Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/VQ3tieIb3lYlyP9ujmyTd-bp4BM.roa
File: VQ3tieIb3lYlyP9ujmyTd-bp4BM.roa (raw, json)
Hash identifier: DEPSZSR92fQXu6RADNtDeA/CEUzwQr54A+qDzB4hjSs=
Subject key identifier: 55:0D:ED:89:E2:1B:DE:56:25:C8:FF:6E:8E:6C:93:77:E6:E9:E0:13
Certificate issuer: /CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd
Certificate serial: 0192D92E8354E6AD98510EE10682BCF6469A
Authority key identifier: BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/VQ3tieIb3lYlyP9ujmyTd-bp4BM.roa
Signing time: Tue 29 Oct 2024 16:49:16 +0000
ROA not before: Tue 29 Oct 2024 16:49:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 45.81.117.0/24 maxlen: 24
45.81.118.0/24 maxlen: 24
45.85.240.0/24 maxlen: 24
45.85.241.0/24 maxlen: 24
45.85.243.0/24 maxlen: 24
45.145.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d9:2e:83:54:e6:ad:98:51:0e:e1:06:82:bc:f6:46:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd
Validity
Not Before: Oct 29 16:49:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=550ded89e21bde5625c8ff6e8e6c9377e6e9e013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5e:95:23:02:9c:55:35:9f:04:09:9e:0d:7d:
56:6f:c5:a9:83:9d:2f:08:51:c4:10:e5:a3:40:38:
5a:0e:21:9c:81:88:87:53:c0:f3:fe:36:91:64:24:
88:8a:ee:fa:c8:c5:aa:a4:c8:1c:f5:0e:da:33:9e:
b0:cc:7e:1b:3e:e3:b1:51:d2:95:af:92:eb:8c:4b:
64:66:d4:dc:55:e3:63:72:84:43:e6:c5:ef:f4:1a:
87:47:d9:2e:d6:d6:21:c7:1b:53:39:4f:06:6a:35:
51:b3:3f:cb:76:68:46:9e:cf:0a:4b:d5:8e:dd:1d:
06:cc:24:77:5e:9a:bd:f0:3f:84:4e:e2:41:bd:92:
62:17:79:1d:b9:5f:75:a9:27:4e:13:81:f0:87:8b:
fd:96:43:49:be:e4:89:55:e1:0f:2c:3f:44:33:20:
b1:3f:58:1f:7b:aa:8b:38:10:e6:b0:aa:50:ce:db:
0f:37:91:21:16:28:5c:70:51:da:71:33:f7:26:b1:
33:21:be:25:b5:b2:7c:8b:5d:59:16:64:9e:7b:ae:
bd:04:bc:e5:aa:5d:6b:32:c4:21:de:1a:48:88:14:
36:c6:be:f9:91:b4:d7:34:50:f2:ad:e2:b2:56:24:
53:df:1b:be:b8:1e:bc:93:07:d6:8f:0f:b3:2c:ce:
4f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0D:ED:89:E2:1B:DE:56:25:C8:FF:6E:8E:6C:93:77:E6:E9:E0:13
X509v3 Authority Key Identifier:
keyid:BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/VQ3tieIb3lYlyP9ujmyTd-bp4BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.117.0-45.81.118.255
45.85.240.0/23
45.85.243.0/24
45.145.216.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:b7:51:84:17:38:9e:c9:2c:10:8d:75:53:7d:14:10:9c:74:
04:1b:b4:2c:28:3b:92:19:2c:46:a3:ea:2b:80:f0:e4:db:38:
24:22:71:7f:d6:11:dd:24:8e:57:d4:c9:5d:c6:51:10:81:c2:
fb:14:5f:e1:73:e8:ca:b4:a8:14:b9:d0:4b:d2:22:f6:25:dc:
86:cf:56:72:d0:3f:13:60:6b:0f:6b:4a:54:bc:b5:49:90:9a:
15:30:c8:9d:c5:30:7b:57:81:d6:d9:b0:03:70:75:a8:e7:44:
ca:59:ba:72:b0:41:2e:70:3a:86:72:52:15:2b:f3:ce:06:34:
a5:29:bc:9d:c2:ab:6d:39:35:3c:0f:ef:e8:bb:e3:14:c4:c7:
86:c4:c5:ae:78:a1:0d:ca:6a:9d:25:48:9a:93:7a:7d:f9:6a:
88:7e:03:fb:eb:58:b3:3b:08:a4:53:e6:b9:35:a8:f0:87:c7:
7e:da:45:9b:50:f9:bb:d2:b1:0f:67:86:53:66:20:d2:e0:00:
52:a6:dd:d6:b5:ee:1c:76:35:fd:a2:62:d6:b0:b2:98:3b:26:
61:2f:e2:aa:92:66:f3:8b:be:ed:4a:f5:d4:c2:95:c8:c0:d0:
a9:8a:97:a3:f3:78:2e:f1:cd:26:ba:04:ae:7a:bb:e0:5f:bc:
6e:19:1f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:52:13 2024 by rpki-client on console-fra.rpki-client.org