Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/slEVNhUUXB4-GhFIS0vj7DriG6Q.roa
File: slEVNhUUXB4-GhFIS0vj7DriG6Q.roa (raw, json)
Hash identifier: H//hd4sL1mLGuG7Tk+EwlPC/CspdPKEr4uZ4w/4voBs=
Subject key identifier: B2:51:15:36:15:14:5C:1E:3E:1A:11:48:4B:4B:E3:EC:3A:E2:1B:A4
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 018CC56ED69942A0F477B6F509304B2BCA3B
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/slEVNhUUXB4-GhFIS0vj7DriG6Q.roa
Signing time: Mon 01 Jan 2024 14:30:24 +0000
ROA not before: Mon 01 Jan 2024 14:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 91.188.219.0/24 maxlen: 24
91.188.216.0/24 maxlen: 24
91.188.217.0/24 maxlen: 24
91.188.218.0/24 maxlen: 24
45.81.142.0/24 maxlen: 24
45.81.143.0/24 maxlen: 24
45.81.140.0/24 maxlen: 24
45.81.141.0/24 maxlen: 24
185.182.190.0/24 maxlen: 24
185.182.191.0/24 maxlen: 24
185.182.188.0/24 maxlen: 24
185.182.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d6:99:42:a0:f4:77:b6:f5:09:30:4b:2b:ca:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: Jan 1 14:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b251153615145c1e3e1a11484b4be3ec3ae21ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c9:70:2c:8a:27:24:53:b4:e2:db:a1:da:6d:
33:fc:ce:34:ee:6a:16:6e:f5:e5:9a:e8:44:01:93:
e4:90:f7:f7:c4:10:99:81:aa:60:52:2a:b1:11:58:
79:48:c2:f6:49:ef:63:1e:7f:13:da:7b:14:48:b2:
60:8b:1b:2a:8a:0c:40:83:05:6e:57:8e:c6:d2:ee:
f6:30:69:26:dd:40:11:8e:dc:d2:0a:74:7c:e8:c9:
05:01:1c:b5:4d:d8:74:71:df:c5:80:2b:d7:ca:95:
c1:dc:fc:a6:c4:43:8b:a2:ba:9e:9e:05:47:af:6b:
e5:de:bb:0c:2f:a7:71:41:e5:3c:9a:77:a5:71:eb:
6a:c6:04:55:1c:94:58:07:59:25:16:62:45:cd:68:
3e:7d:0f:8b:ea:a7:3f:2d:4d:03:7a:b7:89:5d:b6:
68:ec:8f:80:8c:69:6f:13:0b:20:cb:57:7f:d9:e9:
11:b5:32:0f:1c:3d:28:60:85:1e:52:bd:d4:69:2e:
8d:16:c6:8c:33:30:42:c3:37:a5:76:9b:a9:dc:eb:
63:52:f0:cd:ca:d4:b5:b5:04:27:d3:68:4f:dc:3b:
68:84:0f:21:50:31:af:98:37:58:33:31:b1:80:38:
da:c4:ec:bb:03:f5:78:e5:ad:5c:61:02:ac:49:a2:
66:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:51:15:36:15:14:5C:1E:3E:1A:11:48:4B:4B:E3:EC:3A:E2:1B:A4
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/slEVNhUUXB4-GhFIS0vj7DriG6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.140.0/22
91.188.216.0/22
185.182.188.0/22
Signature Algorithm: sha256WithRSAEncryption
65:4d:04:28:f9:c6:29:ce:8e:00:9f:d1:9c:2f:4d:11:c6:b2:
f3:d6:ea:4e:9e:e5:84:e9:ee:47:2f:13:0a:ce:5a:42:77:47:
7d:68:54:13:8d:50:ae:7b:fd:d2:f8:e4:1f:8b:67:07:fc:4c:
80:54:88:5e:d0:bc:b7:4b:a2:0e:fb:c6:4e:cb:84:21:2c:ab:
2f:4a:ed:9a:3d:3a:15:2a:9e:98:79:c2:0e:06:08:e5:d2:65:
4d:8d:45:96:9d:f3:84:f7:5e:0e:08:49:23:71:11:09:56:4f:
43:4f:bb:5b:8a:da:8b:ea:b0:7a:c7:12:cf:23:1a:d4:e4:f8:
4a:50:1b:76:25:dc:e6:90:03:b9:55:cf:5e:57:f4:e3:53:a0:
da:55:e8:50:ae:9b:83:41:a6:d9:bc:9b:f8:ac:8f:82:72:76:
e1:fb:6f:32:28:81:c1:e6:63:f7:fb:17:ad:a7:e0:bc:34:b5:
d2:04:ff:71:0b:98:4a:3c:a4:c7:30:11:5e:af:5a:85:bf:5b:
50:8b:01:a1:ce:8f:d1:04:60:11:fa:85:43:8a:96:39:8d:cf:
1c:f7:6a:e9:6d:62:82:c7:64:76:25:b1:9b:ba:3f:85:0f:ac:
54:18:01:9d:f8:74:08:7b:ff:e1:3a:66:7c:5f:69:d8:a8:3a:
ec:fe:89:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:02:01 2024 by rpki-client on console-ams.rpki-client.org