Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/Xje0mnpEGl4E_JeCTPRQBZJSISc.roa
File: Xje0mnpEGl4E_JeCTPRQBZJSISc.roa (raw, json)
Hash identifier: wU8O4wDKLwyDYN3cfJhuy5ZG4dBbVpiefRBht6IiU6Q=
Subject key identifier: 5E:37:B4:9A:7A:44:1A:5E:04:FC:97:82:4C:F4:50:05:92:52:21:27
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018EE6271DE69EB2EF5D4C76062489853383
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/Xje0mnpEGl4E_JeCTPRQBZJSISc.roa
Signing time: Tue 16 Apr 2024 09:05:07 +0000
ROA not before: Tue 16 Apr 2024 09:05:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200216
IP address blocks: 2a13:5040::/29 maxlen: 29
2a13:bcc0::/29 maxlen: 29
2a13:dd40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 07:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:27:1d:e6:9e:b2:ef:5d:4c:76:06:24:89:85:33:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Apr 16 09:05:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e37b49a7a441a5e04fc97824cf4500592522127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:07:54:3d:90:b3:d9:69:7a:af:7f:e9:e3:9e:
aa:30:e9:25:ac:f2:f0:69:6c:03:37:cc:60:f5:b5:
8c:71:7f:c8:12:9a:18:73:d1:e5:b8:34:1e:26:36:
9c:11:5c:70:10:c8:f2:ae:ba:22:fc:41:70:0f:84:
1e:62:c2:58:f2:50:f3:ab:c8:0e:cb:16:d5:21:5a:
40:54:ef:a1:d6:20:d6:61:24:57:cc:5c:74:60:2b:
60:7a:20:9a:15:6e:2a:aa:4d:95:07:ea:a9:ea:32:
bb:3e:63:c0:1d:98:27:54:2d:0d:30:56:29:bd:03:
56:d2:93:dd:be:2d:f3:ee:48:e4:8a:4e:33:fd:06:
90:3f:f9:a6:38:de:36:7c:89:7f:96:16:d0:36:ce:
45:f3:c5:f6:6a:2d:b9:aa:62:f0:0f:d7:d2:89:65:
5c:5a:79:98:7a:6e:8b:ae:98:a1:cf:f1:43:4a:4f:
b9:62:19:11:40:e6:73:8d:58:83:8a:b0:10:c6:1f:
81:0d:2e:05:8e:05:f2:6e:46:00:07:59:e6:a7:29:
c8:52:4e:c7:49:5a:4a:64:aa:00:14:c5:46:b4:d7:
2d:a3:7a:c5:52:9f:aa:db:93:86:07:87:b2:6f:71:
c5:79:c8:28:d6:8e:c0:65:00:69:1f:d6:29:45:12:
00:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:37:B4:9A:7A:44:1A:5E:04:FC:97:82:4C:F4:50:05:92:52:21:27
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/Xje0mnpEGl4E_JeCTPRQBZJSISc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5040::/29
2a13:bcc0::/29
2a13:dd40::/29
Signature Algorithm: sha256WithRSAEncryption
bf:fe:cc:6a:1b:e0:2e:ab:7b:a3:34:36:be:69:66:13:19:40:
6d:60:a7:1e:4a:0f:b5:75:c0:ae:ce:0e:16:c4:1c:a6:bf:86:
a1:89:04:67:9d:91:19:d4:9f:f1:4f:66:cf:bd:45:bc:9b:fb:
fd:75:af:68:e0:68:1d:d7:05:7d:4a:f4:09:44:40:20:dc:b4:
29:aa:62:5d:43:ae:c1:8d:40:54:cb:6a:5c:bb:d1:c0:b6:03:
07:e0:54:70:39:83:1a:5f:4e:7e:14:15:5e:57:04:d6:fe:6d:
18:97:cc:a6:74:30:24:5a:6f:c9:a4:50:28:d3:61:e5:b8:bf:
a5:29:d8:0f:c2:e6:db:65:8e:5b:a8:07:2e:ec:6b:fb:97:f6:
81:d9:d0:48:67:be:e7:37:e8:3a:2b:d4:f5:44:01:22:08:7a:
fd:58:0b:1d:07:f0:ff:f8:ae:cb:dd:1b:62:88:61:f5:48:7b:
be:3c:2a:65:4b:31:89:c6:de:9a:75:54:0b:20:f3:92:19:b3:
1c:34:25:98:4c:ab:e4:47:bd:2c:82:85:a3:b2:2f:79:ef:03:
1b:2e:ed:2c:7f:09:f4:a8:ba:c1:e0:ac:3a:b5:23:a3:d0:a1:
70:2d:7b:52:80:70:c4:4a:2e:17:ee:0f:f4:67:e0:32:8a:44:
e2:5e:37:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 16:16:29 2024 by rpki-client on console-fra.rpki-client.org