Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/scAzG2pblhoafI-F4FG8YrRI-pw.roa
File: scAzG2pblhoafI-F4FG8YrRI-pw.roa (raw, json)
Hash identifier: O/hE87zwyurIO6/WZPhcvElsGFHBHJsolFzpIngnq4Y=
Subject key identifier: B1:C0:33:1B:6A:5B:96:1A:1A:7C:8F:85:E0:51:BC:62:B4:48:FA:9C
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 0192EC33F73EA67C4C44822A3FD7A0E90DE0
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/scAzG2pblhoafI-F4FG8YrRI-pw.roa
Signing time: Sat 02 Nov 2024 09:28:01 +0000
ROA not before: Sat 02 Nov 2024 09:28:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 45.83.124.0/22 maxlen: 24
45.83.124.0/24 maxlen: 24
45.83.125.0/24 maxlen: 24
45.83.126.0/24 maxlen: 24
45.83.127.0/24 maxlen: 24
45.83.136.0/22 maxlen: 24
45.83.136.0/24 maxlen: 24
45.83.137.0/24 maxlen: 24
45.83.138.0/24 maxlen: 24
45.83.139.0/24 maxlen: 24
45.83.144.0/22 maxlen: 24
45.83.144.0/24 maxlen: 24
45.83.145.0/24 maxlen: 24
45.83.146.0/24 maxlen: 24
45.83.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ec:33:f7:3e:a6:7c:4c:44:82:2a:3f:d7:a0:e9:0d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Nov 2 09:28:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1c0331b6a5b961a1a7c8f85e051bc62b448fa9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4e:e7:0c:96:7b:af:ea:09:f9:f4:b9:6b:ea:
14:0e:f1:02:c6:0c:93:48:eb:07:78:84:92:a7:fc:
1a:cd:fc:c9:56:7b:f9:6d:6e:29:ee:16:a1:34:b9:
2e:f9:3e:3f:90:82:b1:89:9b:1d:13:f0:e2:e9:29:
4f:51:97:45:53:5d:9e:f1:24:29:a7:d4:d9:dc:62:
a0:c8:f9:f6:b0:6a:f0:23:4f:b0:04:b6:20:45:12:
8d:a3:0e:8f:e3:ac:c0:f0:c4:b1:aa:d6:47:33:6f:
af:e1:22:02:52:41:5c:0b:0e:87:e7:34:a6:a3:a8:
f7:00:17:52:20:02:eb:95:96:5c:14:bf:4c:87:8c:
b1:03:dc:d7:7a:23:cd:7d:84:41:5a:0d:a8:9f:cc:
a9:81:2e:ab:83:6a:db:e3:3e:9d:b7:2e:84:d1:c2:
fd:0c:88:ad:c8:98:80:eb:d8:2b:cf:50:ae:86:66:
84:e1:59:c8:07:4c:b6:55:9d:81:9f:0a:94:b5:95:
b2:dd:97:f7:32:58:0c:af:7e:84:93:3b:cd:10:ec:
a7:52:85:dd:78:98:4a:69:39:b2:72:7e:73:8e:7a:
a8:0e:dc:99:57:95:4e:90:15:16:b6:7a:d0:dd:d3:
66:ed:b5:ab:2e:1b:f2:07:3e:c8:11:e2:90:46:30:
84:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C0:33:1B:6A:5B:96:1A:1A:7C:8F:85:E0:51:BC:62:B4:48:FA:9C
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/scAzG2pblhoafI-F4FG8YrRI-pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.124.0/22
45.83.136.0/22
45.83.144.0/22
Signature Algorithm: sha256WithRSAEncryption
44:6e:9d:32:96:80:5d:23:1d:bf:e7:79:02:75:20:a5:a9:e5:
13:52:14:77:85:8c:55:b5:0b:59:d8:6f:21:9c:a1:64:ad:6f:
78:77:76:7f:9f:27:02:09:d4:06:66:03:6c:9d:f7:84:e2:19:
ab:70:08:05:b5:3b:41:e4:f2:19:08:a6:a2:46:77:10:d3:18:
af:f3:b9:ee:60:54:99:20:fa:97:48:6d:9b:59:9c:20:00:63:
9c:5f:15:fd:d8:40:cb:93:0f:58:94:79:cd:b5:05:ef:1d:6d:
72:55:3b:66:7d:f3:40:33:9b:4a:7a:5d:ca:2e:45:87:3f:02:
67:d3:b6:14:e6:8d:0c:f1:a7:e7:8f:59:c5:b0:3a:38:53:ce:
1b:67:12:b2:8d:ab:d0:14:da:a4:e7:4f:ce:e3:c0:45:63:1e:
35:f2:87:96:4b:2c:c4:fb:7a:b0:fb:57:be:55:ce:61:c4:ec:
15:0d:ef:2a:4d:41:0c:67:ec:1a:29:96:a0:3e:9a:66:53:8e:
fa:29:d4:83:1f:ab:7f:8b:c8:34:46:a9:f2:43:87:cd:f0:8a:
22:df:14:5a:e3:67:bf:11:92:fb:69:40:3b:7c:92:5e:d4:e1:
4d:9f:da:75:49:90:cb:1d:db:8b:ec:0c:bb:e5:72:f0:9e:8d:
d1:39:4d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:52:43 2024 by rpki-client on console-fra.rpki-client.org