Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/679e15-e1a3-42b5-9b7b-3f1c023ada05/1/5Tx98m6o8hpdlsREIikZBtF6ZuM.roa
File: 5Tx98m6o8hpdlsREIikZBtF6ZuM.roa (raw, json)
Hash identifier: QQObaYwZXK/JLyUMUPdThrdXyOvhoUjh7PmAcaxB7Sw=
Subject key identifier: E5:3C:7D:F2:6E:A8:F2:1A:5D:96:C4:44:22:29:19:06:D1:7A:66:E3
Certificate issuer: /CN=fb1ff4df2efc69ecc192ea5aefd7b3b97f580901
Certificate serial: 01914B66E2DE89CE24EBA21236277337837C
Authority key identifier: FB:1F:F4:DF:2E:FC:69:EC:C1:92:EA:5A:EF:D7:B3:B9:7F:58:09:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-x_03y78aezBkupa79ezuX9YCQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/679e15-e1a3-42b5-9b7b-3f1c023ada05/1/5Tx98m6o8hpdlsREIikZBtF6ZuM.roa
Signing time: Tue 13 Aug 2024 11:01:59 +0000
ROA not before: Tue 13 Aug 2024 11:01:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197437
IP address blocks: 46.151.136.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/679e15-e1a3-42b5-9b7b-3f1c023ada05/1/1-x_03y78aezBkupa79ezuX9YCQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/679e15-e1a3-42b5-9b7b-3f1c023ada05/1/1-x_03y78aezBkupa79ezuX9YCQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-x_03y78aezBkupa79ezuX9YCQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4b:66:e2:de:89:ce:24:eb:a2:12:36:27:73:37:83:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1ff4df2efc69ecc192ea5aefd7b3b97f580901
Validity
Not Before: Aug 13 11:01:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e53c7df26ea8f21a5d96c44422291906d17a66e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f4:43:2c:f1:1f:2b:c8:c5:9b:13:3a:40:aa:
b4:ab:92:40:59:82:7a:b3:05:fa:61:7f:36:88:3f:
4e:38:a4:42:f1:06:76:a6:f5:47:4d:c1:c7:79:b9:
52:78:18:e6:45:d5:dc:d8:c8:f9:23:9d:0d:1c:46:
fb:4f:bd:0a:63:ea:51:6c:be:4b:00:e1:4c:02:18:
58:79:b3:f9:dd:17:37:6c:dd:49:ea:2a:21:3d:9a:
c4:8f:5f:c8:96:e7:f3:ac:71:50:5b:c6:a6:91:94:
58:56:0b:61:ae:c7:e0:9c:6e:d3:51:5a:ee:1f:0e:
32:1d:34:dd:2c:59:a6:8b:63:d3:33:8e:11:d9:fd:
05:b0:f6:a8:e4:fb:83:46:7f:bb:09:53:c2:14:e4:
d5:66:35:7d:29:4f:1e:e9:53:69:06:da:58:00:12:
fb:6d:b7:8c:c7:3f:41:9a:20:d8:be:d9:1e:e6:10:
aa:f1:8f:3a:02:73:49:6a:12:69:d7:7c:42:71:4a:
a9:e1:18:0d:24:b2:b0:e0:9e:9b:d1:85:11:e5:2c:
69:e0:2c:88:1c:f6:11:67:16:92:73:60:e0:ad:a6:
3d:b2:df:85:6b:58:65:e2:f7:a2:21:3d:73:0c:0d:
72:87:a7:8e:1b:bd:c8:ad:d5:60:04:c6:4f:52:d0:
d5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3C:7D:F2:6E:A8:F2:1A:5D:96:C4:44:22:29:19:06:D1:7A:66:E3
X509v3 Authority Key Identifier:
keyid:FB:1F:F4:DF:2E:FC:69:EC:C1:92:EA:5A:EF:D7:B3:B9:7F:58:09:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-x_03y78aezBkupa79ezuX9YCQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/679e15-e1a3-42b5-9b7b-3f1c023ada05/1/5Tx98m6o8hpdlsREIikZBtF6ZuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/679e15-e1a3-42b5-9b7b-3f1c023ada05/1/1-x_03y78aezBkupa79ezuX9YCQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.136.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:af:f2:3b:d1:23:d9:2b:98:a8:e2:87:0e:50:3f:84:eb:ab:
80:4e:0f:a7:c0:fb:7a:60:4c:cd:a2:5b:49:6c:65:2e:f5:98:
a4:8d:d3:9e:00:80:48:e7:1f:82:4f:b9:1b:79:f2:61:fc:2b:
16:0b:2f:61:a1:d0:88:19:60:cf:52:a3:c1:80:d9:30:fe:90:
0f:44:80:ba:31:7d:c0:83:9b:ff:e4:55:ce:f3:87:71:40:96:
69:89:08:42:79:a5:c2:98:57:7d:3b:06:d4:1f:cd:68:d6:70:
82:38:b9:6d:5b:c1:20:13:7a:36:77:a5:8b:9a:e1:61:ff:7d:
da:66:57:2b:77:65:53:aa:77:a4:de:ab:da:0e:18:68:b1:90:
06:57:2e:dc:9c:ec:64:08:f0:6a:52:ba:aa:df:55:45:af:1d:
3b:c2:ab:92:7e:6d:62:a1:e8:f3:af:9a:26:1d:0b:53:0b:68:
9a:df:c8:ea:d6:e3:52:a3:21:b0:6b:93:8d:05:a9:cc:34:0c:
65:1d:05:14:71:a6:da:85:1c:60:c9:f9:22:de:91:69:44:5f:
41:88:fc:a8:45:96:7f:4d:29:dd:14:00:6a:70:ee:20:ff:9d:
d9:23:3d:6a:68:97:f2:11:cd:51:8d:4a:37:59:33:31:ed:db:
10:6f:32:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:52:25 2024 by rpki-client on console-ams.rpki-client.org