Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/liSzzcdsvu8q36_MX9pG-U5kXMU.roa
File: liSzzcdsvu8q36_MX9pG-U5kXMU.roa (raw, json)
Hash identifier: tVEk73mq1egsCf+Zn8wvFlFi3YakaH7ByhecMtxXlZM=
Subject key identifier: 96:24:B3:CD:C7:6C:BE:EF:2A:DF:AF:CC:5F:DA:46:F9:4E:64:5C:C5
Certificate issuer: /CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Certificate serial: 018D5A0BCE57E73B66D9802089C606776628
Authority key identifier: 5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/liSzzcdsvu8q36_MX9pG-U5kXMU.roa
Signing time: Tue 30 Jan 2024 11:05:39 +0000
ROA not before: Tue 30 Jan 2024 11:05:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199435
IP address blocks: 5.34.128.0/19 maxlen: 19
185.93.80.0/22 maxlen: 22
188.92.124.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:0b:ce:57:e7:3b:66:d9:80:20:89:c6:06:77:66:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Validity
Not Before: Jan 30 11:05:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9624b3cdc76cbeef2adfafcc5fda46f94e645cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:91:fe:c6:be:cc:56:64:af:ed:72:97:d6:ff:
a0:b3:94:8c:0e:47:c5:91:5d:36:a0:12:87:f6:9b:
78:a6:19:b4:11:be:50:42:fd:90:ce:72:57:ff:1f:
c4:de:03:fa:75:d9:24:02:80:80:ea:da:f9:02:2f:
7c:a1:ac:d7:3e:7c:76:5d:f1:4a:0b:da:a4:92:f0:
f1:f2:0c:ed:e8:0c:f0:b9:a9:80:7a:da:21:b1:45:
17:c4:f7:b4:5b:82:c7:12:92:57:0b:86:15:db:21:
7d:2b:dc:38:33:9a:51:07:6d:f9:a1:cb:f1:4a:f3:
b2:df:37:5e:5c:c2:fb:dd:7a:5e:ff:94:7c:51:79:
14:33:21:c1:4e:bc:ed:21:ba:95:18:fa:d8:96:f9:
4a:77:61:cf:8d:ab:27:10:b7:a5:79:c9:47:92:eb:
01:bb:35:de:87:16:1d:f7:60:6a:07:fb:d4:2a:36:
75:a9:07:d1:ca:88:fa:00:e8:60:30:59:a7:5d:ec:
49:7c:1c:8b:d5:fe:d4:38:29:01:ff:76:6a:17:8b:
b8:f9:e6:58:ad:e8:2b:64:b9:04:dd:99:de:f0:aa:
d8:e1:a0:d2:f9:3f:f2:bd:cb:d3:6c:c4:7c:fc:ed:
7d:06:0a:fe:23:ae:0a:f9:73:de:3b:72:de:6c:13:
1c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:24:B3:CD:C7:6C:BE:EF:2A:DF:AF:CC:5F:DA:46:F9:4E:64:5C:C5
X509v3 Authority Key Identifier:
keyid:5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/liSzzcdsvu8q36_MX9pG-U5kXMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.128.0/19
185.93.80.0/22
188.92.124.0/22
Signature Algorithm: sha256WithRSAEncryption
16:16:b5:38:52:4f:a6:38:52:24:48:42:64:14:ee:9f:1f:9e:
9b:99:b9:7e:da:be:20:d9:f6:4c:8b:65:eb:22:b2:7d:a8:81:
e2:c9:b9:65:64:7a:5d:28:fe:09:d0:1d:24:3d:ba:2a:bc:05:
3c:d3:64:6b:9d:c8:fa:31:7a:97:d0:a5:bd:f2:70:5d:ae:82:
34:dc:0c:b4:74:d1:54:81:7c:d8:85:df:92:1e:fc:58:4f:a5:
dd:a3:d3:a4:3a:00:7a:c3:1e:55:af:46:74:10:9c:71:47:2a:
26:dd:18:98:94:60:81:24:8d:91:de:5b:9c:b0:7b:fa:93:4a:
ba:43:99:b6:df:fe:d6:ad:77:2f:51:86:b5:8a:da:73:b2:d7:
05:04:58:79:e3:a0:4d:8c:68:5e:cc:ad:46:78:4e:9d:db:19:
83:27:3c:99:9c:33:5f:65:84:5d:33:a1:9d:07:c4:91:b6:0c:
3a:17:9d:5a:fa:52:13:18:9a:d1:a9:ad:90:1a:9f:1a:38:90:
36:b9:e8:1b:85:ef:e4:0b:92:2a:49:8d:f3:9a:2d:7e:8c:94:
ab:c9:ff:f7:22:7f:ed:92:6f:22:37:fc:9e:da:cd:d0:22:5d:
85:d4:3c:1e:37:e9:dc:08:a4:53:bb:63:d4:68:a7:fb:e7:89:
7b:37:4c:cb
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY1aC85X5ztm2YAgicYGd2YoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhOTM5YjBjZWQzOGQ3NWNjNjNlZDUwZDZlNWNlNzJiYmI1
YjRiMTAwHhcNMjQwMTMwMTEwNTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjI0YjNjZGM3NmNiZWVmMmFkZmFmY2M1ZmRhNDZmOTRlNjQ1Y2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZH+xr7MVmSv7XKX1v+gs5SMDkfF
kV02oBKH9pt4phm0Eb5QQv2QznJX/x/E3gP6ddkkAoCA6tr5Ai98oazXPnx2XfFK
C9qkkvDx8gzt6AzwuamAetohsUUXxPe0W4LHEpJXC4YV2yF9K9w4M5pRB235ocvx
SvOy3zdeXML73Xpe/5R8UXkUMyHBTrztIbqVGPrYlvlKd2HPjasnELeleclHkusB
uzXehxYd92BqB/vUKjZ1qQfRyoj6AOhgMFmnXexJfByL1f7UOCkB/3ZqF4u4+eZY
regrZLkE3Zne8KrY4aDS+T/yvcvTbMR8/O19Bgr+I64K+XPeO3LebBMc7wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFJYks83HbL7vKt+vzF/aRvlOZFzFMB8GA1UdIwQY
MBaAFFqTmwztONdcxj7VDW5c5yu7W0sQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgt
ZDYwYjNiNmNjYTZlLzEvbGlTenpjZHN2dThxMzZfTVg5cEctVTVrWE1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgtZDYwYjNiNmNjYTZl
LzEvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQFBSKAAwQC
uV1QAwQCvFx8MA0GCSqGSIb3DQEBCwUAA4IBAQAWFrU4Uk+mOFIkSEJkFO6fH56b
mbl+2r4g2fZMi2XrIrJ9qIHiybllZHpdKP4J0B0kPboqvAU802Rrncj6MXqX0KW9
8nBdroI03Ay0dNFUgXzYhd+SHvxYT6Xdo9OkOgB6wx5Vr0Z0EJxxRyom3RiYlGCB
JI2R3lucsHv6k0q6Q5m23/7WrXcvUYa1itpzstcFBFh546BNjGhezK1GeE6d2xmD
JzyZnDNfZYRdM6GdB8SRtgw6F51a+lITGJrRqa2QGp8aOJA2uegbhe/kC5IqSY3z
mi1+jJSryf/3In/tkm8iN/ye2s3QIl2F1DweN+ncCKRTu2PUaKf754l7N0zL
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:08:15 2024 by rpki-client on console-ams.rpki-client.org