Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/b64083-550e-4caf-bc29-a34a8b806832/1/5-EtriGs8yAgiOf06AoDxER64QM.roa
File: 5-EtriGs8yAgiOf06AoDxER64QM.roa (raw, json)
Hash identifier: pL2jrybTuxb5tflVub98YNbVJx6sABVyVYKm8fb3QZI=
Subject key identifier: E7:E1:2D:AE:21:AC:F3:20:20:88:E7:F4:E8:0A:03:C4:44:7A:E1:03
Certificate issuer: /CN=0f091bdc666b8a59433c68d90e0d8cc37acdce92
Certificate serial: 018F7B4F4D80C6CA5D1F72D6DF4A96CD1935
Authority key identifier: 0F:09:1B:DC:66:6B:8A:59:43:3C:68:D9:0E:0D:8C:C3:7A:CD:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dwkb3GZrillDPGjZDg2Mw3rNzpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/b64083-550e-4caf-bc29-a34a8b806832/1/5-EtriGs8yAgiOf06AoDxER64QM.roa
Signing time: Wed 15 May 2024 08:12:25 +0000
ROA not before: Wed 15 May 2024 08:12:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209076
IP address blocks: 37.34.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/b64083-550e-4caf-bc29-a34a8b806832/1/Dwkb3GZrillDPGjZDg2Mw3rNzpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/b64083-550e-4caf-bc29-a34a8b806832/1/Dwkb3GZrillDPGjZDg2Mw3rNzpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dwkb3GZrillDPGjZDg2Mw3rNzpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 23:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:4f:4d:80:c6:ca:5d:1f:72:d6:df:4a:96:cd:19:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f091bdc666b8a59433c68d90e0d8cc37acdce92
Validity
Not Before: May 15 08:12:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7e12dae21acf3202088e7f4e80a03c4447ae103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:98:e0:a5:91:76:55:57:7b:3c:b3:03:f2:f3:
70:33:22:20:14:3e:d3:bc:56:ff:d3:c5:3f:ef:64:
0c:bf:d4:62:bf:31:74:70:2a:db:ed:5e:27:52:cd:
48:0d:50:d5:58:65:a3:91:9c:df:74:84:1d:1b:1f:
2c:7a:8f:53:d3:a9:fd:c2:e3:1e:d2:23:17:a4:e7:
d4:3d:7f:ff:6b:d8:02:bb:9f:3d:35:63:7e:be:be:
95:29:dd:35:70:d7:69:5f:da:de:d3:43:cc:76:13:
88:ea:5a:b8:8c:71:57:05:4b:80:28:e4:1f:e8:6c:
6d:c8:62:82:68:22:83:64:0f:0e:84:4f:0b:9d:63:
41:1c:65:75:48:d2:dd:e3:5b:51:97:e5:5f:4d:64:
6a:f6:cb:60:c4:39:c4:3f:a5:62:73:a3:2e:bf:12:
ff:5c:13:0e:74:02:02:b0:4a:de:a0:af:12:42:e2:
1f:9b:b9:b7:e9:1a:46:34:6f:0c:f1:c0:35:43:e7:
f3:f8:2a:f2:56:58:ab:89:b4:3a:e5:2e:06:1c:0e:
95:b7:8a:2b:3d:f5:7c:7d:b6:ed:ef:50:78:af:b9:
0d:48:22:ad:c6:1e:bf:93:8a:8c:ac:5b:c5:2e:16:
2b:e1:92:d5:4c:96:d8:5e:99:07:f2:b1:bd:63:5b:
7d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E1:2D:AE:21:AC:F3:20:20:88:E7:F4:E8:0A:03:C4:44:7A:E1:03
X509v3 Authority Key Identifier:
keyid:0F:09:1B:DC:66:6B:8A:59:43:3C:68:D9:0E:0D:8C:C3:7A:CD:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dwkb3GZrillDPGjZDg2Mw3rNzpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/b64083-550e-4caf-bc29-a34a8b806832/1/5-EtriGs8yAgiOf06AoDxER64QM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/b64083-550e-4caf-bc29-a34a8b806832/1/Dwkb3GZrillDPGjZDg2Mw3rNzpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.34.75.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a3:51:37:f5:62:b2:fa:19:a4:76:82:11:c6:79:fd:e5:b3:
d0:6b:52:70:7f:b0:67:f3:ab:b9:eb:2e:f1:79:7a:90:0c:1a:
66:46:54:fa:34:af:05:4c:a2:ee:3f:92:84:91:0e:63:fe:0e:
e7:40:d4:1f:ca:99:73:32:ff:91:be:eb:d7:04:91:41:7f:52:
17:c8:83:9d:df:fb:f0:3e:e0:8b:e3:f2:86:68:88:1b:d8:a0:
76:60:53:a7:9f:de:ca:99:4f:a9:93:c8:d3:f7:3c:29:8a:3c:
d0:24:fb:2b:10:66:28:44:7f:40:bf:17:8a:38:48:99:72:b8:
8b:e2:41:5d:07:45:94:24:06:4c:96:41:58:08:8f:db:bb:cd:
bd:75:10:09:f3:08:70:46:67:63:cd:91:e5:d1:0a:ef:df:01:
0d:21:7f:b8:bc:b8:62:00:4a:12:2f:59:fb:68:7a:b5:38:57:
4b:cc:68:35:be:fc:a4:db:5a:f1:ec:ce:c5:5f:c8:08:34:7e:
9e:3f:85:a8:91:b2:b6:24:75:8a:6b:52:18:d5:01:73:21:6b:
e1:97:60:7f:3d:2a:84:2c:b5:76:bf:19:59:ef:63:e2:12:be:
5f:36:a7:52:61:41:27:82:e5:5a:b0:ae:85:16:2c:9e:60:16:
55:b1:57:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:05:16 2024 by rpki-client on console-fra.rpki-client.org