Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/99e585-a652-44f3-a531-a003bfdf4e45/1/vl6IP2onkEl8gvTXimDwojzYrDc.roa
File: vl6IP2onkEl8gvTXimDwojzYrDc.roa (raw, json)
Hash identifier: EElU979+w7Ja0dpltMct71AB++7Vevt5Hk+RwMKEG7k=
Subject key identifier: BE:5E:88:3F:6A:27:90:49:7C:82:F4:D7:8A:60:F0:A2:3C:D8:AC:37
Certificate issuer: /CN=a90e28f2e509fe37ac5c3401a0a8c11029b621e4
Certificate serial: 018FEC8718FB2C995956F0673532CC70BE33
Authority key identifier: A9:0E:28:F2:E5:09:FE:37:AC:5C:34:01:A0:A8:C1:10:29:B6:21:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ4o8uUJ_jesXDQBoKjBECm2IeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/99e585-a652-44f3-a531-a003bfdf4e45/1/vl6IP2onkEl8gvTXimDwojzYrDc.roa
Signing time: Thu 06 Jun 2024 07:50:27 +0000
ROA not before: Thu 06 Jun 2024 07:50:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12874
IP address blocks: 45.82.228.0/22 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/99e585-a652-44f3-a531-a003bfdf4e45/1/qQ4o8uUJ_jesXDQBoKjBECm2IeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/99e585-a652-44f3-a531-a003bfdf4e45/1/qQ4o8uUJ_jesXDQBoKjBECm2IeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qQ4o8uUJ_jesXDQBoKjBECm2IeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:87:18:fb:2c:99:59:56:f0:67:35:32:cc:70:be:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90e28f2e509fe37ac5c3401a0a8c11029b621e4
Validity
Not Before: Jun 6 07:50:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be5e883f6a2790497c82f4d78a60f0a23cd8ac37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:56:f9:42:b0:91:6a:bc:5e:e0:a5:20:cd:cd:
4f:1b:97:05:78:e8:62:1e:06:2d:99:0f:33:b5:7a:
d7:2f:b0:88:51:1b:7c:eb:c8:6c:08:52:aa:21:85:
2b:c8:39:a3:54:86:c0:77:64:bc:7b:77:31:17:58:
9f:f1:e7:46:c3:50:c9:e7:02:e8:d2:df:b9:5a:92:
4c:c7:35:77:eb:4e:c9:b9:56:d5:d4:4d:26:38:4f:
bc:50:fd:a7:69:65:9a:b5:1f:39:fa:75:f3:96:de:
3f:d1:13:b8:fa:3a:5d:8d:7a:c5:ae:6f:12:88:20:
89:fd:77:ae:d7:84:c8:0e:f9:d3:70:83:ff:d3:87:
2a:ca:dc:5b:78:42:e1:dd:40:cb:db:73:bd:78:ab:
42:75:72:b4:66:41:33:4f:cc:c0:5c:0d:14:c8:ed:
16:c4:8e:6a:9f:3a:01:3b:34:2c:83:71:f4:a2:e3:
87:a8:57:f9:1b:4a:57:62:5c:df:6c:78:66:35:96:
79:3b:24:01:7c:98:25:86:ad:76:29:ce:08:c6:40:
1c:4d:1f:0e:0f:5a:bc:1d:0d:47:5e:20:24:ae:4f:
ac:a7:91:65:40:d5:75:73:9d:c6:f6:7c:90:21:31:
44:ea:59:4f:49:b0:c6:97:08:c1:1b:e6:37:9b:d7:
35:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5E:88:3F:6A:27:90:49:7C:82:F4:D7:8A:60:F0:A2:3C:D8:AC:37
X509v3 Authority Key Identifier:
keyid:A9:0E:28:F2:E5:09:FE:37:AC:5C:34:01:A0:A8:C1:10:29:B6:21:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ4o8uUJ_jesXDQBoKjBECm2IeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/99e585-a652-44f3-a531-a003bfdf4e45/1/vl6IP2onkEl8gvTXimDwojzYrDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/99e585-a652-44f3-a531-a003bfdf4e45/1/qQ4o8uUJ_jesXDQBoKjBECm2IeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.228.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:08:44:88:e6:7b:c8:62:03:ce:b6:44:ba:c2:2b:24:6b:67:
86:af:06:86:6b:af:0b:f9:94:fb:f1:b4:a3:69:cf:c7:09:05:
e5:e5:fb:8f:08:4f:58:6c:7f:da:2e:18:91:2b:8c:32:9e:26:
be:97:60:27:cc:ba:9e:99:c0:6d:93:9c:84:cc:ef:95:8f:c8:
6c:b5:c8:f4:8c:bc:11:d4:5d:b8:78:38:6e:df:de:f4:6b:53:
73:d7:a0:00:c9:f3:2a:89:f3:d4:9c:08:66:4b:25:19:0c:4b:
4a:68:97:a4:e6:13:48:78:c8:7b:2a:90:bb:df:0a:27:1d:94:
57:0c:95:6f:1e:0f:7d:aa:6a:ea:41:e7:eb:73:2c:ab:87:39:
cb:81:47:5d:07:f3:4d:4d:0f:03:f2:fe:e8:3b:d6:85:e0:32:
a8:7e:f7:cc:3f:bf:a9:95:51:1a:24:1f:78:af:59:88:82:21:
a8:03:f9:5c:9b:e4:b6:2b:15:f3:4e:32:37:1a:de:3e:35:ee:
df:4c:5b:d5:3c:5f:7a:f8:46:97:cf:f8:5b:41:63:ac:77:28:
e2:62:2c:21:c6:0a:78:2b:6e:41:d9:a0:83:58:f4:fa:81:49:
84:a7:95:c3:fc:f0:20:ba:9b:dd:c1:2d:70:2a:f2:86:6c:48:
7a:22:eb:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:08:30 2024 by rpki-client on console-ams.rpki-client.org