Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/7UnJVQgeBo0cehWg5RMVs9f8X7s.roa
File: 7UnJVQgeBo0cehWg5RMVs9f8X7s.roa (raw, json)
Hash identifier: 1WEvQmunx4ZBJ4aoTH5JbUr0/Xqm+zUQB0j+Pj4LB+Y=
Subject key identifier: ED:49:C9:55:08:1E:06:8D:1C:7A:15:A0:E5:13:15:B3:D7:FC:5F:BB
Certificate issuer: /CN=e5d272a8dc041f5adc7abd00d64d3f32c204dab2
Certificate serial: 018CC26D5D251203CF05A85C77C14960F452
Authority key identifier: E5:D2:72:A8:DC:04:1F:5A:DC:7A:BD:00:D6:4D:3F:32:C2:04:DA:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dJyqNwEH1rcer0A1k0_MsIE2rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/7UnJVQgeBo0cehWg5RMVs9f8X7s.roa
Signing time: Mon 01 Jan 2024 00:29:56 +0000
ROA not before: Mon 01 Jan 2024 00:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133199
IP address blocks: 194.41.36.0/24 maxlen: 24
194.41.37.0/24 maxlen: 24
194.41.58.0/24 maxlen: 24
194.41.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/5dJyqNwEH1rcer0A1k0_MsIE2rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/5dJyqNwEH1rcer0A1k0_MsIE2rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5dJyqNwEH1rcer0A1k0_MsIE2rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 10:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:5d:25:12:03:cf:05:a8:5c:77:c1:49:60:f4:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d272a8dc041f5adc7abd00d64d3f32c204dab2
Validity
Not Before: Jan 1 00:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed49c955081e068d1c7a15a0e51315b3d7fc5fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4c:15:de:e8:f7:40:c0:16:1d:4a:cc:3c:34:
d0:b0:a9:d7:a9:ac:10:56:4b:80:52:a8:a3:5f:ea:
51:fa:92:e2:1d:f9:83:52:4c:08:d0:37:b1:ea:4c:
8c:a8:97:ba:1f:1c:29:68:f3:c0:4a:34:c3:74:7d:
36:c7:4b:c1:a5:37:bc:0d:24:fd:47:db:cd:c9:2b:
40:4c:35:f7:6a:ba:bc:d0:5a:4a:78:dd:d7:ed:ab:
e1:f4:5f:93:a2:e8:18:fe:07:0e:4c:33:82:61:e4:
3d:90:bc:f0:fe:f8:a9:f5:81:1c:0a:ee:24:29:88:
4f:5f:40:9f:be:f7:97:f6:07:19:12:af:d0:d1:4b:
6f:4d:30:cc:e8:bb:2d:81:8c:e0:dd:0b:ba:47:1c:
d4:29:7e:10:01:bb:63:4c:be:c7:0e:18:d0:39:0c:
72:75:59:50:4e:9b:fd:6c:7d:1d:34:d6:2d:1a:1f:
fa:98:48:b4:89:a1:67:26:20:16:21:67:76:ee:b3:
79:6a:47:f0:5f:5e:73:c7:e7:08:58:df:de:0c:25:
15:d9:78:e0:39:98:db:d5:17:8a:3f:b4:33:75:1e:
c2:46:49:9b:c4:9e:26:2d:68:53:69:ec:6c:f5:5c:
bc:96:e1:9d:e0:16:73:0d:24:d3:9e:d3:8f:d5:7f:
f7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:49:C9:55:08:1E:06:8D:1C:7A:15:A0:E5:13:15:B3:D7:FC:5F:BB
X509v3 Authority Key Identifier:
keyid:E5:D2:72:A8:DC:04:1F:5A:DC:7A:BD:00:D6:4D:3F:32:C2:04:DA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dJyqNwEH1rcer0A1k0_MsIE2rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/7UnJVQgeBo0cehWg5RMVs9f8X7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/5dJyqNwEH1rcer0A1k0_MsIE2rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.41.36.0/23
194.41.58.0/23
Signature Algorithm: sha256WithRSAEncryption
67:dd:5c:15:88:ff:63:08:e2:54:7f:ad:d8:10:84:45:61:6b:
31:f2:49:c6:e7:2e:e8:7b:7d:f5:fe:45:bd:5b:e0:ad:fa:7c:
ec:24:79:76:80:b1:e5:0c:77:76:21:d5:0b:f9:ca:f5:fb:e0:
d6:ec:e9:a8:ef:56:fa:1d:fb:f9:f3:94:bd:90:02:41:eb:a2:
2c:3c:d3:65:05:dc:e4:fd:32:4d:8e:86:5f:9d:70:95:7b:3b:
8c:46:d0:d2:a2:e1:7f:c5:64:9f:ed:08:d7:65:fc:7a:3e:cc:
10:98:14:b9:fe:6e:8c:8b:87:dc:af:78:c1:33:c7:5d:d4:25:
a0:6a:f1:97:86:a5:66:ef:3b:e7:5d:60:1b:93:89:00:23:ae:
c0:b4:a8:d8:ba:e6:b6:e0:7b:7b:c8:b0:b5:56:42:c5:5d:fc:
ef:27:98:47:10:69:a0:9e:0b:06:d9:66:a2:91:e2:05:e9:19:
cf:72:3d:64:83:75:2e:15:37:92:f6:ea:00:f1:57:c1:9d:99:
77:4e:df:a2:03:7c:a2:99:c0:77:fb:ee:77:6c:1c:22:d6:a5:
9a:10:9a:8b:d1:25:b2:4d:36:83:0e:26:ee:cf:84:05:b3:38:
cb:7b:33:84:dd:41:9f:79:94:3a:de:9e:a8:18:dd:0f:11:c5:
bb:fb:48:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 16:00:44 2024 by rpki-client on console-ams.rpki-client.org