Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/4KFWv6uhcg-JXJJzc2dXzoN1vtQ.roa
File: 4KFWv6uhcg-JXJJzc2dXzoN1vtQ.roa (raw, json)
Hash identifier: IBPE00Si09T4GiOr4vGO76u9RbVSEjmq8vRD212z+1M=
Subject key identifier: E0:A1:56:BF:AB:A1:72:0F:89:5C:92:73:73:67:57:CE:83:75:BE:D4
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 018CC94ABF296DFFE085FA2BC0614DCD7DCD
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/4KFWv6uhcg-JXJJzc2dXzoN1vtQ.roa
Signing time: Tue 02 Jan 2024 08:29:28 +0000
ROA not before: Tue 02 Jan 2024 08:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200818
IP address blocks: 5.183.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:bf:29:6d:ff:e0:85:fa:2b:c0:61:4d:cd:7d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Jan 2 08:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0a156bfaba1720f895c9273736757ce8375bed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c0:c2:0e:73:2c:f6:32:10:ce:5f:1a:3d:78:
b3:e2:a6:2b:63:26:10:07:6d:9e:7a:74:9c:0c:7c:
80:78:d1:df:25:cc:5c:e8:af:92:26:61:c5:b6:91:
86:b5:02:ab:02:b2:cb:24:22:90:80:d2:ab:23:0a:
36:4c:62:24:a4:d2:34:b8:8a:2f:63:de:78:6d:c0:
fd:ff:96:cc:62:f9:a8:c7:33:6f:3e:5e:fa:87:24:
ce:7a:7d:a2:03:7c:43:24:d9:e7:53:c6:19:c6:8d:
65:7b:d6:71:82:88:23:16:45:c9:d3:7f:e8:85:65:
87:1f:6a:a6:3a:2b:34:a5:1a:75:32:e3:8d:96:f2:
bc:c5:1b:0a:99:98:8c:ef:8d:bd:b6:2b:e0:12:c1:
ea:16:3b:0f:69:86:4e:25:9d:2b:3e:01:48:7b:fc:
d4:95:c5:a4:d1:c2:19:14:45:29:04:09:b4:59:47:
42:eb:4a:7c:73:df:88:11:ef:93:a4:14:77:e2:c2:
7b:f4:38:33:eb:4a:ec:63:c5:ff:c2:13:92:e8:08:
3b:72:85:24:07:a8:4a:46:d3:03:24:de:74:31:e2:
1d:38:3c:66:06:fd:95:6f:c0:a3:f4:3d:f2:60:96:
58:18:23:36:b9:00:b9:13:7c:dd:87:3a:da:52:be:
f4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A1:56:BF:AB:A1:72:0F:89:5C:92:73:73:67:57:CE:83:75:BE:D4
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/4KFWv6uhcg-JXJJzc2dXzoN1vtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.108.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:71:c1:22:71:f5:b0:01:e4:59:55:d8:dc:1f:26:55:22:d2:
d3:e6:4f:49:b6:25:57:54:b5:de:06:60:63:5b:78:1d:2c:1d:
df:14:40:ba:e3:03:17:c5:88:23:f2:c1:15:b4:c7:e1:27:cd:
c2:d5:7d:e6:a0:ed:81:83:23:8a:6e:57:da:79:d6:16:38:6a:
40:c7:4e:d2:af:26:4b:aa:62:34:cd:4b:e2:4b:19:62:19:7f:
3f:65:67:ee:da:57:f2:3a:c7:28:59:f4:b4:3c:15:dc:ed:e6:
24:87:65:9d:63:d9:01:8d:66:e3:33:75:83:60:8f:e6:50:ce:
b5:92:0a:95:71:00:73:00:0a:e8:22:d9:28:6a:d1:16:d6:2d:
f6:a2:10:0e:22:ff:9c:0e:64:f6:ed:e1:2e:24:a9:18:76:77:
2f:92:61:f3:c1:4a:aa:69:20:49:ee:3a:87:3e:94:d5:15:5b:
30:92:48:ab:ab:51:2e:d6:94:3b:2c:ea:10:bc:bc:54:17:b4:
48:60:c6:dd:07:da:d8:5e:ac:74:41:4d:ea:75:23:c2:e0:c3:
77:c1:f0:7d:30:38:32:84:99:28:e2:17:38:b7:ad:6c:01:d1:
30:58:8d:71:16:e0:b4:78:b3:47:98:a0:27:8f:55:6d:e8:23:
f4:8b:49:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:39:05 2024 by rpki-client on console-fra.rpki-client.org