Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/HLclWPzkjjK6TLDTkxP7IXqPhOI.roa
File: HLclWPzkjjK6TLDTkxP7IXqPhOI.roa (raw, json)
Hash identifier: ycnVcsVzUbRkcn0RFBta++o9B0+wlbAm0deoECTIa0M=
Subject key identifier: 1C:B7:25:58:FC:E4:8E:32:BA:4C:B0:D3:93:13:FB:21:7A:8F:84:E2
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 018CC8013504E12CE0C702D5A94922112C7F
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/HLclWPzkjjK6TLDTkxP7IXqPhOI.roa
Signing time: Tue 02 Jan 2024 02:29:31 +0000
ROA not before: Tue 02 Jan 2024 02:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35913
IP address blocks: 45.139.56.0/22 maxlen: 24
45.139.64.0/22 maxlen: 24
45.83.124.0/22 maxlen: 24
45.83.144.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 21:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:35:04:e1:2c:e0:c7:02:d5:a9:49:22:11:2c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Jan 2 02:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1cb72558fce48e32ba4cb0d39313fb217a8f84e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:47:61:13:69:05:97:8d:d9:6d:b8:bd:b7:19:
40:d9:72:a7:85:07:77:7d:56:45:77:b0:08:bb:73:
eb:26:b8:c3:62:ec:5d:fe:2f:c0:27:a9:5c:21:d1:
ae:53:00:b3:c6:b5:ec:d6:bd:41:13:c2:ba:d7:00:
a2:bb:06:88:c8:20:74:4f:af:bb:b2:c9:cc:c7:d4:
5d:5c:d2:18:2f:3c:36:bf:ff:bf:38:d7:dc:30:80:
68:94:da:e1:7c:03:b2:cf:87:b2:13:1e:72:99:c2:
f3:06:e6:d8:c9:38:cc:26:fd:90:32:73:be:14:7f:
b6:18:9a:48:9d:5d:37:c3:ad:6d:8a:35:9b:98:6f:
15:82:40:a4:5d:ea:0e:d5:8f:2c:1a:49:2e:e3:fd:
b4:d7:0a:7d:a5:17:e2:95:a7:f4:7e:ad:3b:11:6c:
25:e2:97:d1:52:59:4e:cc:b5:70:d1:07:28:8f:3f:
bc:bf:47:ba:fc:b0:55:6a:26:f2:4b:9b:7e:8d:b0:
76:e7:3a:ef:6e:d3:55:0d:87:f4:5b:d3:62:94:72:
8e:6e:8b:c9:50:0f:51:36:b8:71:42:92:5c:ba:6d:
c0:e5:5d:f8:45:ca:18:2f:f0:8f:0c:5b:ae:d5:f2:
ef:49:8f:e5:d7:00:9b:f9:74:ab:e0:50:69:61:84:
89:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B7:25:58:FC:E4:8E:32:BA:4C:B0:D3:93:13:FB:21:7A:8F:84:E2
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/HLclWPzkjjK6TLDTkxP7IXqPhOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.124.0/22
45.83.144.0/22
45.139.56.0/22
45.139.64.0/22
Signature Algorithm: sha256WithRSAEncryption
32:c4:c8:ec:29:07:88:5d:d3:d4:04:31:e3:c5:0a:2e:d7:09:
69:25:51:72:75:7d:57:8e:68:b1:a7:c6:07:e1:c8:77:b0:cd:
5f:c8:6c:59:45:64:95:7d:6f:17:6a:27:97:5d:91:1f:8c:9c:
fa:4e:fe:39:19:ae:f9:9d:9b:a1:67:33:8b:70:52:66:8a:eb:
c2:f6:fe:f4:e2:72:c2:18:6c:13:7b:76:4f:6d:14:a5:6c:ef:
94:cb:5b:05:8f:00:76:7a:98:f0:17:29:b8:df:80:a2:0b:40:
0b:30:0f:c7:4a:f8:57:21:73:b6:65:d8:2e:22:45:c3:b8:e0:
fc:22:aa:1a:94:18:93:ad:70:60:bd:77:47:33:2c:3e:b3:9f:
a5:1f:8c:15:ec:f4:c5:cf:cf:cc:e9:b9:42:7d:3e:43:04:20:
eb:bd:6b:85:c0:62:22:f8:6a:b9:9d:ff:a5:72:a0:20:6e:ea:
ff:69:ed:e7:f8:e4:80:d7:21:e3:a0:3e:d5:7c:25:53:11:1b:
d6:17:b8:9c:05:ad:2a:9c:7b:b4:e7:f9:7b:55:5e:76:dd:13:
d2:8f:94:05:a4:b2:c5:e4:89:34:fe:9b:2f:e0:50:4f:3b:55:
85:09:23:dc:15:b3:63:65:aa:cc:8e:a7:c2:0c:e2:10:aa:43:
3c:ec:96:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 02:58:29 2024 by rpki-client on console-fra.rpki-client.org