Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/GMF4_uBkLgbBDjB9eiE_AdkatHA.roa
File: GMF4_uBkLgbBDjB9eiE_AdkatHA.roa (raw, json)
Hash identifier: rLGc+YiIecb4TJATSjC6VhRK0tbRo+MHUH/OsVEgCl0=
Subject key identifier: 18:C1:78:FE:E0:64:2E:06:C1:0E:30:7D:7A:21:3F:01:D9:1A:B4:70
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 018EAA0E812F0F55D03783A34B7F513A1ACC
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/GMF4_uBkLgbBDjB9eiE_AdkatHA.roa
Signing time: Thu 04 Apr 2024 17:01:01 +0000
ROA not before: Thu 04 Apr 2024 17:01:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200017
IP address blocks: 45.95.224.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 00:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:aa:0e:81:2f:0f:55:d0:37:83:a3:4b:7f:51:3a:1a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Apr 4 17:01:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18c178fee0642e06c10e307d7a213f01d91ab470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e9:8f:3f:5d:d2:22:77:33:93:40:ea:f8:d3:
76:e7:90:cc:d1:f0:ce:1c:2a:b0:c2:46:6f:25:e1:
0b:cb:5d:97:83:61:c0:48:bf:a3:c5:02:b0:06:83:
8b:b1:7f:a4:18:7d:3e:24:99:36:0f:dc:ec:58:23:
0c:6a:8a:7f:9b:43:92:25:2a:7a:77:45:89:d6:b0:
76:e8:a8:73:f3:71:cf:cc:62:68:89:1a:8e:2d:bb:
6a:f3:7f:2a:ff:03:8c:a9:0c:14:53:2a:64:3e:60:
3a:34:4c:08:1a:b8:d4:c7:9c:c3:c8:32:c5:48:cc:
18:85:a7:c9:84:df:15:1d:6c:01:21:be:c8:72:5c:
04:3f:c8:f2:39:d7:1f:bb:bf:05:a6:04:a5:42:0a:
8c:1c:18:2a:1d:8b:57:91:b7:5b:13:e4:9c:17:c1:
b1:91:3b:b2:24:b8:af:da:11:90:13:64:51:6b:c0:
6e:71:a9:83:aa:b3:c9:5a:82:5c:00:09:2f:9d:40:
36:ed:d4:2a:73:52:0a:d6:bf:ff:b1:15:4e:e3:18:
0e:c0:46:46:1d:9e:f6:9c:27:30:1b:d2:7d:0b:de:
7d:ac:01:bf:b1:7a:e4:80:e3:82:39:d8:aa:79:d1:
82:66:e5:53:2d:fe:02:9f:02:f9:a1:8d:1c:e5:bd:
df:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C1:78:FE:E0:64:2E:06:C1:0E:30:7D:7A:21:3F:01:D9:1A:B4:70
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/GMF4_uBkLgbBDjB9eiE_AdkatHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.224.0/23
Signature Algorithm: sha256WithRSAEncryption
91:cb:55:bf:de:e6:e5:0f:04:45:7b:50:03:41:9e:29:95:8a:
b6:ba:3e:1b:6b:25:51:e1:28:7a:7d:34:93:83:e8:03:36:64:
d0:b1:f0:02:32:1a:03:e8:95:ae:67:ac:32:cf:06:b9:c5:0b:
2f:3c:a6:29:67:4a:04:25:4e:16:5b:42:20:ca:df:d6:b4:3a:
3a:46:84:68:f1:d7:09:6c:cc:ac:5b:4f:48:89:38:1d:fc:96:
52:1e:29:b7:7a:43:92:5b:70:e3:85:87:f2:63:a5:22:4b:c5:
28:e1:c2:b6:57:34:d0:fe:4c:c5:58:9b:41:d0:cc:e1:cc:c2:
a5:36:2e:44:5e:b2:8a:e2:22:9f:d8:80:73:7b:fb:22:64:59:
a6:c7:52:2d:f9:cf:a3:32:1d:ea:e6:a0:21:2f:e0:e3:9d:7f:
c6:e2:7e:6a:d4:a4:a5:1f:49:dd:23:4f:0c:cf:5a:dd:60:3a:
a4:76:09:cc:72:cb:c5:0a:82:ee:f6:30:d2:3a:33:01:21:d3:
88:81:a4:99:60:f0:db:7b:7e:03:fd:22:64:2d:aa:e7:b5:76:
d1:2a:31:33:6d:b4:19:04:d2:fb:a6:22:26:07:cd:c1:77:a4:
01:ca:1e:71:b9:0e:7f:c2:d1:cc:da:86:94:af:66:ec:14:b9:
fa:84:31:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:59:25 2024 by rpki-client on console-fra.rpki-client.org