Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d0c809-a95b-4f61-8ca7-f03f9686d206/1/fsA_m-lywDZGoymhwBa9y0KAzRE.roa
File: fsA_m-lywDZGoymhwBa9y0KAzRE.roa (raw, json)
Hash identifier: FgZGR1RNJmMHE0nKaZD43jZy8IY1Lyzo3IecbDELRZM=
Subject key identifier: 7E:C0:3F:9B:E9:72:C0:36:46:A3:29:A1:C0:16:BD:CB:42:80:CD:11
Certificate issuer: /CN=bb32d3e2da170835e4df9bc35dd64658e349796d
Certificate serial: 018CC500E94D8341044505A4F5C821B25AC5
Authority key identifier: BB:32:D3:E2:DA:17:08:35:E4:DF:9B:C3:5D:D6:46:58:E3:49:79:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uzLT4toXCDXk35vDXdZGWONJeW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d0c809-a95b-4f61-8ca7-f03f9686d206/1/fsA_m-lywDZGoymhwBa9y0KAzRE.roa
Signing time: Mon 01 Jan 2024 12:30:20 +0000
ROA not before: Mon 01 Jan 2024 12:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24904
IP address blocks: 45.15.60.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d0c809-a95b-4f61-8ca7-f03f9686d206/1/uzLT4toXCDXk35vDXdZGWONJeW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d0c809-a95b-4f61-8ca7-f03f9686d206/1/uzLT4toXCDXk35vDXdZGWONJeW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/uzLT4toXCDXk35vDXdZGWONJeW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:e9:4d:83:41:04:45:05:a4:f5:c8:21:b2:5a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb32d3e2da170835e4df9bc35dd64658e349796d
Validity
Not Before: Jan 1 12:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ec03f9be972c03646a329a1c016bdcb4280cd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1c:71:64:4c:87:7f:fc:0c:b7:dc:b8:b1:c8:
99:4b:a6:ad:ca:be:fd:42:ea:cf:7c:a0:3e:47:e9:
3b:40:f4:25:10:b3:9b:ab:b3:2f:2c:3d:03:d2:64:
cf:d0:48:46:cb:5f:8b:3c:9c:0e:3e:15:1b:16:d1:
04:07:0c:b0:d0:9c:e8:c7:7d:9a:59:27:b1:90:27:
ce:07:34:5f:8a:a7:48:cd:d7:95:d8:37:55:fa:72:
4f:55:e4:df:c9:6f:17:df:c3:2e:c4:b2:76:09:ea:
74:ed:b1:c3:91:b8:d0:a3:ed:56:1f:3d:d0:94:de:
6b:9f:d7:1c:14:73:f5:90:90:48:d6:01:5b:34:04:
1f:c5:ee:5f:30:29:4f:fb:16:84:9e:0b:be:59:ee:
94:12:e0:af:41:4e:d3:52:39:ca:dc:55:8b:2f:7c:
ac:e0:cc:eb:8d:17:69:e9:e4:b5:7f:39:b1:0f:95:
b2:3d:8a:48:11:5d:33:94:5f:a8:bd:2d:75:a7:64:
71:02:ea:cc:06:73:b7:6a:4b:06:85:12:65:e9:95:
77:90:c2:48:0b:83:49:14:1b:9a:d7:ae:d4:1b:f7:
a9:59:ca:8c:87:3c:14:44:09:80:9a:98:3c:9f:ba:
62:cb:21:f8:60:68:d4:9e:af:ca:45:50:5e:d5:b9:
af:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C0:3F:9B:E9:72:C0:36:46:A3:29:A1:C0:16:BD:CB:42:80:CD:11
X509v3 Authority Key Identifier:
keyid:BB:32:D3:E2:DA:17:08:35:E4:DF:9B:C3:5D:D6:46:58:E3:49:79:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzLT4toXCDXk35vDXdZGWONJeW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d0c809-a95b-4f61-8ca7-f03f9686d206/1/fsA_m-lywDZGoymhwBa9y0KAzRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d0c809-a95b-4f61-8ca7-f03f9686d206/1/uzLT4toXCDXk35vDXdZGWONJeW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.60.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:94:0b:15:f6:d3:f1:c0:c7:38:88:f7:bd:12:fd:61:82:4f:
5f:19:a0:bf:e1:2e:36:5e:86:4e:70:c7:b6:49:f3:41:20:9c:
d8:3d:b1:fc:f7:28:21:10:36:9a:c6:03:80:42:ce:66:61:f2:
2a:25:c1:a4:24:2a:d8:1a:56:b0:3c:c2:74:9c:64:e0:0b:aa:
d6:bd:a1:55:1a:37:29:75:72:4d:12:94:ac:d8:e2:ac:60:34:
1c:b9:f2:75:14:73:05:d4:5d:5e:92:02:2d:56:0b:b5:e7:b0:
22:5b:53:61:93:29:b7:8a:4f:e4:23:5e:fe:1a:83:d0:8b:c9:
e8:f8:6f:e7:ac:8c:5d:58:b1:24:10:91:a6:3b:43:75:04:95:
73:7d:6c:24:0e:13:7a:70:b8:b4:92:96:23:9c:b3:f7:31:90:
a6:89:28:24:67:b5:f2:65:df:00:28:fa:1e:84:5c:1a:20:15:
5b:32:3e:03:38:9c:16:8c:ad:d0:b2:a0:db:f5:db:37:34:d6:
eb:ec:31:17:1e:09:a1:f1:b8:e7:38:63:9c:5a:74:27:c6:c2:
75:37:b3:d9:36:40:48:ec:e9:db:d7:50:46:42:4a:42:66:56:
15:b0:83:0b:36:85:16:1c:4f:95:c4:23:12:b0:8b:04:bb:f7:
5a:5e:2c:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:52:55 2024 by rpki-client on console-ams.rpki-client.org