Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/5lwZzcUpow_laJ446NXQbcabnw4.roa
File: 5lwZzcUpow_laJ446NXQbcabnw4.roa (raw, json)
Hash identifier: ITFqUnka82jQ07gHaGXv04s8u2X2f5A3L6oJYw48zaI=
Subject key identifier: E6:5C:19:CD:C5:29:A3:0F:E5:68:9E:38:E8:D5:D0:6D:C6:9B:9F:0E
Certificate issuer: /CN=562e8e050d384502eb797f5e944931a66fdd555a
Certificate serial: 0191ECE35B413311B53A166C83B968B91CA1
Authority key identifier: 56:2E:8E:05:0D:38:45:02:EB:79:7F:5E:94:49:31:A6:6F:DD:55:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vi6OBQ04RQLreX9elEkxpm_dVVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/5lwZzcUpow_laJ446NXQbcabnw4.roa
Signing time: Fri 13 Sep 2024 19:36:48 +0000
ROA not before: Fri 13 Sep 2024 19:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15626
IP address blocks: 91.199.45.0/24 maxlen: 24
91.235.128.0/24 maxlen: 24
185.237.204.0/23 maxlen: 23
195.54.163.0/24 maxlen: 24
2a06:c6c0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Vi6OBQ04RQLreX9elEkxpm_dVVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Vi6OBQ04RQLreX9elEkxpm_dVVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vi6OBQ04RQLreX9elEkxpm_dVVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ec:e3:5b:41:33:11:b5:3a:16:6c:83:b9:68:b9:1c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=562e8e050d384502eb797f5e944931a66fdd555a
Validity
Not Before: Sep 13 19:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e65c19cdc529a30fe5689e38e8d5d06dc69b9f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:52:97:f9:b1:7d:8d:1d:21:46:6d:f9:e1:07:
f3:5c:18:fc:32:60:19:09:8f:5c:be:b0:ff:cd:c3:
8c:96:99:50:35:55:56:b6:c5:67:cb:74:67:8f:49:
32:34:12:b3:dd:25:50:dc:ef:3e:79:e3:d2:af:cb:
1b:19:93:fd:a1:63:7b:0f:bd:ab:ab:a2:96:c2:af:
47:1b:72:f6:a4:d6:92:0e:5c:3a:87:c7:4c:d7:c9:
71:9d:75:4d:6f:0e:9e:22:b1:b9:26:7e:18:de:86:
e0:4d:46:ee:fa:00:74:73:c3:0b:3a:c6:c2:20:45:
83:45:f9:9a:29:4d:a3:9d:32:6e:78:fc:d0:ea:3a:
86:74:70:d3:b9:33:0b:a1:6a:86:d5:4e:b2:5e:0e:
fd:7f:b4:d2:e3:e6:a0:b2:23:af:c2:ca:47:48:13:
77:a9:9e:57:6c:c0:19:43:4c:ac:42:44:dd:b0:7a:
c0:31:40:9f:21:c7:c4:58:04:1d:15:25:ea:38:e4:
6a:32:3e:9c:62:bf:c0:c4:29:5a:33:de:76:4d:90:
3d:ba:0f:36:7f:e3:8c:b4:21:dc:3c:1d:bb:c5:34:
be:23:69:5f:61:4f:93:df:ca:00:4e:00:1f:c4:1c:
6a:37:c3:29:03:4f:6d:e9:28:26:a2:65:6b:3b:77:
24:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5C:19:CD:C5:29:A3:0F:E5:68:9E:38:E8:D5:D0:6D:C6:9B:9F:0E
X509v3 Authority Key Identifier:
keyid:56:2E:8E:05:0D:38:45:02:EB:79:7F:5E:94:49:31:A6:6F:DD:55:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vi6OBQ04RQLreX9elEkxpm_dVVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/5lwZzcUpow_laJ446NXQbcabnw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Vi6OBQ04RQLreX9elEkxpm_dVVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.45.0/24
91.235.128.0/24
185.237.204.0/23
195.54.163.0/24
IPv6:
2a06:c6c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
19:1f:08:de:b5:69:45:de:f3:23:93:5c:55:90:d5:9c:88:95:
90:cc:14:71:dd:33:84:0e:cd:50:43:13:7d:79:93:fa:ea:ce:
f8:1f:4a:2b:1a:43:60:62:cd:d6:e2:56:c4:08:b8:7b:e3:17:
2f:e2:01:a9:90:e9:73:71:11:e4:03:31:af:b9:85:44:fe:44:
0f:02:1d:1b:dc:12:a9:cd:f4:38:4e:be:2f:78:02:5c:94:fb:
ec:64:e3:d9:3e:75:81:8d:fd:60:3b:37:12:f5:98:62:e3:15:
a4:56:46:19:f3:89:2d:5d:71:12:ac:25:ec:42:16:2d:15:f7:
87:e5:f0:d3:8b:a6:31:be:51:a9:25:c6:de:9e:88:c1:bd:50:
fc:0d:58:42:e5:94:03:6c:ad:0b:2c:b3:73:fe:23:2b:48:15:
37:7f:1f:04:78:9f:a7:81:bb:d7:4c:68:40:f2:0a:f2:f5:65:
30:85:c1:c4:39:c9:a8:b5:7f:32:5b:31:ad:cc:95:a8:f5:1e:
53:71:5c:54:18:11:04:a6:08:29:4a:75:a7:99:1f:f3:59:01:
b8:04:10:7e:d6:f0:8f:2f:cd:3d:4c:77:51:7c:ef:ba:a7:75:
3e:a9:5f:ef:f7:7a:cf:cc:59:fc:61:41:25:0a:5d:d6:2b:8b:
40:6a:49:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 00:10:30 2024 by rpki-client on console-ams.rpki-client.org