Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/6mgbnXTEiIYSmtwsaahWJi7Fh8Q.roa
File: 6mgbnXTEiIYSmtwsaahWJi7Fh8Q.roa (raw, json)
Hash identifier: /giQACeDqVbMkhx/5NtpKxO0rUj5gke1LQO7v5DMTZ8=
Subject key identifier: EA:68:1B:9D:74:C4:88:86:12:9A:DC:2C:69:A8:56:26:2E:C5:87:C4
Certificate issuer: /CN=373b47a3cee79982adb170341d02026027332023
Certificate serial: 018CC492337BF4136972AFD30C9E8CC00B19
Authority key identifier: 37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/6mgbnXTEiIYSmtwsaahWJi7Fh8Q.roa
Signing time: Mon 01 Jan 2024 10:29:24 +0000
ROA not before: Mon 01 Jan 2024 10:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59503
IP address blocks: 5.159.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/NztHo87nmYKtsXA0HQICYCczICM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/NztHo87nmYKtsXA0HQICYCczICM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 04:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:33:7b:f4:13:69:72:af:d3:0c:9e:8c:c0:0b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=373b47a3cee79982adb170341d02026027332023
Validity
Not Before: Jan 1 10:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea681b9d74c48886129adc2c69a856262ec587c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c8:41:96:5f:e0:de:67:1c:b6:0a:c1:e7:e9:
5c:ca:5c:58:e0:63:fc:f2:e1:ff:29:e3:12:fb:b9:
d6:58:75:c1:bf:71:7e:82:4e:8a:52:69:52:d6:19:
ec:0d:f1:d3:b5:80:ee:8e:9d:01:4f:dd:74:a3:6d:
d5:04:27:fd:9a:e1:87:46:e0:49:b9:72:53:df:0b:
20:28:0c:8e:7c:f9:89:3b:ec:5f:3a:da:b0:76:ea:
ec:f1:90:05:6c:d2:40:4e:25:b9:8f:6d:c6:49:e6:
f6:ca:29:9b:16:83:46:2d:c7:80:d1:ac:e6:69:6b:
21:17:c3:c4:90:b1:bf:6c:b5:c7:1d:6a:3d:42:ae:
26:ec:b1:fc:9d:0b:3e:67:d9:ce:49:39:6a:b9:f6:
e1:64:ef:19:ad:ae:7c:b2:97:7f:30:63:89:b5:2a:
d0:42:ed:3f:5f:6c:1c:5f:4f:aa:d1:84:c6:a5:bf:
2b:bf:8d:24:b3:36:7e:eb:a1:00:fd:bd:d0:a0:02:
25:0e:c2:fd:df:93:65:39:8c:44:3e:77:d9:1f:b4:
b5:f2:26:02:4b:ee:32:e3:44:eb:7f:77:58:fa:19:
eb:01:82:c9:0b:c3:1b:fa:73:4e:1e:17:1d:69:fb:
d2:a2:72:d6:9c:45:36:60:36:53:91:1c:d4:25:cb:
a6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:68:1B:9D:74:C4:88:86:12:9A:DC:2C:69:A8:56:26:2E:C5:87:C4
X509v3 Authority Key Identifier:
keyid:37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/6mgbnXTEiIYSmtwsaahWJi7Fh8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/NztHo87nmYKtsXA0HQICYCczICM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.16.0/24
Signature Algorithm: sha256WithRSAEncryption
45:83:47:0b:56:1b:00:eb:20:95:1d:6b:68:74:b7:00:5c:5b:
88:51:7a:f2:85:eb:da:60:b5:52:3d:4c:fe:73:8f:d1:2a:24:
1d:b0:34:0d:6d:21:c9:ba:5a:a4:23:d3:68:f1:30:99:da:f9:
d4:a9:5e:4d:a2:fc:48:59:a5:0b:62:ba:9e:00:37:0d:e4:30:
e3:15:08:dc:b4:ce:36:f2:e7:97:2b:88:bd:11:f6:3a:22:8e:
d9:ac:00:03:02:62:67:bc:e2:e1:91:84:66:b9:16:e6:87:4f:
ea:87:4c:6e:e7:cc:62:9d:ca:a7:a6:1f:21:c5:81:d7:2b:86:
d9:d9:66:61:03:40:54:d8:0b:65:0b:8f:9a:88:a9:d2:04:f8:
03:40:32:99:33:7c:41:c1:1d:8a:bb:3f:42:e8:27:2f:16:c0:
1a:ff:9e:a2:b6:58:05:ad:58:13:a1:bc:b1:5f:ca:4b:0c:88:
8f:32:5e:dd:0d:e7:7e:6a:6a:ad:9e:ac:56:d1:5d:b3:9a:f2:
db:3b:28:b1:cd:b3:11:41:c7:f9:03:4f:84:37:6d:05:46:ce:
93:4c:5e:84:ec:85:9d:2f:87:6b:a2:cc:48:71:83:e3:a5:59:
14:17:a2:eb:8c:59:d1:d8:d8:91:a1:00:00:eb:1a:77:07:8f:
8b:cc:66:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 13:50:03 2024 by rpki-client on console-ams.rpki-client.org