Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Jw99jJWkFmokfPCGx_pmfAK4Dd8.roa
File: Jw99jJWkFmokfPCGx_pmfAK4Dd8.roa (raw, json)
Hash identifier: dTJdSc4xWHcPXtciprexl3uWkNx4fq4ex6t3GZyQIYI=
Subject key identifier: 27:0F:7D:8C:95:A4:16:6A:24:7C:F0:86:C7:FA:66:7C:02:B8:0D:DF
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 018CC492D8318BD3A7C89D6282A111304006
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Jw99jJWkFmokfPCGx_pmfAK4Dd8.roa
Signing time: Mon 01 Jan 2024 10:30:06 +0000
ROA not before: Mon 01 Jan 2024 10:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49847
IP address blocks: 5.160.160.0/23 maxlen: 24
5.160.164.0/23 maxlen: 24
46.209.54.0/23 maxlen: 24
46.209.178.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:d8:31:8b:d3:a7:c8:9d:62:82:a1:11:30:40:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 10:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=270f7d8c95a4166a247cf086c7fa667c02b80ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:be:95:23:e3:62:51:8a:dc:fd:13:7f:54:e0:
55:b1:67:c1:b6:6d:53:55:c8:7d:cd:4b:72:97:75:
f8:0d:0b:9b:72:b8:b8:c8:7d:39:9f:97:bf:6d:77:
ca:8a:8a:e7:91:c3:e9:16:49:b2:52:eb:30:d6:6d:
15:cb:d4:94:a7:4d:08:28:da:ff:4d:3d:b9:9d:d1:
6c:17:94:4c:46:82:27:9b:48:15:77:de:6d:32:22:
39:a1:f6:0b:07:80:1f:6e:cf:c2:b3:ff:97:ef:c9:
68:76:e3:79:a3:04:77:39:2d:f5:08:7f:6a:18:78:
8d:73:ec:99:70:fb:93:d2:56:cd:6f:bd:b2:2f:86:
3b:fa:d6:8f:13:5c:ef:40:6c:41:9b:e0:3c:ff:df:
51:47:1f:b1:50:50:dd:a5:96:22:63:3a:a9:33:6a:
d7:b8:0c:06:19:b9:4e:10:41:93:a3:40:98:65:10:
f7:1e:20:6b:dc:39:ef:99:80:66:98:7e:12:2b:66:
f5:d7:0f:f9:53:b6:b4:83:fd:04:95:bb:af:71:47:
53:3d:43:e6:39:37:a9:9d:cc:a7:10:50:ae:e7:3e:
f4:2c:30:0c:f5:23:c5:df:35:1b:ab:6e:1d:93:9d:
de:57:0a:85:5c:ab:ea:b3:cb:f6:2e:31:0e:41:0e:
68:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0F:7D:8C:95:A4:16:6A:24:7C:F0:86:C7:FA:66:7C:02:B8:0D:DF
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Jw99jJWkFmokfPCGx_pmfAK4Dd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.160.0/23
5.160.164.0/23
46.209.54.0/23
46.209.178.0/23
Signature Algorithm: sha256WithRSAEncryption
72:b4:9f:59:bd:38:d6:fe:1e:2a:00:9a:4a:94:65:a0:eb:89:
04:c5:c7:25:22:d2:44:a4:2b:1d:7f:a2:c7:fb:28:6b:96:c1:
c2:f7:5f:8c:1b:18:00:f6:bb:5c:44:e9:95:26:b0:95:51:58:
41:67:cc:41:81:c9:6f:b0:9b:1b:b0:13:87:ff:39:0b:62:e7:
dc:b2:ba:b6:74:cb:4b:8a:53:e2:73:11:d0:99:35:c0:c0:39:
50:a6:8c:3b:7e:04:76:61:9c:b3:b6:b8:0e:cf:b0:b4:e0:6b:
b1:b6:5b:d5:ae:47:dc:81:d4:24:2e:ae:54:38:ca:5d:62:51:
b7:44:22:41:52:a8:38:90:cc:f6:0b:4c:42:94:75:e7:70:d1:
40:05:9e:1f:c4:56:13:e9:45:69:01:99:76:f4:61:d4:70:68:
2f:30:e5:90:f3:60:92:bb:d9:98:a6:bc:55:23:1f:a8:42:49:
e5:2a:61:41:b1:d8:25:19:24:56:53:6e:62:59:06:70:e9:f5:
7e:b1:85:15:fb:d4:d9:7c:06:f4:71:61:b7:30:f2:db:4d:f7:
a7:f6:f8:b8:e4:d8:f2:74:27:1e:85:03:98:c1:fc:81:b1:17:
ca:31:2b:cd:f3:62:c7:de:c3:3a:71:c0:39:4c:d7:ef:1b:39:
7b:49:aa:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:14:54 2024 by rpki-client on console-fra.rpki-client.org