Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/449c02-f262-45d3-8f8f-d4b723ed781c/1/5S_peVEqVR2yz9AB9kEYnjkqJf4.roa
File: 5S_peVEqVR2yz9AB9kEYnjkqJf4.roa (raw, json)
Hash identifier: JN+fDAYO1vu9s3uiFRzWLYtTRtxMx8mlusyzxiCtX+U=
Subject key identifier: E5:2F:E9:79:51:2A:55:1D:B2:CF:D0:01:F6:41:18:9E:39:2A:25:FE
Certificate issuer: /CN=f65419e3700a36ba2b03906c9f8f4d2dfd848070
Certificate serial: 018CCA29583EE70C5FA44D60DA924EA11657
Authority key identifier: F6:54:19:E3:70:0A:36:BA:2B:03:90:6C:9F:8F:4D:2D:FD:84:80:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lQZ43AKNrorA5Bsn49NLf2EgHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/449c02-f262-45d3-8f8f-d4b723ed781c/1/5S_peVEqVR2yz9AB9kEYnjkqJf4.roa
Signing time: Tue 02 Jan 2024 12:32:36 +0000
ROA not before: Tue 02 Jan 2024 12:32:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206078
IP address blocks: 185.180.34.0/24 maxlen: 24
185.180.34.0/23 maxlen: 23
185.180.33.0/24 maxlen: 24
185.180.32.0/23 maxlen: 23
185.180.32.0/24 maxlen: 24
185.180.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/449c02-f262-45d3-8f8f-d4b723ed781c/1/9lQZ43AKNrorA5Bsn49NLf2EgHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/449c02-f262-45d3-8f8f-d4b723ed781c/1/9lQZ43AKNrorA5Bsn49NLf2EgHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/9lQZ43AKNrorA5Bsn49NLf2EgHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:58:3e:e7:0c:5f:a4:4d:60:da:92:4e:a1:16:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f65419e3700a36ba2b03906c9f8f4d2dfd848070
Validity
Not Before: Jan 2 12:32:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e52fe979512a551db2cfd001f641189e392a25fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7d:c1:97:30:9c:7b:39:38:c5:63:59:63:16:
9c:d8:3c:c7:68:86:28:d6:4c:be:a1:cc:e8:ad:66:
41:d1:f2:05:a3:2d:76:1b:b7:e5:bd:9b:2c:12:75:
91:c4:54:1a:2d:02:d4:d9:d9:f6:28:ad:e6:69:9d:
a9:39:d1:b9:59:c0:de:dc:8f:d4:65:5e:ea:9a:ac:
58:ad:aa:56:db:39:7c:9a:f9:f5:c8:8a:39:e2:c5:
d9:19:f9:13:c9:12:ae:0c:5a:9e:f3:db:01:af:d3:
3e:1b:b1:bf:c3:77:56:15:81:ff:73:ae:2a:15:c5:
e5:79:06:dc:76:dd:bf:64:00:78:d5:09:ca:3f:99:
15:73:16:02:a2:12:72:03:bc:1f:49:3b:e5:22:50:
90:ec:1b:61:a5:fc:cb:f7:ab:11:2b:3e:26:1a:f4:
4f:d3:5a:4a:b9:a3:f8:f1:2b:8d:b9:02:61:0f:f0:
1f:3b:0c:b7:df:78:a9:8c:4a:6e:ab:50:f5:7f:07:
c4:2c:e8:bc:f9:1f:5f:76:42:b2:62:84:57:1a:76:
37:44:a7:06:c7:7f:34:fc:47:59:f6:74:26:32:65:
a2:a8:43:fc:f5:5d:37:bb:5e:26:78:e1:31:ba:2c:
6c:d1:ad:49:a7:fc:26:27:97:3d:ee:ef:47:35:88:
af:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2F:E9:79:51:2A:55:1D:B2:CF:D0:01:F6:41:18:9E:39:2A:25:FE
X509v3 Authority Key Identifier:
keyid:F6:54:19:E3:70:0A:36:BA:2B:03:90:6C:9F:8F:4D:2D:FD:84:80:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lQZ43AKNrorA5Bsn49NLf2EgHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/449c02-f262-45d3-8f8f-d4b723ed781c/1/5S_peVEqVR2yz9AB9kEYnjkqJf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/449c02-f262-45d3-8f8f-d4b723ed781c/1/9lQZ43AKNrorA5Bsn49NLf2EgHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.32.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:65:bd:38:8c:d9:00:1d:33:41:9d:eb:b4:47:16:0c:de:51:
d4:1b:d6:4b:b4:ab:b8:a5:35:5f:5d:c6:97:65:76:76:47:94:
64:5a:d9:cb:b8:6e:57:2c:59:23:50:f0:63:50:06:37:6c:14:
d7:36:b2:5f:21:ec:cd:c5:1e:40:5a:d2:1c:42:86:fe:2b:36:
39:14:db:9a:28:3c:19:c6:ad:eb:0d:b2:a9:15:aa:76:ad:19:
d3:41:81:87:fa:4a:5d:10:a4:14:06:84:d9:59:a5:d6:6f:d3:
19:60:42:6d:08:73:6e:a4:c9:ac:47:dd:fa:95:5f:2c:6c:9e:
f2:d4:f1:e1:39:7f:08:f4:f8:b1:89:ed:8e:81:9d:84:92:d4:
6d:62:28:9a:ae:55:23:ab:24:d2:cb:4d:37:80:4b:a9:23:a4:
1f:85:5b:e6:d8:f4:28:96:92:de:82:74:9e:79:43:f1:da:bd:
04:e2:7f:69:58:f0:a5:b8:e1:cb:6f:83:6f:72:5d:fd:e5:77:
f4:35:82:3a:77:1b:a3:33:28:70:fe:c9:0b:3f:81:d6:66:01:
bb:dd:e1:1b:55:f3:e2:6d:ea:5c:c2:bf:56:a6:f3:4f:6d:62:
92:a1:b4:69:b0:37:d2:e7:9b:e8:5b:fb:97:86:c5:51:7c:af:
66:fb:a5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 23:05:15 2024 by rpki-client on console-fra.rpki-client.org