Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/b19369-58c4-4f93-911e-a84adf49e787/1/CyYHp2VsXlpeXY7fZ5BnQO7CuNM.roa
File: CyYHp2VsXlpeXY7fZ5BnQO7CuNM.roa (raw, json)
Hash identifier: sjk1l2PnKcnZw+JQedcl/zU/GkDL3DbUOUAG0Ie7j6o=
Subject key identifier: 0B:26:07:A7:65:6C:5E:5A:5E:5D:8E:DF:67:90:67:40:EE:C2:B8:D3
Certificate issuer: /CN=73b760b99de4b40d0e7b4bd6582aa04ca780a6b2
Certificate serial: 018FE24A299A3AE26D58D6A01B92284A5F53
Authority key identifier: 73:B7:60:B9:9D:E4:B4:0D:0E:7B:4B:D6:58:2A:A0:4C:A7:80:A6:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c7dguZ3ktA0Oe0vWWCqgTKeAprI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/b19369-58c4-4f93-911e-a84adf49e787/1/CyYHp2VsXlpeXY7fZ5BnQO7CuNM.roa
Signing time: Tue 04 Jun 2024 08:07:42 +0000
ROA not before: Tue 04 Jun 2024 08:07:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49824
IP address blocks: 45.87.89.0/24 maxlen: 24
45.87.90.0/24 maxlen: 24
45.87.91.0/24 maxlen: 24
2a10:2f40::/48 maxlen: 48
2a10:2f40:1::/48 maxlen: 48
2a10:2f40:2::/48 maxlen: 48
2a10:2f40:3::/48 maxlen: 48
2a10:2f40:4::/48 maxlen: 48
2a10:2f40:5::/48 maxlen: 48
2a10:2f40:9::/48 maxlen: 48
2a10:2f40:a::/48 maxlen: 48
2a10:2f40:b::/48 maxlen: 48
2a10:2f40:c::/48 maxlen: 48
2a10:2f40:d::/48 maxlen: 48
2a10:2f40:1a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/b19369-58c4-4f93-911e-a84adf49e787/1/c7dguZ3ktA0Oe0vWWCqgTKeAprI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/b19369-58c4-4f93-911e-a84adf49e787/1/c7dguZ3ktA0Oe0vWWCqgTKeAprI.mft
rsync://rpki.ripe.net/repository/DEFAULT/c7dguZ3ktA0Oe0vWWCqgTKeAprI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e2:4a:29:9a:3a:e2:6d:58:d6:a0:1b:92:28:4a:5f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73b760b99de4b40d0e7b4bd6582aa04ca780a6b2
Validity
Not Before: Jun 4 08:07:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b2607a7656c5e5a5e5d8edf67906740eec2b8d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:95:d5:74:79:7a:43:70:9d:1c:68:1d:d1:05:
b0:eb:a6:04:13:fc:64:dc:c7:d7:d4:de:9b:25:a6:
71:cb:c3:c9:ea:84:97:87:70:5c:a4:22:9a:13:e9:
84:43:94:52:45:c2:94:25:0b:52:5d:b6:52:18:69:
69:61:75:10:d5:fe:d3:67:b0:c7:97:5a:f4:8c:38:
56:ce:29:17:e4:9d:ef:6e:20:64:82:ee:0d:e6:cd:
b4:9a:09:41:a7:66:bb:70:40:c5:83:34:19:ac:8b:
30:8b:1e:94:f9:b4:5f:04:f9:2c:1c:37:f1:b3:e3:
63:53:88:6c:9d:56:c2:85:d0:ad:6e:ce:b5:e0:f9:
5a:f2:4a:22:03:fd:cc:36:a5:29:f8:67:b1:22:15:
91:38:bc:5a:db:50:02:f1:47:6c:d5:23:51:a4:1a:
92:86:27:43:96:de:7b:d4:45:a7:f4:21:93:6e:fb:
20:d8:8f:51:97:83:21:e9:ea:b9:c5:87:0f:b4:39:
79:b4:3a:0a:3d:a2:99:23:5f:d4:32:ee:10:02:5a:
be:09:61:e8:b5:63:1b:c4:72:20:e3:dd:87:80:4d:
6b:2f:cc:5f:d6:e8:70:84:dd:b5:d8:ca:68:10:7d:
ce:2c:fa:71:70:2b:81:fd:cc:0a:9b:fc:11:f9:e5:
74:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:26:07:A7:65:6C:5E:5A:5E:5D:8E:DF:67:90:67:40:EE:C2:B8:D3
X509v3 Authority Key Identifier:
keyid:73:B7:60:B9:9D:E4:B4:0D:0E:7B:4B:D6:58:2A:A0:4C:A7:80:A6:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7dguZ3ktA0Oe0vWWCqgTKeAprI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b19369-58c4-4f93-911e-a84adf49e787/1/CyYHp2VsXlpeXY7fZ5BnQO7CuNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b19369-58c4-4f93-911e-a84adf49e787/1/c7dguZ3ktA0Oe0vWWCqgTKeAprI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.89.0-45.87.91.255
IPv6:
2a10:2f40::-2a10:2f40:5:ffff:ffff:ffff:ffff:ffff
2a10:2f40:9::-2a10:2f40:d:ffff:ffff:ffff:ffff:ffff
2a10:2f40:1a::/48
Signature Algorithm: sha256WithRSAEncryption
04:0a:2d:e8:d7:c7:c2:66:ed:88:92:25:f3:51:40:f9:bc:29:
d4:ae:eb:87:cb:fd:ba:db:8d:a0:36:95:da:32:3b:f8:ed:ca:
86:73:40:ae:ec:31:c3:82:27:ba:b2:61:59:c0:12:20:b3:26:
bc:02:62:76:c4:26:f9:8f:b1:21:40:90:78:0b:52:a9:f6:ca:
78:61:a8:34:ce:0f:ff:49:eb:de:00:c7:e3:65:c5:d5:eb:44:
62:fd:b0:78:0d:7f:c8:d6:cb:41:89:7c:0b:b0:96:a2:85:a7:
d9:fd:ab:9c:70:ed:e5:ee:21:a7:93:a6:ad:ad:13:d5:fb:55:
1a:0f:e9:a1:07:7a:dd:1b:e8:b2:4b:45:34:cd:22:56:e0:ae:
9a:b6:79:0e:df:ac:44:2a:7b:68:9e:9b:5a:b7:37:fe:db:3b:
05:b2:b2:bd:5c:5f:0e:5c:84:02:36:5c:57:08:28:ee:29:c9:
00:69:f1:3d:2b:4a:2a:13:f2:96:7d:da:53:73:15:57:dc:62:
91:61:08:49:63:0d:3e:7b:0a:62:1f:99:bb:e3:71:11:36:f3:
be:8e:c0:2d:3f:16:bb:79:34:48:0f:68:0b:fc:d8:b7:55:04:
7a:52:66:5b:77:d3:8f:35:d9:45:b9:9c:24:ba:e7:15:7f:b6:
ba:ad:d7:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 09:38:55 2024 by rpki-client on console-ams.rpki-client.org