Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/Cd4Qvi6LJwWCfMMvukXmBY_X4GI.roa
File: Cd4Qvi6LJwWCfMMvukXmBY_X4GI.roa (raw, json)
Hash identifier: vgrJ5iaT4XGyRonux2zW8iJTWTVB05cNIDZvC+8m4tc=
Subject key identifier: 09:DE:10:BE:2E:8B:27:05:82:7C:C3:2F:BA:45:E6:05:8F:D7:E0:62
Certificate issuer: /CN=12694f6945a21d08d30192cfc1a6b780de728e3b
Certificate serial: 018F9615885271EB278643523E2E95A03B59
Authority key identifier: 12:69:4F:69:45:A2:1D:08:D3:01:92:CF:C1:A6:B7:80:DE:72:8E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmlPaUWiHQjTAZLPwaa3gN5yjjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/Cd4Qvi6LJwWCfMMvukXmBY_X4GI.roa
Signing time: Mon 20 May 2024 12:59:04 +0000
ROA not before: Mon 20 May 2024 12:59:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64398
IP address blocks: 5.83.45.0/24 maxlen: 24
5.83.47.0/24 maxlen: 24
2a02:13f0:8200::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/EmlPaUWiHQjTAZLPwaa3gN5yjjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/EmlPaUWiHQjTAZLPwaa3gN5yjjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/EmlPaUWiHQjTAZLPwaa3gN5yjjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:15:88:52:71:eb:27:86:43:52:3e:2e:95:a0:3b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12694f6945a21d08d30192cfc1a6b780de728e3b
Validity
Not Before: May 20 12:59:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09de10be2e8b2705827cc32fba45e6058fd7e062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:74:d7:2a:00:28:50:8b:a5:fd:2f:f1:1c:d3:
54:97:3b:d0:db:c4:48:7a:dc:e7:88:a6:b6:f2:53:
3d:16:96:df:d0:f0:70:1a:f2:02:bc:a3:9f:e8:60:
b4:33:fe:42:7b:6a:af:18:34:cb:ad:da:fd:75:04:
66:a4:76:ec:75:1c:dd:21:ad:a1:c4:db:f4:4b:8c:
ba:94:3a:1f:36:95:9a:ff:39:52:5f:0c:af:9c:bd:
44:03:15:a2:f1:f3:9b:c8:32:a3:84:5b:27:eb:75:
78:3f:e9:0c:5b:77:da:30:b5:4a:1a:ad:80:a1:c8:
15:55:ae:ad:81:d0:65:86:cd:6d:47:47:25:41:09:
af:5d:ae:da:28:7e:b8:7e:fb:af:c8:b7:c8:e9:0c:
93:24:70:b1:ef:4f:cb:73:48:7b:67:48:40:af:5e:
60:e8:55:fb:7d:60:6c:26:8d:01:4e:2a:ff:6c:56:
a2:d8:e1:b9:a7:c8:cc:2e:60:87:41:08:73:59:e9:
ae:65:14:2e:12:5d:c4:1c:da:fb:56:c4:0f:7b:b6:
73:0c:d7:8d:28:0e:4b:ba:db:87:05:3a:60:3a:0d:
89:26:3d:14:57:95:a9:ac:34:fc:a0:c7:bb:da:56:
1d:59:bf:01:42:b1:89:9f:6b:48:9a:83:16:8a:a9:
fd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:DE:10:BE:2E:8B:27:05:82:7C:C3:2F:BA:45:E6:05:8F:D7:E0:62
X509v3 Authority Key Identifier:
keyid:12:69:4F:69:45:A2:1D:08:D3:01:92:CF:C1:A6:B7:80:DE:72:8E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmlPaUWiHQjTAZLPwaa3gN5yjjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/Cd4Qvi6LJwWCfMMvukXmBY_X4GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/EmlPaUWiHQjTAZLPwaa3gN5yjjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.45.0/24
5.83.47.0/24
IPv6:
2a02:13f0:8200::/48
Signature Algorithm: sha256WithRSAEncryption
30:04:a8:2d:fc:87:69:02:93:fe:d6:69:b1:53:dd:95:42:3f:
68:73:4a:55:a1:81:91:d9:1b:f1:57:19:19:24:10:66:7e:af:
77:43:cb:67:68:88:61:d0:cb:bb:b2:d4:8c:e7:aa:cb:11:e0:
7e:da:a0:34:ec:92:99:e2:8e:b9:f8:7d:4c:76:b8:db:c5:5f:
85:1e:e8:75:87:c0:5c:1a:1f:3a:4a:29:5b:87:78:6f:c4:2c:
17:36:ec:39:9d:e0:ee:52:63:c1:f0:bc:4b:44:69:3c:f8:9d:
0b:5b:90:0b:a3:8c:7a:7a:e2:25:6b:3b:66:e1:af:76:bf:10:
f2:50:d5:9f:e9:63:f8:44:a0:66:8f:41:8b:ce:59:c0:2d:cd:
39:45:9d:e0:a0:4d:28:88:b2:8e:ee:da:94:ef:2f:40:d1:2d:
c3:2d:9d:00:11:90:91:59:0d:b1:d8:c1:c4:bf:8c:c3:d6:b5:
f3:d0:02:dc:4e:61:75:f2:b4:f4:e6:d7:55:51:02:fc:82:9d:
e0:97:9c:c2:f9:76:10:16:2c:33:65:69:ea:7b:10:3d:5c:ef:
d4:cf:5f:9d:4a:90:9c:20:32:e5:36:aa:d2:a5:cd:ef:1e:e4:
a9:df:04:c1:60:7d:1c:c9:9b:fe:ef:eb:59:b0:eb:7c:b6:11:
c8:36:9a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 11:46:28 2024 by rpki-client on console-ams.rpki-client.org