Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/j361ssb6Kx5cSZwcKQTqm3kLO94.roa
File: j361ssb6Kx5cSZwcKQTqm3kLO94.roa (raw, json)
Hash identifier: TENGG1x3JaW3of+AYFsMu+NO0ri5mJ0Kh9hYkTiK5l8=
Subject key identifier: 8F:7E:B5:B2:C6:FA:2B:1E:5C:49:9C:1C:29:04:EA:9B:79:0B:3B:DE
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 0190308AB3158E59A3E6E948A1BE0520FA60
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/j361ssb6Kx5cSZwcKQTqm3kLO94.roa
Signing time: Wed 19 Jun 2024 12:48:34 +0000
ROA not before: Wed 19 Jun 2024 12:48:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42156
IP address blocks: 45.83.172.0/22 maxlen: 22
45.143.60.0/24 maxlen: 24
45.143.61.0/24 maxlen: 24
45.143.62.0/23 maxlen: 23
69.48.159.0/24 maxlen: 24
185.161.188.0/24 maxlen: 24
185.251.180.0/24 maxlen: 24
2a0e:8480::/29 maxlen: 29
2a0e:e2c0::/29 maxlen: 29
2a0e:e2c1::/32 maxlen: 32
2a0e:e2c2::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:30:8a:b3:15:8e:59:a3:e6:e9:48:a1:be:05:20:fa:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Jun 19 12:48:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f7eb5b2c6fa2b1e5c499c1c2904ea9b790b3bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f9:93:66:c2:ab:65:ec:cb:50:75:09:06:6f:
39:96:07:ff:7c:85:33:7a:b0:47:36:f5:bc:f1:03:
5f:29:10:65:dc:56:5f:4e:6a:b5:f5:7f:e6:c5:0f:
b8:e9:9d:69:68:49:a0:27:0c:e9:de:a5:47:7b:9f:
d6:49:aa:a1:e8:86:66:99:8f:11:99:41:72:9b:6c:
f3:48:92:1a:9d:7e:37:c5:38:43:98:32:da:b8:cd:
07:5f:af:56:86:3e:02:b8:40:72:7b:c6:d8:e5:b1:
8e:b8:45:e3:77:6c:4e:89:4a:dc:f5:08:0f:d6:05:
59:27:0a:c6:37:68:53:27:13:eb:99:b9:cc:17:8e:
4c:76:be:28:31:ec:a3:be:93:6d:9f:56:df:0a:14:
e0:be:c2:44:6f:3f:46:f5:ba:5e:ed:68:27:40:b8:
1f:b2:db:ad:0b:16:70:a7:5a:03:00:dd:37:71:ff:
de:9a:37:f0:b2:49:f3:e4:66:af:32:f9:37:86:bf:
c7:e9:77:69:6a:54:ef:af:04:82:06:85:31:df:de:
98:4b:74:9c:17:68:d4:e3:be:3e:fe:64:9f:aa:e5:
ce:eb:77:f9:0f:94:4c:d3:ab:a7:f4:50:fd:29:bd:
76:0b:94:8e:25:5f:d4:9c:75:d7:95:e7:98:2f:14:
93:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7E:B5:B2:C6:FA:2B:1E:5C:49:9C:1C:29:04:EA:9B:79:0B:3B:DE
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/j361ssb6Kx5cSZwcKQTqm3kLO94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.172.0/22
45.143.60.0/22
69.48.159.0/24
185.161.188.0/24
185.251.180.0/24
IPv6:
2a0e:8480::/29
2a0e:e2c0::/29
Signature Algorithm: sha256WithRSAEncryption
13:6c:2f:c0:87:4d:96:8a:09:1b:34:07:ce:7b:67:e2:24:b7:
f2:37:59:3a:da:00:61:f0:82:c3:76:0f:b3:a4:9a:a2:92:a0:
1e:4e:2c:c3:aa:b0:63:68:1c:26:49:6f:8b:38:74:3f:c7:0b:
35:2e:94:5a:15:b2:a1:b1:96:b4:b1:53:93:4f:45:2b:d3:95:
44:8e:d0:73:7c:05:cb:05:2b:ab:53:bb:e9:bf:08:e6:14:83:
8c:fe:f7:fd:30:c1:b1:a2:83:42:39:b0:b4:73:e0:da:3e:8a:
c6:7f:ff:0b:c2:3a:04:7b:4c:5f:cb:45:50:8e:1a:77:35:47:
99:5b:f4:2b:8b:e9:b3:da:51:05:73:13:4f:ea:58:bd:20:44:
91:f6:0a:fc:7c:9f:ed:15:fe:52:5c:69:73:60:db:7c:c6:e1:
51:fc:78:02:f9:f5:94:8d:0e:4b:fa:76:e2:eb:a1:6f:db:5c:
34:5c:fc:a3:2b:c3:28:38:1b:e7:ab:9d:3a:74:77:73:f9:93:
0d:74:0a:b7:eb:1f:e8:dd:ae:62:53:ad:2a:d5:b1:c2:b2:5b:
aa:e8:b5:cf:09:b0:ca:0e:74:14:2b:bf:02:3f:1d:4f:78:01:
bb:84:26:55:8e:36:70:ba:72:0b:77:4f:30:98:50:4b:a4:80:
36:db:c3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 17:13:56 2024 by rpki-client on console-ams.rpki-client.org