Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/5E_PPxoH1uOjW52IOmKxEh6TlvY.roa
File: 5E_PPxoH1uOjW52IOmKxEh6TlvY.roa (raw, json)
Hash identifier: RALXND9ib03B3PSFS4o8yPQ7ALhjuc+9PBwGF00CIFs=
Subject key identifier: E4:4F:CF:3F:1A:07:D6:E3:A3:5B:9D:88:3A:62:B1:12:1E:93:96:F6
Certificate issuer: /CN=97da420008cfb9193499278ef558bd42d61c7f75
Certificate serial: 018CC8DF9B97A6FA429C723A1C6104850C7F
Authority key identifier: 97:DA:42:00:08:CF:B9:19:34:99:27:8E:F5:58:BD:42:D6:1C:7F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/5E_PPxoH1uOjW52IOmKxEh6TlvY.roa
Signing time: Tue 02 Jan 2024 06:32:26 +0000
ROA not before: Tue 02 Jan 2024 06:32:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199256
IP address blocks: 217.115.121.0/24 maxlen: 24
217.115.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:9b:97:a6:fa:42:9c:72:3a:1c:61:04:85:0c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97da420008cfb9193499278ef558bd42d61c7f75
Validity
Not Before: Jan 2 06:32:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e44fcf3f1a07d6e3a35b9d883a62b1121e9396f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:78:bd:99:47:e9:90:ac:71:5f:3f:b4:d8:08:
83:4d:b4:c6:ab:0c:78:54:c4:e5:ef:02:81:40:67:
74:b2:c0:43:6b:75:14:3d:66:f4:d9:da:0d:d5:39:
b9:c4:ca:58:51:97:e2:81:58:50:5d:3c:37:a8:22:
04:79:50:1f:34:ca:76:04:ae:aa:31:94:a6:f5:c4:
4b:d4:74:8b:cb:8e:eb:a0:93:c1:92:94:f2:e0:2b:
d5:c6:78:a8:7d:62:9b:21:9c:81:1c:81:77:86:3f:
9f:aa:47:94:45:bb:5c:20:24:45:65:67:90:db:20:
7e:53:1e:4a:d0:16:d4:0b:a1:be:2c:06:3c:b5:93:
1b:1f:2d:03:aa:bd:53:53:97:28:53:3a:26:94:f4:
e7:99:e8:8d:fc:11:e2:d4:90:16:23:5e:d1:03:aa:
8a:76:02:c4:fc:bc:41:0a:ab:00:e1:47:ed:02:ad:
00:7a:bf:28:13:e4:22:72:90:75:28:7d:fd:05:74:
31:92:cb:0f:30:59:64:c5:84:1a:fa:a3:0a:23:4b:
6d:20:0f:84:30:44:b9:38:59:aa:e2:d0:52:00:fb:
5e:e8:74:69:11:fb:2a:0d:91:2f:f7:69:c5:d6:6a:
08:c7:1d:fd:5e:10:5e:ab:af:30:fd:7a:09:fe:b0:
89:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4F:CF:3F:1A:07:D6:E3:A3:5B:9D:88:3A:62:B1:12:1E:93:96:F6
X509v3 Authority Key Identifier:
keyid:97:DA:42:00:08:CF:B9:19:34:99:27:8E:F5:58:BD:42:D6:1C:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/5E_PPxoH1uOjW52IOmKxEh6TlvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.115.121.0/24
217.115.124.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:50:be:b6:ee:71:6c:0d:0a:b6:89:a5:5b:91:73:3e:db:16:
d5:7a:fa:cc:2e:a9:f5:59:6f:23:71:7f:55:98:be:36:d0:00:
b2:9c:0a:ad:cd:ec:5e:41:51:c4:a7:72:b1:8e:15:9c:12:01:
31:82:80:cd:a2:e8:0a:7e:85:19:c4:44:a1:36:90:cf:86:1d:
0a:37:c0:99:74:06:e4:fc:38:a8:e3:6b:b5:17:7c:2d:80:19:
46:fa:b2:3c:95:de:88:8a:b4:e7:99:c0:b4:5d:2e:96:24:e6:
0e:28:77:ae:67:fd:b9:8d:b4:b5:2a:fb:8c:1c:c8:26:9d:81:
73:73:75:6c:90:34:d7:99:bb:f2:2e:80:15:95:32:39:11:e9:
8c:48:03:2a:76:ec:93:b3:50:c0:9a:b3:b8:aa:08:60:4e:2d:
6d:a3:6f:d7:51:40:35:cc:fa:19:75:aa:0b:0b:9a:c3:bf:86:
24:7f:0d:7c:d1:75:c1:17:fc:d8:1c:2b:af:b2:3d:2b:6a:9e:
f5:09:a1:cd:1b:43:63:68:f4:11:79:90:7c:49:80:10:4e:bb:
7f:be:34:c9:1e:c1:5f:a9:e0:59:a2:b9:31:b8:4a:da:4c:58:
ff:7f:1a:d8:b2:90:1a:62:5e:b7:76:66:f1:87:ad:de:54:be:
ad:18:f7:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:09:13 2024 by rpki-client on console-ams.rpki-client.org