Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/tSoAEkTe7wP79s10pLsEnBQzWYM.roa
File: tSoAEkTe7wP79s10pLsEnBQzWYM.roa (raw, json)
Hash identifier: GDImi2HNzo93Sj78qGqpYttPgtgK1If0N+xElav2SX0=
Subject key identifier: B5:2A:00:12:44:DE:EF:03:FB:F6:CD:74:A4:BB:04:9C:14:33:59:83
Certificate issuer: /CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Certificate serial: 018FC108ADC6AAB3D2CD027EFA03CAC6B725
Authority key identifier: 2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/tSoAEkTe7wP79s10pLsEnBQzWYM.roa
Signing time: Tue 28 May 2024 21:08:42 +0000
ROA not before: Tue 28 May 2024 21:08:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44530
IP address blocks: 5.198.192.0/24 maxlen: 24
37.77.32.0/20 maxlen: 20
2a02:e5c::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.mft
rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c1:08:ad:c6:aa:b3:d2:cd:02:7e:fa:03:ca:c6:b7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Validity
Not Before: May 28 21:08:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b52a001244deef03fbf6cd74a4bb049c14335983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bb:96:fc:c8:14:52:c8:1a:23:3a:ee:be:af:
b5:6f:68:db:32:b4:14:23:13:ea:04:bf:d8:0c:ff:
f4:f7:f8:f1:f5:39:a2:39:0b:27:0f:40:86:06:66:
dc:63:bb:73:d5:6e:0e:1e:91:77:d0:4b:14:c3:8d:
05:55:84:23:35:60:38:71:a9:70:49:08:96:0e:c2:
39:7e:6d:04:56:ab:1f:68:d2:30:35:6a:a7:be:f5:
37:ea:88:a8:e5:35:36:da:5f:8f:34:6a:0d:46:6e:
dd:50:1c:28:bd:47:5a:bf:57:fb:8d:75:9f:9d:c2:
cf:81:a9:e4:3c:2c:ea:cb:20:c3:84:a2:93:8c:db:
df:e0:b7:c4:52:90:bf:00:46:2d:b3:47:93:1c:93:
7e:a9:fe:d5:01:3d:d4:0c:ef:ae:04:69:43:ba:12:
45:ca:e7:8b:91:48:97:24:60:bc:2f:88:7f:fe:f4:
fe:7c:28:53:8a:c5:cd:bd:3c:10:f7:31:1c:76:79:
da:8c:00:79:14:e3:25:81:3e:cc:34:b7:da:3a:f9:
81:71:61:10:f7:85:8a:76:0f:a5:65:0d:8e:62:08:
f8:0f:f7:d1:31:a3:d2:57:10:c3:ae:4a:7a:6b:dc:
06:09:7e:98:1a:e2:20:bc:fc:ed:a3:13:e4:4e:2c:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2A:00:12:44:DE:EF:03:FB:F6:CD:74:A4:BB:04:9C:14:33:59:83
X509v3 Authority Key Identifier:
keyid:2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/tSoAEkTe7wP79s10pLsEnBQzWYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.198.192.0/24
37.77.32.0/20
IPv6:
2a02:e5c::/32
Signature Algorithm: sha256WithRSAEncryption
30:ec:67:e1:21:3a:76:b5:39:8e:be:d6:7a:b2:7a:18:bb:ff:
17:62:c7:cc:66:bf:9a:bb:ba:98:0d:5f:96:60:d3:0b:42:0a:
b2:5c:2f:75:e8:4c:e6:ff:54:1e:92:c3:69:44:5d:fe:e5:2c:
5b:31:ca:c1:f0:6a:50:6c:81:85:de:fe:f6:88:2e:34:3f:79:
9a:b0:81:b3:3a:69:3e:01:8d:e7:55:d8:dc:95:a2:4b:03:b0:
c9:cd:d4:3d:dc:f3:9d:67:48:91:85:cd:ea:bc:35:7c:cf:9c:
f3:13:f7:37:c9:4e:69:18:51:d6:8d:50:3e:15:57:12:c6:f7:
f4:0b:09:ae:dd:24:3b:1d:03:ef:65:41:aa:54:4b:dc:76:dc:
f9:9b:c5:f0:65:f5:82:ab:c1:59:69:51:5b:bf:b0:53:92:ed:
59:8a:22:c9:66:1c:f9:89:ac:89:25:95:68:bf:d9:6c:ba:81:
f6:a9:38:43:89:39:5c:37:42:56:be:18:15:ce:c1:92:75:b9:
84:e1:7b:b1:a0:1e:31:c5:9d:4d:b8:f8:78:82:dd:a7:a8:3e:
44:dc:dd:40:15:29:95:2a:fb:2d:d8:04:99:1e:1d:bd:59:7c:
21:01:a3:e4:a1:98:6b:c6:f2:1f:90:4f:60:97:a1:14:35:31:
a2:db:4a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 13:04:33 2024 by rpki-client on console-fra.rpki-client.org