Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/dz6319_oh7a8EOnulUasXBM6IKc.roa
File: dz6319_oh7a8EOnulUasXBM6IKc.roa (raw, json)
Hash identifier: 6YjjtasBk/Hsdf5RhQk2vR7ANyqy5i5x6liE9ePnA10=
Subject key identifier: 77:3E:B7:D7:DF:E8:87:B6:BC:10:E9:EE:95:46:AC:5C:13:3A:20:A7
Certificate issuer: /CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Certificate serial: 018CC94DDC7FD2D8A9C16AD39ADE8EC781CB
Authority key identifier: 82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/dz6319_oh7a8EOnulUasXBM6IKc.roa
Signing time: Tue 02 Jan 2024 08:32:52 +0000
ROA not before: Tue 02 Jan 2024 08:32:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 45.13.152.0/24 maxlen: 24
45.13.155.0/24 maxlen: 24
45.13.154.0/24 maxlen: 24
45.13.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:dc:7f:d2:d8:a9:c1:6a:d3:9a:de:8e:c7:81:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Validity
Not Before: Jan 2 08:32:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=773eb7d7dfe887b6bc10e9ee9546ac5c133a20a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2c:a9:5d:0b:66:f5:9b:6d:09:c5:23:8c:24:
b0:63:b6:d3:1e:87:f1:54:d0:fb:75:ca:1e:3c:0c:
6b:bd:5b:7f:f8:78:6c:56:9a:d7:46:05:43:e4:68:
8e:9a:cb:cd:01:92:3e:27:3a:44:da:87:c1:a7:af:
bb:90:89:8d:94:dc:5a:76:e3:9a:49:24:31:e3:54:
15:77:b4:cc:a2:e7:bf:de:1f:88:19:6a:a1:d5:89:
d9:77:ff:24:0b:25:bc:46:29:b8:b5:f2:04:69:34:
c2:2e:39:c7:0b:7e:0f:b5:bd:99:1b:08:41:c7:de:
d2:d5:40:40:90:a5:ca:64:de:1d:c2:9f:f9:7b:a4:
a5:ba:a8:5e:f5:2c:ec:c5:58:78:72:94:72:a1:04:
33:02:f7:d3:23:f8:27:ea:e5:17:5e:b9:a2:da:54:
8f:ca:3d:cd:69:c6:5f:53:5f:e2:76:a3:57:af:ae:
3c:8e:21:c0:b1:fe:69:6d:f3:24:9b:03:63:1d:6b:
28:3d:aa:30:47:64:e6:df:01:61:6a:50:9e:bb:9f:
76:fd:f4:f8:95:7e:87:36:18:eb:4d:2b:9d:d6:17:
be:ab:73:0d:1e:e9:cd:b1:ea:fa:ef:87:ca:ac:28:
54:b1:10:50:04:d0:1f:bd:78:eb:01:47:29:4c:51:
14:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3E:B7:D7:DF:E8:87:B6:BC:10:E9:EE:95:46:AC:5C:13:3A:20:A7
X509v3 Authority Key Identifier:
keyid:82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/dz6319_oh7a8EOnulUasXBM6IKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.152.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:84:c7:32:1f:62:b3:a9:19:d3:aa:d9:ce:cd:fb:d5:0e:24:
27:0d:2d:e3:66:fa:70:d3:a5:02:79:d0:66:85:a8:89:44:63:
75:72:c3:94:c4:c7:85:71:74:e8:9b:9c:f0:44:d7:fe:14:cb:
fe:e3:58:db:30:89:01:6d:10:35:47:e9:1a:52:be:70:eb:8e:
87:c8:3a:38:a7:ee:a3:23:48:1b:df:55:25:82:02:75:7a:df:
32:c1:fd:9c:75:5f:24:bb:9b:d3:76:5a:0b:9b:6a:30:0e:e7:
f5:86:1a:b3:a0:b6:67:1e:fa:bf:5a:30:41:ee:f4:a8:7a:e7:
7d:22:1d:93:6e:56:1d:8e:47:90:83:ff:f8:a1:3c:88:df:80:
2b:8e:06:70:61:54:de:c0:ee:d6:8a:07:52:38:f8:3d:0d:68:
4a:a1:80:0a:0b:d2:1f:aa:ac:4b:82:4e:98:88:71:d2:cf:ce:
d3:47:8d:cd:20:8a:e2:e4:a5:b4:a0:94:f8:ba:b2:3b:e3:13:
0f:55:be:1b:ec:c0:0c:5b:a5:d7:d6:a4:b6:64:42:c0:54:b1:
1f:88:d7:cd:b1:3b:da:29:5f:b2:8b:18:0f:12:a0:0d:10:1c:
af:62:3c:05:92:47:88:7c:e4:f7:a5:e3:14:46:d2:22:9e:4b:
4e:c2:85:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:50:27 2024 by rpki-client on console-fra.rpki-client.org