Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2dce04-747a-4a4d-96a2-d357f5aeeb85/1/7HjCPOI4zQx8mF6sFEG3aVS1sWU.roa
File: 7HjCPOI4zQx8mF6sFEG3aVS1sWU.roa (raw, json)
Hash identifier: Xs7G4DD3zv5gc9GuPkkeL/nc1Pd0XoPfsNvHyBgYmUo=
Subject key identifier: EC:78:C2:3C:E2:38:CD:0C:7C:98:5E:AC:14:41:B7:69:54:B5:B1:65
Certificate issuer: /CN=ede7662d597fafc96dd765577508c3ed029d6567
Certificate serial: 018CC94D9AFA568DD2D69BE7787DCA6513C0
Authority key identifier: ED:E7:66:2D:59:7F:AF:C9:6D:D7:65:57:75:08:C3:ED:02:9D:65:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7edmLVl_r8lt12VXdQjD7QKdZWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2dce04-747a-4a4d-96a2-d357f5aeeb85/1/7HjCPOI4zQx8mF6sFEG3aVS1sWU.roa
Signing time: Tue 02 Jan 2024 08:32:35 +0000
ROA not before: Tue 02 Jan 2024 08:32:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44205
IP address blocks: 45.144.180.0/22 maxlen: 22
45.8.120.0/22 maxlen: 22
185.115.120.0/22 maxlen: 22
2a0e:8900::/29 maxlen: 29
2a0e:f340::/29 maxlen: 29
2a06:7600::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2dce04-747a-4a4d-96a2-d357f5aeeb85/1/7edmLVl_r8lt12VXdQjD7QKdZWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/2dce04-747a-4a4d-96a2-d357f5aeeb85/1/7edmLVl_r8lt12VXdQjD7QKdZWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/7edmLVl_r8lt12VXdQjD7QKdZWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:9a:fa:56:8d:d2:d6:9b:e7:78:7d:ca:65:13:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede7662d597fafc96dd765577508c3ed029d6567
Validity
Not Before: Jan 2 08:32:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec78c23ce238cd0c7c985eac1441b76954b5b165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:24:85:c0:e7:ba:e7:43:ca:d8:16:a8:89:d8:
13:6f:e7:0c:2f:01:c8:e8:8d:14:d2:75:68:b0:a9:
10:3e:ee:7c:61:fd:0f:57:24:57:df:23:17:d9:ac:
76:b7:a1:fa:4d:75:f1:fe:d0:57:14:9d:1c:ae:04:
45:d6:fb:c5:6a:64:7a:8d:d8:da:59:27:41:9c:52:
ae:ba:89:ee:f7:1b:19:01:df:9a:b1:cc:58:fd:85:
1c:48:2e:bf:bf:8b:48:5b:20:47:45:4d:47:41:39:
3a:41:6e:8a:b2:82:3c:37:5d:59:3d:f0:66:43:e2:
61:fc:3f:59:6b:14:19:44:5b:a7:23:1a:3a:48:d6:
fc:5d:10:c1:0c:8c:fa:c9:76:be:09:37:a8:46:5b:
b2:15:b0:d9:ef:f3:89:d3:b2:ef:8c:6f:55:e2:dd:
8b:37:fc:f0:b0:1d:bc:d7:b3:dc:a4:b4:ed:c6:8f:
f0:92:cc:49:a4:25:a9:ec:ee:9f:58:5b:4c:1b:1a:
7f:4b:69:dd:aa:e3:8c:f8:21:2c:0e:a1:00:96:ad:
ef:89:cc:48:f3:fa:72:ad:fc:5c:4c:3b:50:d8:ad:
f6:fb:a8:5e:a4:4c:7a:5c:44:08:83:e5:4d:02:04:
02:1c:a4:e5:65:38:04:99:b7:f9:bc:ec:2e:6b:c0:
52:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:78:C2:3C:E2:38:CD:0C:7C:98:5E:AC:14:41:B7:69:54:B5:B1:65
X509v3 Authority Key Identifier:
keyid:ED:E7:66:2D:59:7F:AF:C9:6D:D7:65:57:75:08:C3:ED:02:9D:65:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7edmLVl_r8lt12VXdQjD7QKdZWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2dce04-747a-4a4d-96a2-d357f5aeeb85/1/7HjCPOI4zQx8mF6sFEG3aVS1sWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2dce04-747a-4a4d-96a2-d357f5aeeb85/1/7edmLVl_r8lt12VXdQjD7QKdZWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.120.0/22
45.144.180.0/22
185.115.120.0/22
IPv6:
2a06:7600::/29
2a0e:8900::/29
2a0e:f340::/29
Signature Algorithm: sha256WithRSAEncryption
15:63:14:9e:b5:bd:2c:db:e5:e5:20:74:17:d7:5e:8d:d1:04:
fa:d2:fd:1d:e8:7c:45:d1:74:24:38:e5:38:39:db:24:63:2a:
a8:56:31:09:30:78:2e:c2:97:3e:64:30:8b:a6:97:4f:8c:cb:
2e:b2:2d:41:c0:37:53:f6:62:b0:b6:30:e3:77:89:3e:43:a0:
0d:d3:a9:57:e0:1a:1a:f9:89:dd:c3:51:47:ca:b6:ed:ae:ef:
c4:ae:4f:73:6d:8f:60:73:1f:3d:ec:8c:97:69:96:19:b7:7a:
08:fc:0d:90:d3:b3:47:f6:0a:f7:80:01:2e:9b:fe:77:4d:1b:
3d:8e:6b:da:a8:b3:80:ab:20:42:c7:02:ee:9d:11:bd:5b:58:
b6:e1:08:d2:c9:fa:57:e9:a2:c9:f0:31:07:3b:b4:28:b9:c9:
6e:98:3c:d6:cf:df:b6:0a:f5:13:cb:71:6d:fe:ff:a1:39:61:
c9:24:3a:bd:39:e5:18:ca:a6:bf:a9:00:39:a9:db:58:9a:8c:
be:cc:c7:d2:58:3b:46:30:91:e7:da:b3:33:52:c0:76:ff:de:
27:56:7a:d0:96:71:a8:7a:8f:8b:0c:8a:2c:88:97:c0:92:aa:
31:65:e9:08:41:b5:26:a7:f2:cc:51:08:69:1c:7f:c6:c0:c8:
3b:94:f4:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:05 2024 by rpki-client on console-ams.rpki-client.org