Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/k5AvXBmY7iQ6wkXgLJgLBUiOB-U.roa
File: k5AvXBmY7iQ6wkXgLJgLBUiOB-U.roa (raw, json)
Hash identifier: SNIPMvDPlTDhlCUmeWwhRkgb2HogmgDjr2ESAIKsFj4=
Subject key identifier: 93:90:2F:5C:19:98:EE:24:3A:C2:45:E0:2C:98:0B:05:48:8E:07:E5
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 01919DEEDEE2AC7209597A9F70B8FD437EA8
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/k5AvXBmY7iQ6wkXgLJgLBUiOB-U.roa
Signing time: Thu 29 Aug 2024 11:39:22 +0000
ROA not before: Thu 29 Aug 2024 11:39:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8675
IP address blocks: 212.12.0.0/19 maxlen: 24
212.12.4.0/24 maxlen: 24
212.12.21.0/24 maxlen: 24
212.35.160.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:ee:de:e2:ac:72:09:59:7a:9f:70:b8:fd:43:7e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 29 11:39:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93902f5c1998ee243ac245e02c980b05488e07e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ee:02:bb:4f:4e:89:a5:17:d4:87:98:b6:1b:
b5:03:e3:4b:e6:49:2a:19:2b:49:f0:66:52:54:47:
82:f2:1a:03:93:7e:6e:4a:79:4d:78:82:d1:f3:e0:
c7:16:11:47:dc:a6:26:6e:78:00:b5:0b:12:83:da:
27:8b:87:76:20:91:bf:2e:e0:cf:57:ab:9b:73:4f:
f3:eb:8f:ec:88:28:1f:0c:a5:5e:04:4a:25:fc:c1:
80:d3:29:22:b4:b4:14:a1:9a:4b:b3:c4:f2:8b:d4:
6c:7d:af:b0:66:af:75:78:27:8e:73:06:5c:3e:01:
7f:26:07:6d:a7:0d:69:cf:a5:10:17:82:ff:71:3b:
0d:c1:06:a8:4d:bd:e8:77:97:e4:8b:6b:45:3e:6f:
79:3b:fa:10:3c:e8:d3:cc:21:74:16:55:54:da:98:
5b:a9:e5:43:d9:09:ce:36:0a:36:00:ed:ef:71:08:
00:b3:d7:f9:37:2d:1a:f0:46:61:59:bd:05:63:56:
67:25:d9:ec:02:70:4f:db:20:4a:69:e6:1e:1d:28:
b7:13:63:6d:6d:4b:45:20:85:cb:cf:d9:68:fe:42:
01:40:d4:9c:23:86:24:ca:cc:bd:09:9e:36:0b:ee:
5c:d4:8a:8e:27:e0:3a:f1:75:87:50:1c:51:24:76:
10:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:90:2F:5C:19:98:EE:24:3A:C2:45:E0:2C:98:0B:05:48:8E:07:E5
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/k5AvXBmY7iQ6wkXgLJgLBUiOB-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.12.0.0/19
212.35.160.0/19
Signature Algorithm: sha256WithRSAEncryption
48:8d:90:c1:9a:f7:20:69:d4:00:c3:d6:df:18:e7:8a:60:8f:
1f:07:79:40:47:cf:1d:dc:75:7b:2a:c1:7d:74:f3:12:7a:df:
72:04:c3:4d:11:64:c6:6f:0b:f4:72:41:38:49:29:7f:00:fc:
3b:8d:6a:73:50:57:cd:c7:f6:43:d9:12:7c:60:54:28:a2:48:
94:33:99:2b:ff:6f:8b:ac:d3:c0:5f:54:cb:0a:03:44:2e:a2:
1d:0a:6e:73:1e:a1:05:57:6c:4a:21:af:9f:13:7c:b3:fb:3a:
8a:dc:4a:3b:88:fd:df:6a:38:3c:fe:6b:0b:95:17:d6:a3:4d:
8d:76:b3:69:30:95:82:78:ca:32:58:18:f1:7c:16:cc:66:5b:
52:44:98:74:ac:4e:93:63:21:3f:3a:0e:05:71:6b:51:ac:74:
2c:0e:68:27:31:2d:8d:7a:4d:d5:5f:82:f0:79:8b:b1:d4:08:
21:73:d7:50:40:5b:c3:b5:ee:a7:75:0a:9a:06:52:b7:33:ea:
e1:5c:f6:06:9a:75:4e:56:55:6f:91:22:a7:b1:cf:d0:a5:ec:
07:74:7b:45:65:88:1f:d6:79:da:82:be:9c:e5:7d:ba:ba:48:
fe:50:80:c0:77:fe:66:4d:60:31:f7:ed:4c:8f:be:f6:9a:51:
84:cc:29:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 14:43:40 2024 by rpki-client on console-ams.rpki-client.org