Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/8MaXvUfyuaLuULVEjSbKjcaVrTk.roa
File: 8MaXvUfyuaLuULVEjSbKjcaVrTk.roa (raw, json)
Hash identifier: i0TGzXaaB+jGndKWm8vvHYZkRfXsyfcy6iXz1Tlm494=
Subject key identifier: F0:C6:97:BD:47:F2:B9:A2:EE:50:B5:44:8D:26:CA:8D:C6:95:AD:39
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 018DB258D29FCCE8F9F0F08CC68D5C849617
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/8MaXvUfyuaLuULVEjSbKjcaVrTk.roa
Signing time: Fri 16 Feb 2024 14:36:21 +0000
ROA not before: Fri 16 Feb 2024 14:36:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 45.83.132.0/22 maxlen: 24
45.83.152.0/22 maxlen: 24
45.139.44.0/22 maxlen: 24
45.139.56.0/22 maxlen: 24
45.139.64.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:58:d2:9f:cc:e8:f9:f0:f0:8c:c6:8d:5c:84:96:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Feb 16 14:36:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0c697bd47f2b9a2ee50b5448d26ca8dc695ad39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:51:12:1b:6a:7f:1a:32:59:cd:0c:75:ab:74:
4c:08:4c:ce:c0:21:ce:8f:d6:c4:97:98:bf:78:c6:
25:4e:9a:5e:37:a0:8b:02:65:30:f7:d7:0c:d0:20:
13:58:a3:0b:45:b0:32:c2:07:a6:9f:c8:f3:9a:cf:
3d:90:71:a5:82:2c:be:84:6e:29:1f:17:55:ce:2f:
28:1f:7f:5c:6a:d4:69:ee:ef:35:5c:e5:63:b4:04:
a4:6e:56:2a:76:7a:6a:c8:0a:c2:b6:ed:91:09:54:
ab:e5:ed:ae:38:59:79:af:5f:44:24:4b:40:ae:07:
9a:72:59:bf:96:16:cb:b5:03:80:ed:52:bf:a1:c2:
58:21:b5:be:ed:0a:55:79:35:b8:19:4b:33:aa:5c:
71:70:c2:13:fa:e5:c1:51:d0:92:b8:0d:d9:93:67:
d7:af:82:0e:67:8f:40:fb:c8:49:ab:58:d5:d4:44:
96:a3:fb:89:99:87:07:f0:fc:27:42:be:46:bc:bf:
5c:98:2e:85:66:20:f7:bd:62:d9:fc:71:b8:75:83:
1d:e1:bc:fc:13:2c:fc:0f:09:76:a8:a7:1e:11:8a:
7d:21:51:04:7a:36:2c:0b:2c:38:4e:f9:14:2f:f8:
e6:8e:cc:be:13:d0:4b:90:23:c8:ee:37:7d:73:e8:
77:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C6:97:BD:47:F2:B9:A2:EE:50:B5:44:8D:26:CA:8D:C6:95:AD:39
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/8MaXvUfyuaLuULVEjSbKjcaVrTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.132.0/22
45.83.152.0/22
45.139.44.0/22
45.139.56.0/22
45.139.64.0/22
Signature Algorithm: sha256WithRSAEncryption
17:a1:74:d3:c9:b3:b1:26:83:a6:e2:34:99:76:2a:90:eb:5f:
ed:61:1c:63:ac:84:00:44:08:f8:6c:97:4d:5d:dc:8b:fc:60:
75:da:cb:2f:f5:d1:29:f3:5e:33:18:f8:43:e6:63:a4:d7:25:
b3:2a:b2:b9:6c:42:5e:3b:ba:cc:c3:bd:d5:a1:91:0d:b3:5b:
73:d8:5b:2b:43:7d:84:8c:66:b3:21:ac:39:6b:8d:76:a3:83:
18:e9:2c:bd:57:bd:9d:ff:8d:5c:09:ed:29:57:57:55:43:49:
58:fe:ff:a4:1d:8d:a4:b6:15:75:5b:e1:8f:c2:da:15:b2:82:
76:a3:37:05:c0:72:ab:de:42:95:4f:6d:1d:7e:29:00:83:35:
4a:b6:3e:2a:6d:0b:0e:53:fc:29:db:f3:10:7f:58:48:d3:b4:
f6:12:15:c9:60:a5:71:3f:8d:04:da:ac:d8:88:bf:90:eb:b5:
eb:42:9d:2a:cd:57:58:de:36:85:5b:72:41:0f:3b:d1:63:a5:
9a:98:94:cc:d9:ac:fb:ab:12:ec:07:2a:b4:62:fb:1a:6b:40:
12:ad:90:bd:b9:d1:31:20:9a:77:af:e1:91:83:ee:8a:4c:11:
68:1c:91:42:d5:42:7c:56:df:5e:a1:7b:d8:19:b2:bd:02:47:
bd:5e:7a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:24:42 2024 by rpki-client on console-ams.rpki-client.org