Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/f5d671-adee-4e78-ae22-9b38607f4e3e/1/gZhx7dNobYr7E3TmJ0UmEzsguPg.roa
File: gZhx7dNobYr7E3TmJ0UmEzsguPg.roa (raw, json)
Hash identifier: Qmd1BtYihqQUSCvrnakC73wMbuQChvntibrdq8qLl08=
Subject key identifier: 81:98:71:ED:D3:68:6D:8A:FB:13:74:E6:27:45:26:13:3B:20:B8:F8
Certificate issuer: /CN=f28d10ff00e7a463efc7fba7cd4d4446fe6ad678
Certificate serial: 018CC8DEA3B124234BCC686F3AD72943C220
Authority key identifier: F2:8D:10:FF:00:E7:A4:63:EF:C7:FB:A7:CD:4D:44:46:FE:6A:D6:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8o0Q_wDnpGPvx_unzU1ERv5q1ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/f5d671-adee-4e78-ae22-9b38607f4e3e/1/gZhx7dNobYr7E3TmJ0UmEzsguPg.roa
Signing time: Tue 02 Jan 2024 06:31:23 +0000
ROA not before: Tue 02 Jan 2024 06:31:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48133
IP address blocks: 45.146.244.0/22 maxlen: 22
94.228.80.0/20 maxlen: 20
2a03:f040::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/f5d671-adee-4e78-ae22-9b38607f4e3e/1/8o0Q_wDnpGPvx_unzU1ERv5q1ng.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/f5d671-adee-4e78-ae22-9b38607f4e3e/1/8o0Q_wDnpGPvx_unzU1ERv5q1ng.mft
rsync://rpki.ripe.net/repository/DEFAULT/8o0Q_wDnpGPvx_unzU1ERv5q1ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 23:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:a3:b1:24:23:4b:cc:68:6f:3a:d7:29:43:c2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28d10ff00e7a463efc7fba7cd4d4446fe6ad678
Validity
Not Before: Jan 2 06:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=819871edd3686d8afb1374e6274526133b20b8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bd:53:82:11:d9:b9:83:1a:bc:89:bd:91:56:
72:b3:67:b2:72:0c:37:2b:41:84:96:f6:bf:89:5d:
d3:12:b7:b6:94:a0:00:fe:a9:e0:ac:2a:3f:ff:5a:
94:69:bb:96:d0:3e:38:5c:09:ff:28:19:7b:c0:0e:
7e:01:43:4e:0e:ff:85:52:4a:83:f9:aa:58:1c:77:
a0:d2:06:df:5b:33:28:c0:09:e5:09:55:c4:2f:fb:
d9:65:d7:fa:2a:73:9b:07:a5:2b:19:40:7f:04:42:
0a:c3:dc:c9:15:e0:ad:cc:a1:6a:28:7c:28:20:9b:
1c:90:00:2c:f2:92:0b:49:0d:e3:4c:0c:e3:d1:36:
ba:94:16:51:24:17:6b:eb:6e:2f:c0:5a:63:4c:b4:
a1:b5:63:ea:bb:95:6d:c8:bd:37:cc:4b:2c:b1:05:
1c:dd:2e:70:2c:13:fd:1f:72:c2:86:5b:93:11:2c:
d3:ad:ee:49:51:50:76:bd:0c:f6:31:44:b2:db:99:
da:b7:a4:aa:8f:42:4f:a9:d9:b7:4f:f3:f3:30:fc:
58:0d:6f:a5:da:b9:dc:a9:8b:95:f1:60:b0:57:01:
25:68:e2:5d:14:74:fa:40:ac:ea:24:e1:b2:ff:c8:
0f:1d:20:b1:b9:94:af:b9:28:f6:d6:ec:90:5f:e5:
9d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:98:71:ED:D3:68:6D:8A:FB:13:74:E6:27:45:26:13:3B:20:B8:F8
X509v3 Authority Key Identifier:
keyid:F2:8D:10:FF:00:E7:A4:63:EF:C7:FB:A7:CD:4D:44:46:FE:6A:D6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8o0Q_wDnpGPvx_unzU1ERv5q1ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/f5d671-adee-4e78-ae22-9b38607f4e3e/1/gZhx7dNobYr7E3TmJ0UmEzsguPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/f5d671-adee-4e78-ae22-9b38607f4e3e/1/8o0Q_wDnpGPvx_unzU1ERv5q1ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.244.0/22
94.228.80.0/20
IPv6:
2a03:f040::/32
Signature Algorithm: sha256WithRSAEncryption
64:43:3a:18:77:02:25:9d:ab:fb:0d:99:93:08:48:b8:81:5a:
ba:f6:84:dd:b7:e7:3e:f4:7d:6e:75:ca:8b:03:77:0f:6d:65:
67:6c:73:ad:84:32:8b:fe:7d:73:33:d7:ab:66:4d:1f:5d:f0:
da:de:f7:d3:c0:01:aa:b8:0d:c8:f0:66:a6:36:dc:94:e1:91:
60:15:93:13:b1:4e:a3:b9:f9:8a:3b:02:ca:b8:5d:c0:a3:5e:
f2:ca:84:d8:48:3c:91:87:b0:4b:98:6c:05:2c:af:84:82:f2:
c0:5e:61:a7:76:b8:10:54:f0:ee:26:93:7a:97:5b:3e:29:32:
fc:f3:b0:8b:d8:72:ae:8a:80:b0:36:66:8d:c7:c0:4c:91:9a:
8c:9d:53:5a:b1:c1:95:41:b5:13:78:84:1a:87:a6:40:ed:2c:
e6:ed:5c:4a:59:a9:a3:0c:8a:5b:80:59:37:1d:d9:dd:12:39:
b9:22:cb:27:97:a8:1f:94:69:56:a1:06:f7:b0:98:d9:1f:9b:
06:e7:dc:9c:5f:7c:53:08:82:a8:46:7a:e0:90:93:f9:4d:11:
7d:4b:2e:41:58:e1:fe:53:4d:fb:09:cd:bc:03:69:53:5d:ca:
16:76:43:5f:7f:df:14:1a:87:29:82:60:78:80:d9:1a:c4:af:
21:3c:e5:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:10:03 2024 by rpki-client on console-ams.rpki-client.org