Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/80e740-2c8c-45a6-938c-219b9f6f9087/1/zInCXzhSYTlLroIRt1vnusiMqpA.roa
File: zInCXzhSYTlLroIRt1vnusiMqpA.roa (raw, json)
Hash identifier: fBo1AVrK1vZcwShDPM697vcv4ZxIdMbRWmLn2U0VcQQ=
Subject key identifier: CC:89:C2:5F:38:52:61:39:4B:AE:82:11:B7:5B:E7:BA:C8:8C:AA:90
Certificate issuer: /CN=1f046cde8512802b14933b34a22f7765e295d2ab
Certificate serial: 018FBA7582A63E5B0094C7D8534E34030C1A
Authority key identifier: 1F:04:6C:DE:85:12:80:2B:14:93:3B:34:A2:2F:77:65:E2:95:D2:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwRs3oUSgCsUkzs0oi93ZeKV0qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/80e740-2c8c-45a6-938c-219b9f6f9087/1/zInCXzhSYTlLroIRt1vnusiMqpA.roa
Signing time: Mon 27 May 2024 14:30:14 +0000
ROA not before: Mon 27 May 2024 14:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198292
IP address blocks: 5.133.48.0/22 maxlen: 22
5.133.61.0/24 maxlen: 24
5.133.62.0/24 maxlen: 24
5.133.63.0/24 maxlen: 24
134.255.160.0/22 maxlen: 22
134.255.172.0/22 maxlen: 22
185.11.224.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/80e740-2c8c-45a6-938c-219b9f6f9087/1/HwRs3oUSgCsUkzs0oi93ZeKV0qs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/80e740-2c8c-45a6-938c-219b9f6f9087/1/HwRs3oUSgCsUkzs0oi93ZeKV0qs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwRs3oUSgCsUkzs0oi93ZeKV0qs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ba:75:82:a6:3e:5b:00:94:c7:d8:53:4e:34:03:0c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f046cde8512802b14933b34a22f7765e295d2ab
Validity
Not Before: May 27 14:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc89c25f385261394bae8211b75be7bac88caa90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:42:e4:ee:33:12:86:cc:5d:1c:8e:a9:a2:ad:
89:9f:03:3c:42:0f:2d:3e:2b:d1:6f:ee:41:95:ec:
c2:4e:72:94:e6:ea:03:a6:f0:1f:92:21:e1:e1:d4:
f5:e5:57:dd:88:4a:5b:cc:1f:38:78:2e:26:9f:cb:
6a:89:b7:15:af:af:b3:6b:38:20:be:c5:e6:ad:a9:
f4:07:b9:76:44:e9:5b:6c:32:dd:dd:59:20:e9:38:
9c:39:4a:94:f1:19:37:49:60:e1:be:9e:81:a9:65:
d3:72:de:d5:99:78:e0:8c:8f:5a:08:33:02:26:4c:
10:7e:47:a1:cb:df:34:3f:93:35:16:f1:ee:65:4d:
45:20:e5:72:f6:5e:a0:5c:e9:7a:49:4a:6e:b7:25:
65:37:30:ec:58:64:6a:19:aa:7c:60:6b:9b:e2:a6:
e3:b2:1a:27:29:47:4b:a4:0f:ef:3a:fb:e9:8a:c4:
80:31:48:73:b3:6f:df:ef:69:ef:a9:4c:6d:8d:21:
72:fc:78:00:f3:3a:1a:70:2f:04:fa:40:c6:7d:6e:
5e:12:72:58:68:58:e8:29:37:be:76:0a:c4:37:81:
63:28:85:20:ee:88:e7:4e:28:ef:41:d0:d1:5d:7c:
60:db:14:07:f5:d0:00:d9:d7:d0:c9:55:fa:82:e3:
b9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:89:C2:5F:38:52:61:39:4B:AE:82:11:B7:5B:E7:BA:C8:8C:AA:90
X509v3 Authority Key Identifier:
keyid:1F:04:6C:DE:85:12:80:2B:14:93:3B:34:A2:2F:77:65:E2:95:D2:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwRs3oUSgCsUkzs0oi93ZeKV0qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/80e740-2c8c-45a6-938c-219b9f6f9087/1/zInCXzhSYTlLroIRt1vnusiMqpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/80e740-2c8c-45a6-938c-219b9f6f9087/1/HwRs3oUSgCsUkzs0oi93ZeKV0qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.48.0/22
5.133.61.0-5.133.63.255
134.255.160.0/22
134.255.172.0/22
185.11.224.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:e0:93:64:7f:4a:b5:5e:3e:61:4e:8d:3d:f4:6d:f9:76:b6:
d4:72:ac:4f:72:a5:48:84:03:1a:5c:37:ed:52:89:47:cb:9a:
21:6a:9d:c7:71:a7:ea:d0:01:ed:c5:8f:ad:60:37:44:84:b5:
7b:eb:af:5a:c8:c6:4c:54:d5:d8:5b:ed:e9:ea:7a:eb:00:74:
66:8a:3e:5c:fe:63:ba:41:32:a7:25:b1:72:1e:55:36:e8:26:
40:3c:77:e2:6d:a6:a2:b9:69:03:12:58:e6:c9:28:b0:32:b8:
9f:72:97:d9:67:48:60:cb:32:55:45:dd:96:ea:5f:47:69:22:
ae:82:9f:ae:83:38:de:50:7a:74:da:d4:d3:89:6d:e2:69:8d:
93:3e:af:e3:31:02:de:05:f5:1a:58:11:1b:5e:01:ab:0e:a3:
dd:0d:5d:ba:36:75:21:56:92:84:98:cb:c3:da:0c:f2:5d:1e:
48:59:de:f9:f0:ff:e8:64:70:c6:df:9a:da:70:71:92:3a:52:
94:39:42:4c:16:bf:52:23:86:78:a8:08:80:3a:38:f4:19:8f:
e9:85:7d:96:98:2f:5e:38:a0:93:97:4e:b9:68:71:cc:39:c9:
7c:3c:d4:bd:50:3e:bf:a1:17:48:d8:cb:0f:d2:80:62:21:cf:
da:cb:7a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 11:32:50 2024 by rpki-client on console-ams.rpki-client.org