Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/W6rq_TnEWUziWZTEG_L0i6zJeJM.roa
File: W6rq_TnEWUziWZTEG_L0i6zJeJM.roa (raw, json)
Hash identifier: UTRlFAiMt8Znkquj3hHZVEuWXHaymtz6KXMvbjqgHQI=
Subject key identifier: 5B:AA:EA:FD:39:C4:59:4C:E2:59:94:C4:1B:F2:F4:8B:AC:C9:78:93
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 018CC425610EB9BFE751B00CAC0229472FCD
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/W6rq_TnEWUziWZTEG_L0i6zJeJM.roa
Signing time: Mon 01 Jan 2024 08:30:33 +0000
ROA not before: Mon 01 Jan 2024 08:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5588
IP address blocks: 5.56.33.0/24 maxlen: 24
5.56.37.0/24 maxlen: 24
5.56.38.0/24 maxlen: 24
2a01:47c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:61:0e:b9:bf:e7:51:b0:0c:ac:02:29:47:2f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Jan 1 08:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5baaeafd39c4594ce25994c41bf2f48bacc97893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:08:2e:d0:e7:ba:b4:aa:3c:73:1d:ec:2c:c6:
fb:32:5e:a0:3a:88:d4:d7:ff:c7:9b:36:f5:50:58:
61:4e:42:36:46:51:21:18:94:b6:f4:cf:25:28:bd:
51:d7:ae:54:c9:49:97:be:ff:63:f6:a8:a7:76:f9:
f6:a4:d1:be:c6:9b:c4:d2:a6:57:9e:bc:8e:28:22:
84:67:1f:5a:e7:c2:d3:ce:b9:de:7c:dc:44:69:83:
82:3d:8a:20:f9:be:3d:42:8a:6a:ce:5c:ab:6b:35:
42:74:f8:0f:bb:59:44:0c:03:a5:95:b3:4e:d8:a8:
e5:06:a9:e1:0a:fe:a1:05:8c:79:4b:42:7c:60:22:
b8:2f:c1:ac:8e:3c:1d:6f:31:5f:60:c0:e7:b9:28:
75:36:70:14:73:73:ab:a6:2e:98:c8:94:f4:07:53:
cf:bc:69:b8:dd:96:08:b2:76:2a:a1:0d:b7:66:0c:
c2:44:4c:5f:92:00:61:55:34:e9:f0:22:ee:2c:ce:
4a:3e:0e:02:50:12:52:f4:1b:86:42:d2:47:92:8c:
33:c3:db:5c:0e:45:fc:1e:cf:a4:74:2b:f0:3f:0b:
ae:ce:9f:31:cb:c6:43:cb:11:77:de:ab:48:b8:d3:
f9:1d:5a:bc:f1:13:35:8e:1c:65:80:28:c2:01:17:
5f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AA:EA:FD:39:C4:59:4C:E2:59:94:C4:1B:F2:F4:8B:AC:C9:78:93
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/W6rq_TnEWUziWZTEG_L0i6zJeJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.33.0/24
5.56.37.0-5.56.38.255
IPv6:
2a01:47c0::/32
Signature Algorithm: sha256WithRSAEncryption
7d:df:af:11:b9:8a:d4:a8:63:a9:7f:52:c9:45:ff:50:df:ff:
3f:99:b5:f0:b5:b8:4f:d8:7d:22:14:9d:8b:35:53:0b:2a:f6:
83:ca:3b:98:a2:9f:01:e7:b5:92:62:4b:3a:16:c4:4a:90:9f:
c9:5c:ab:a8:79:5c:04:dd:49:60:df:32:0e:35:f7:30:f9:fa:
63:5d:5b:62:20:05:fe:30:00:50:31:f2:82:c3:45:51:e2:7f:
e9:26:75:31:de:73:90:55:6f:84:4c:2c:a9:93:6f:c6:3b:ad:
10:6a:67:ae:42:b8:5d:fc:d6:25:b6:81:be:9d:a0:b9:cf:0a:
63:f6:d3:1a:16:12:15:a8:96:d6:15:3f:1c:13:9c:6e:6e:f6:
cc:b6:ec:e6:ee:8f:5d:c6:63:06:85:29:d6:76:11:c1:dd:f6:
8d:94:83:f7:b7:64:b6:f4:df:aa:23:00:88:12:03:79:9f:cf:
42:30:b0:83:74:ca:c0:7d:86:c6:f8:cb:ac:b2:58:fb:d0:d8:
6c:4d:b1:1a:b9:48:0f:f1:79:52:eb:f1:c1:5a:27:b3:7d:ba:
0a:06:20:4c:85:e1:2d:1f:a2:dd:c4:38:c5:8f:21:29:7f:b0:
1c:00:48:ae:23:45:bf:ba:15:e2:e3:3d:6a:d9:3d:0d:70:03:
d5:a2:00:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:14:19 2024 by rpki-client on console-fra.rpki-client.org