Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/5rhCnbfBQSoAZuVmVMiboeGWu54.roa
File: 5rhCnbfBQSoAZuVmVMiboeGWu54.roa (raw, json)
Hash identifier: 5gqpbrRC+Cdfkm/c1DR9JwMbjBV9KN22IV4kTNfP+nw=
Subject key identifier: E6:B8:42:9D:B7:C1:41:2A:00:66:E5:66:54:C8:9B:A1:E1:96:BB:9E
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 0194236A165E269AC76A600C07377A192940
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/5rhCnbfBQSoAZuVmVMiboeGWu54.roa
Signing time: Wed 01 Jan 2025 19:49:02 +0000
ROA not before: Wed 01 Jan 2025 19:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16125
IP address blocks: 82.206.0.0/23 maxlen: 23
82.206.10.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 13:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:16:5e:26:9a:c7:6a:60:0c:07:37:7a:19:29:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Jan 1 19:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6b8429db7c1412a0066e56654c89ba1e196bb9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b4:8c:6f:73:02:4f:52:3f:b9:26:0f:0e:2a:
bf:8f:37:33:2f:fe:f2:2f:a7:49:7f:5d:ba:e2:b9:
1a:28:58:04:9f:84:ef:6b:db:8e:66:28:9f:ef:7f:
dc:d2:9c:02:4b:c2:33:f2:b3:75:35:6d:a6:3c:11:
93:2d:f7:67:d2:9b:fb:12:f3:4d:c8:72:ad:eb:0e:
9d:13:8f:63:25:10:a8:45:2a:d6:4e:ee:39:cb:5d:
a4:2e:91:7e:df:2e:e3:e1:42:e5:8d:84:98:e7:b6:
b7:b6:c5:f0:1d:31:c8:ec:83:2e:91:6c:c1:64:da:
13:b6:c3:e4:d4:c8:15:3a:3a:7e:9d:7f:24:a2:cc:
31:5a:5f:cc:d1:28:28:7e:f0:4c:04:c0:6b:be:7b:
dd:3b:7f:6a:3d:93:aa:6b:89:05:de:d3:1d:4c:89:
19:9a:c7:c0:57:eb:1a:d9:35:cc:98:02:4f:5c:95:
c2:a0:ad:b0:8f:26:82:c5:8b:53:5d:12:9c:0c:c1:
db:99:84:bf:18:18:e4:7f:d8:d9:61:a1:c3:a9:8e:
56:60:6a:2f:11:c9:e8:41:0c:23:2f:3f:dc:10:b1:
85:77:89:a7:8e:e2:91:c4:b3:8f:44:68:0c:2a:3a:
e5:c5:97:5f:c0:4c:ac:d2:5d:5f:3d:9d:e6:dc:ec:
2e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B8:42:9D:B7:C1:41:2A:00:66:E5:66:54:C8:9B:A1:E1:96:BB:9E
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/5rhCnbfBQSoAZuVmVMiboeGWu54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.0.0/23
82.206.10.0/23
Signature Algorithm: sha256WithRSAEncryption
40:3b:85:60:6f:ce:ca:5d:4a:a5:22:f9:66:cc:7e:5f:36:3a:
fc:d1:dd:4e:07:8a:c4:07:68:e5:54:61:49:77:10:bb:d2:73:
95:dc:09:c8:68:9e:9a:6c:99:25:cd:98:aa:be:49:f3:3e:e4:
e2:43:d4:74:22:28:63:0b:77:e5:25:3b:3c:18:6e:65:09:72:
91:0e:61:f4:5d:5a:b9:e4:b6:8f:cf:f8:06:af:4b:11:0e:d5:
39:03:26:31:90:62:ea:c1:1f:14:19:f5:b4:f9:9d:24:b0:97:
19:e9:e0:c1:c4:67:33:c7:c2:35:98:97:dd:29:c3:4f:d8:0f:
d3:4d:8b:e5:3c:26:34:f3:47:57:1f:a3:1d:d4:5a:26:06:e3:
eb:88:7d:94:cc:cb:47:de:2f:79:0b:b9:73:fe:23:d1:9a:34:
87:c1:7f:fd:e9:62:02:5a:4f:fc:7e:f8:b3:ae:84:fa:33:1d:
4d:f9:96:a0:a6:c2:35:bc:6c:5f:67:5c:0e:4b:7b:db:88:aa:
75:d3:45:46:18:b3:cd:7c:10:d6:d8:5e:c1:80:7c:1f:8f:0d:
f5:0e:1a:e2:ac:6a:ae:7d:9e:25:ff:a8:f9:97:fb:22:00:e3:
46:01:63:12:1d:ad:74:18:42:09:d8:14:47:99:8a:eb:8c:19:
0f:9b:c2:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:24 2025 by rpki-client