Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/pVmXtDyweiRtl7gK-4zRTYutHbw.roa
File: pVmXtDyweiRtl7gK-4zRTYutHbw.roa (raw, json)
Hash identifier: aE6krILUUUIbuJbA247rJOxTqUmr7FVeZkrV0Wc+6Qg=
Subject key identifier: A5:59:97:B4:3C:B0:7A:24:6D:97:B8:0A:FB:8C:D1:4D:8B:AD:1D:BC
Certificate issuer: /CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Certificate serial: 018E0A076704F832FC2D086F394CEFEFD4E5
Authority key identifier: 5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/pVmXtDyweiRtl7gK-4zRTYutHbw.roa
Signing time: Mon 04 Mar 2024 15:14:00 +0000
ROA not before: Mon 04 Mar 2024 15:14:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 45.154.152.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 22:03:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0a:07:67:04:f8:32:fc:2d:08:6f:39:4c:ef:ef:d4:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Validity
Not Before: Mar 4 15:14:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a55997b43cb07a246d97b80afb8cd14d8bad1dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:85:8c:e8:be:9b:cb:1f:c7:3c:44:dd:ed:46:
37:af:f7:96:84:b2:c5:24:d9:a1:ba:88:fd:30:25:
91:f9:2f:83:c4:eb:e4:53:b2:a9:5f:30:6b:8b:60:
df:58:b7:7a:b1:66:54:30:bc:0a:f5:a4:ed:4c:e3:
08:81:c9:3f:67:9a:a6:70:a4:95:e4:b6:2a:b8:d0:
ce:04:36:7b:5a:77:f2:9b:94:08:63:5c:0d:2e:94:
fc:d7:d0:ab:03:52:2c:12:91:e7:72:bc:03:4f:4d:
f1:4e:cd:59:44:3d:cf:54:6d:5a:d6:75:56:ef:5b:
6f:a7:60:f6:ed:64:3f:ce:ae:02:59:f9:12:a4:5b:
70:b5:0f:09:83:07:09:90:84:b2:7b:fb:f0:6c:fc:
23:84:aa:59:10:7d:20:02:2b:c0:02:88:47:37:95:
d5:fb:f3:c3:d7:14:47:67:58:cf:d4:46:45:95:60:
1d:a0:76:17:01:5e:07:cb:5f:1a:83:9a:f6:39:bb:
50:f4:d8:a2:da:bd:41:58:ee:b5:79:2b:ad:c2:bd:
1d:c1:c1:53:87:32:74:60:88:2e:cb:b7:dc:ad:fc:
84:e4:b3:55:01:1e:3d:b6:ef:26:cc:53:6f:9f:d6:
31:25:cf:87:9b:53:7c:06:dc:aa:fb:8c:87:3e:b2:
e2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:59:97:B4:3C:B0:7A:24:6D:97:B8:0A:FB:8C:D1:4D:8B:AD:1D:BC
X509v3 Authority Key Identifier:
keyid:5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/pVmXtDyweiRtl7gK-4zRTYutHbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.152.0/22
Signature Algorithm: sha256WithRSAEncryption
58:85:fa:35:ab:1f:3a:10:96:20:90:6a:47:78:9b:48:b9:c7:
4b:cb:cd:c0:a4:e8:cd:bd:af:6c:39:a6:18:cb:9a:d4:29:e5:
f0:a8:2a:ea:11:6f:45:d8:39:37:f6:1a:4a:9c:af:1f:a2:23:
26:60:e0:40:de:73:97:bb:c4:8d:02:02:11:79:ce:fb:85:27:
22:e7:ad:0e:c8:ef:70:06:05:6c:d4:8f:41:38:e9:d4:ba:8a:
68:d2:43:ac:b7:ad:3a:d0:f6:08:20:28:8a:f1:5d:4a:2f:21:
ba:4b:8b:26:25:86:60:f7:99:e1:34:55:f7:31:4d:0d:1f:79:
c5:26:41:c3:ab:c9:56:b3:33:79:0a:e1:a1:7c:44:f1:da:8d:
0e:bc:6c:1e:77:c3:ca:1c:0e:6c:d1:a5:35:1e:eb:3b:fe:db:
12:1e:f6:97:76:9f:c6:4d:40:2d:ed:e1:99:af:d1:34:86:b4:
df:82:5f:77:e4:ac:8c:23:3e:18:0a:d0:35:da:f3:70:92:6a:
92:6b:5c:e3:04:3a:2d:14:cb:af:11:93:27:bd:ad:95:6e:80:
a5:13:9a:bb:a8:8b:3b:93:2b:de:ef:49:21:49:cd:4e:e8:81:
a5:c5:89:45:af:b2:7b:3d:aa:49:b0:0a:24:6d:4c:0a:4d:b8:
0f:47:26:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:27:42 2024 by rpki-client on console-ams.rpki-client.org