Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/b16Zg5U-Qs_bulAV61SmIWm81eg.roa
File: b16Zg5U-Qs_bulAV61SmIWm81eg.roa (raw, json)
Hash identifier: b4lqfqdhOcL/hdUYzlpQqwLkXQRWPl2aT32bOVKmVtQ=
Subject key identifier: 6F:5E:99:83:95:3E:42:CF:DB:BA:50:15:EB:54:A6:21:69:BC:D5:E8
Certificate issuer: /CN=ed624c590027a5a8c9eeb369726e4a630cdf414c
Certificate serial: 018E76197AD659C78FFF53A6469043EBCB2D
Authority key identifier: ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/b16Zg5U-Qs_bulAV61SmIWm81eg.roa
Signing time: Mon 25 Mar 2024 14:52:45 +0000
ROA not before: Mon 25 Mar 2024 14:52:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 45.89.128.0/22 maxlen: 22
2a0b:a200::/48 maxlen: 48
2a0b:a200:1::/48 maxlen: 48
2a0b:a200:2::/48 maxlen: 48
2a0b:a200:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:76:19:7a:d6:59:c7:8f:ff:53:a6:46:90:43:eb:cb:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed624c590027a5a8c9eeb369726e4a630cdf414c
Validity
Not Before: Mar 25 14:52:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f5e9983953e42cfdbba5015eb54a62169bcd5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ca:23:cb:72:dc:37:9f:32:db:5b:92:23:d1:
63:ea:8f:cf:ab:d0:42:01:38:fb:9d:f4:6a:83:45:
69:e0:7b:cc:26:17:bd:0d:d4:de:6e:38:56:cb:77:
43:3c:2a:5b:24:41:63:3e:66:5e:52:b8:21:32:4f:
5c:47:ae:92:6b:61:f3:eb:17:c8:9c:a0:36:05:40:
42:e4:e8:f3:d3:b7:1a:34:11:42:b0:c3:8c:44:31:
84:42:9e:e4:84:4c:ee:01:65:83:03:f7:47:92:82:
e8:44:ae:40:e1:78:81:a4:c2:ad:f5:b3:b8:3e:10:
26:6d:c2:b1:8d:36:5e:48:85:1b:6e:ca:0b:48:d2:
eb:dd:c5:7a:ed:88:67:04:69:7d:60:ca:b4:fc:99:
3e:af:4e:78:3f:87:6f:98:31:f9:fb:61:a7:ad:e1:
1a:62:80:18:4b:e7:8c:3a:38:89:42:df:82:00:78:
6f:a7:3d:df:01:26:30:f3:f2:73:f4:d6:95:35:bb:
77:45:1d:de:07:63:72:a5:59:87:06:d4:85:de:b2:
2b:4c:71:cf:7b:19:79:25:62:95:80:85:84:0b:b7:
36:55:e8:2c:b3:9c:79:8b:06:11:fc:55:71:0d:fd:
d2:7b:0f:9e:0b:61:a3:0c:a0:ab:61:c4:a4:a7:19:
bb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5E:99:83:95:3E:42:CF:DB:BA:50:15:EB:54:A6:21:69:BC:D5:E8
X509v3 Authority Key Identifier:
keyid:ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/b16Zg5U-Qs_bulAV61SmIWm81eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.128.0/22
IPv6:
2a0b:a200::/46
Signature Algorithm: sha256WithRSAEncryption
01:5f:d6:4d:81:36:28:70:52:52:99:d1:41:1c:71:5c:af:8e:
28:45:16:a7:b9:fc:a5:27:a1:73:f6:60:a2:ad:1c:ce:1d:21:
55:53:e8:a9:1a:6e:88:75:79:8d:75:9e:af:5d:aa:74:69:b8:
6e:8e:21:98:6d:33:e3:ca:0d:fe:91:c4:22:93:7d:3c:93:a9:
1c:7c:e3:04:b0:01:a3:95:d2:8b:2e:65:fa:98:4d:9a:4e:4b:
4b:f3:3c:d0:8d:b5:57:af:3a:9c:c7:50:8d:aa:38:09:be:55:
8b:8a:2b:ac:a0:e6:52:fe:ad:a4:cb:b6:0c:b3:04:bc:41:fb:
ec:bf:91:c8:48:d7:c6:94:e2:b0:1b:da:66:f7:f1:5c:81:85:
ca:36:13:2d:99:fb:b0:55:7c:d5:f3:60:7a:b1:1a:91:dc:e0:
9c:a4:8a:2d:6c:8c:f6:48:f9:83:89:ca:28:a6:2d:fc:b3:0a:
e2:50:b7:70:1e:da:e4:ed:b2:bd:2c:be:f7:db:3f:51:5e:59:
f4:58:f0:ad:b2:56:19:51:72:2b:9b:f3:4f:8d:a6:c2:7d:57:
56:db:36:8e:7f:a6:1f:41:49:1d:4a:c2:e4:ba:32:54:33:83:
97:9c:a1:ef:e8:62:d2:f3:aa:8f:0b:e9:81:e4:00:e8:03:6b:
ce:65:3a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 09:10:44 2024 by rpki-client on console-ams.rpki-client.org