76:d8:75:69:f0:4b:30:65:f2:e7:6b:
47:83:81:85:05:02:9a:d3:99:85:a2:62:01:8c:aa:be:cc:fb:
db:17:d6:55:b5:ca:34:96:c9:85:89:e7:7c:15:26:0c:88:09:
46:2e:17:47:79:21:3b:bc:26:74:fa:a2:7e:cf:af:cc:c6:4d:
94:ae:be:a3:5e:ce:2c:1d:12:61:f0:bd:e1:b9:db:ef:0b:8f:
e0:65:b3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 11:42:37 2024 by rpki-client on console-fra.rpki-client.org