Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/da40cf-9836-482b-b7a6-c5ad16a55c5f/1/er5OS4o7Mp4VDZQD2FDmo-1IE7U.roa
File: er5OS4o7Mp4VDZQD2FDmo-1IE7U.roa (raw, json)
Hash identifier: OR+Tu4+QAGPGBT6OPfOdspdLe3xvzad6ekA4XZaxjww=
Subject key identifier: 7A:BE:4E:4B:8A:3B:32:9E:15:0D:94:03:D8:50:E6:A3:ED:48:13:B5
Certificate issuer: /CN=e4cd6e61c14e8391005a817b2722f7c4a81eb993
Certificate serial: 01900353B0B493B1E5107FE21EF7A6021473
Authority key identifier: E4:CD:6E:61:C1:4E:83:91:00:5A:81:7B:27:22:F7:C4:A8:1E:B9:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5M1uYcFOg5EAWoF7JyL3xKgeuZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/da40cf-9836-482b-b7a6-c5ad16a55c5f/1/er5OS4o7Mp4VDZQD2FDmo-1IE7U.roa
Signing time: Mon 10 Jun 2024 18:05:34 +0000
ROA not before: Mon 10 Jun 2024 18:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202468
IP address blocks: 5.34.192.0/20 maxlen: 22
128.0.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/da40cf-9836-482b-b7a6-c5ad16a55c5f/1/5M1uYcFOg5EAWoF7JyL3xKgeuZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/da40cf-9836-482b-b7a6-c5ad16a55c5f/1/5M1uYcFOg5EAWoF7JyL3xKgeuZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5M1uYcFOg5EAWoF7JyL3xKgeuZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 28 Jun 2024 06:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:03:53:b0:b4:93:b1:e5:10:7f:e2:1e:f7:a6:02:14:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4cd6e61c14e8391005a817b2722f7c4a81eb993
Validity
Not Before: Jun 10 18:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7abe4e4b8a3b329e150d9403d850e6a3ed4813b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:59:a3:dd:9c:69:c3:78:03:7c:36:a8:59:12:
33:c7:6a:38:bf:74:81:db:36:0a:13:42:ac:8f:b7:
f3:08:fc:fd:ef:fc:09:1f:94:1a:f3:8f:07:a8:a8:
ba:2c:a9:05:d5:c3:58:40:62:3d:0e:c0:b3:8e:aa:
3c:e4:76:2e:2b:e5:83:63:a4:a1:bc:e1:7a:7f:3d:
66:0a:0a:2b:76:ed:4f:b5:ad:9a:bf:f1:ff:c9:cc:
ee:2d:d6:ac:94:43:21:14:a7:12:b4:1e:71:40:a8:
cb:bf:3e:3f:36:b3:7a:76:7b:ba:62:cd:28:fb:54:
60:ec:1b:73:75:3e:2f:95:d1:69:9b:10:54:a1:0c:
2c:dd:39:2d:36:56:b9:73:69:32:ae:05:c4:88:b6:
fd:a9:8c:98:70:ec:95:f3:c8:b0:1c:9a:54:21:48:
72:9f:74:0e:a4:eb:35:29:b9:b5:0b:e4:aa:e6:92:
8b:69:b1:70:d6:98:19:e9:df:5f:fd:67:ed:f2:94:
25:ae:00:69:5c:2f:1b:95:ba:1e:c2:f1:9b:5f:b2:
ae:64:4e:c9:ec:b0:c3:65:a5:fa:94:e7:a4:2e:91:
59:79:46:c1:66:90:5c:f2:89:70:4d:5b:ba:4f:88:
34:ef:7f:77:c9:b8:41:98:29:3f:cf:79:97:9f:7e:
e1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BE:4E:4B:8A:3B:32:9E:15:0D:94:03:D8:50:E6:A3:ED:48:13:B5
X509v3 Authority Key Identifier:
keyid:E4:CD:6E:61:C1:4E:83:91:00:5A:81:7B:27:22:F7:C4:A8:1E:B9:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5M1uYcFOg5EAWoF7JyL3xKgeuZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/da40cf-9836-482b-b7a6-c5ad16a55c5f/1/er5OS4o7Mp4VDZQD2FDmo-1IE7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/da40cf-9836-482b-b7a6-c5ad16a55c5f/1/5M1uYcFOg5EAWoF7JyL3xKgeuZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.192.0/20
128.0.105.0/24
Signature Algorithm: sha256WithRSAEncryption
13:f8:19:47:6a:f8:b5:f1:50:ab:65:e2:fb:70:27:56:2d:61:
76:fa:6e:f9:99:f4:2c:2c:f9:49:e7:88:23:6d:17:d3:0f:f8:
ed:c0:77:71:56:bb:05:d1:5b:34:09:74:6e:aa:84:6c:23:a3:
e1:cd:6c:a3:f0:fe:84:47:3d:c4:4d:ec:67:f9:38:41:81:38:
82:7f:46:cd:86:49:45:6d:2b:79:99:de:79:31:7b:6d:d5:7d:
d1:c4:69:92:4a:cc:be:5f:3e:5e:7d:c2:79:e3:f8:58:db:7a:
13:33:56:8f:17:46:6f:95:ae:5f:3c:81:62:01:21:c5:3c:34:
96:98:a4:66:c4:d0:c9:92:d5:8d:36:81:59:b8:ca:9d:68:01:
9c:f3:be:fc:59:6a:2b:49:7f:b5:4d:43:0a:e3:2f:b1:68:ed:
2c:02:13:c6:7b:9f:3b:6a:5e:3c:c8:cf:be:90:f2:31:d3:b0:
b2:0d:d7:3c:d8:eb:a6:97:9b:b5:0c:66:fe:3c:4b:06:bf:db:
43:4b:a3:1b:d6:95:f5:c9:99:59:23:42:c0:ea:93:bb:fd:db:
1d:fd:81:d2:40:1f:12:ba:2c:3a:87:8a:3d:d7:c8:66:5b:5d:
45:b1:63:13:30:b4:b5:3a:7f:69:f8:ed:39:8a:15:24:b5:fd:
39:be:af:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 15:24:41 2024 by rpki-client on console-fra.rpki-client.org