Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/SiUykNKTjaApyo1sqndO19rBYAs.roa
File: SiUykNKTjaApyo1sqndO19rBYAs.roa (raw, json)
Hash identifier: jaR1D2Lqsnpc33UxJXomGKoF/S6s6EdMDhOpwvCqmiY=
Subject key identifier: 4A:25:32:90:D2:93:8D:A0:29:CA:8D:6C:AA:77:4E:D7:DA:C1:60:0B
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 0194266C0E479A3B585E83695200EA18053F
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/SiUykNKTjaApyo1sqndO19rBYAs.roa
Signing time: Thu 02 Jan 2025 09:50:03 +0000
ROA not before: Thu 02 Jan 2025 09:50:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 45.83.124.0/22 maxlen: 24
45.83.124.0/24 maxlen: 24
45.83.125.0/24 maxlen: 24
45.83.126.0/24 maxlen: 24
45.83.127.0/24 maxlen: 24
45.83.136.0/22 maxlen: 24
45.83.136.0/24 maxlen: 24
45.83.137.0/24 maxlen: 24
45.83.138.0/24 maxlen: 24
45.83.139.0/24 maxlen: 24
45.83.144.0/22 maxlen: 24
45.83.144.0/24 maxlen: 24
45.83.145.0/24 maxlen: 24
45.83.146.0/24 maxlen: 24
45.83.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 10:07:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:0e:47:9a:3b:58:5e:83:69:52:00:ea:18:05:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Jan 2 09:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a253290d2938da029ca8d6caa774ed7dac1600b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6f:03:1d:2e:74:77:97:da:8a:d9:77:05:c6:
a4:82:64:d8:96:94:02:c4:9f:6a:44:95:f9:ec:9e:
45:eb:e0:00:6b:75:22:17:37:ac:07:d9:0c:d6:ba:
70:a8:8d:6a:50:2f:3d:d4:7b:5a:44:b7:08:1b:f4:
7a:17:b1:83:e4:52:9c:7b:41:17:09:34:de:7c:96:
fe:f4:92:ea:b3:18:8e:87:03:52:03:fd:07:91:c0:
81:aa:3c:df:e1:d3:40:dc:d6:97:02:b3:c8:9f:f3:
14:62:1b:36:b7:d5:1e:de:4e:54:df:96:a3:d4:82:
e8:f6:25:ed:95:b9:e4:85:d4:9c:76:f4:3b:64:fa:
ff:e7:0c:a4:39:73:80:a8:63:14:13:2a:27:ce:2b:
67:5e:5a:33:db:55:d9:7d:b9:3e:fd:92:1e:e5:87:
bd:6b:e5:18:9d:0c:49:ef:79:f4:ac:27:3b:89:57:
f6:55:cc:39:3c:5e:b7:3c:c6:ed:9d:b4:f6:45:10:
ed:b3:79:bc:a0:b2:df:75:cd:22:76:18:c3:af:db:
b0:cd:35:c4:c9:2b:a1:87:ce:34:41:c1:f5:fa:1e:
34:36:57:78:de:01:aa:b6:9c:c3:8b:43:df:57:75:
ff:83:32:fd:47:83:de:7b:7c:75:21:e5:33:83:8b:
3e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:25:32:90:D2:93:8D:A0:29:CA:8D:6C:AA:77:4E:D7:DA:C1:60:0B
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/SiUykNKTjaApyo1sqndO19rBYAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.124.0/22
45.83.136.0/22
45.83.144.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:2c:8d:72:ca:9a:80:4b:28:34:2b:45:92:e6:ea:13:da:07:
32:dc:33:a0:c3:6d:5b:bf:f1:ee:f2:7e:b1:1d:17:af:8b:ed:
d1:b4:eb:9e:1b:74:03:11:24:f9:2e:5f:0c:71:21:2d:f9:d8:
f9:33:d8:19:4e:05:98:33:f4:36:63:2a:9e:c5:8c:83:26:81:
d0:05:91:64:8f:51:a4:ea:71:cf:ca:70:0f:d4:0b:6e:aa:0f:
94:e1:87:44:e1:79:8e:33:6e:00:61:15:92:bb:1a:81:38:b0:
57:04:da:2a:5b:a2:aa:ce:01:c6:5d:7c:22:5f:65:37:5a:e2:
7d:e8:07:84:d4:b8:1f:ae:ed:72:73:ab:fa:40:c6:86:b8:64:
bf:33:f4:8b:1f:d1:62:75:b0:9f:89:99:0b:6d:79:42:b8:7f:
85:3a:99:96:e5:9c:e1:4e:e8:67:37:8a:1f:7a:16:2f:d4:aa:
61:5d:ce:27:85:61:f4:fa:3f:e2:dd:ca:5d:b2:ea:a6:b7:df:
e6:ac:90:36:36:de:33:a6:51:d3:bc:9a:5d:fb:a1:88:9f:21:
8c:05:f8:bb:3f:01:6e:db:cb:d3:2d:56:31:17:29:e3:70:b2:
82:35:a6:c5:c9:d0:2f:28:79:37:ac:0b:3d:e1:a0:e8:fc:c4:
8c:91:25:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:10:30 2025 by rpki-client