Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/zqPNgxmNq5os0PuuYaBvqaP7eHE.roa
File: zqPNgxmNq5os0PuuYaBvqaP7eHE.roa (raw, json)
Hash identifier: 3miWeAqncBP+Eo/LPdsRrumDfmEwnlD4T8GUmgaEUhQ=
Subject key identifier: CE:A3:CD:83:19:8D:AB:9A:2C:D0:FB:AE:61:A0:6F:A9:A3:FB:78:71
Certificate issuer: /CN=4a8e68702ef5d48c4f2b072d9cb473e62b87b3e4
Certificate serial: 018CC86EED180340934DE3EE8963C8F6B0B1
Authority key identifier: 4A:8E:68:70:2E:F5:D4:8C:4F:2B:07:2D:9C:B4:73:E6:2B:87:B3:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/So5ocC711IxPKwctnLRz5iuHs-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/zqPNgxmNq5os0PuuYaBvqaP7eHE.roa
Signing time: Tue 02 Jan 2024 04:29:21 +0000
ROA not before: Tue 02 Jan 2024 04:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 196763
IP address blocks: 5.28.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/So5ocC711IxPKwctnLRz5iuHs-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/So5ocC711IxPKwctnLRz5iuHs-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/So5ocC711IxPKwctnLRz5iuHs-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6e:ed:18:03:40:93:4d:e3:ee:89:63:c8:f6:b0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a8e68702ef5d48c4f2b072d9cb473e62b87b3e4
Validity
Not Before: Jan 2 04:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cea3cd83198dab9a2cd0fbae61a06fa9a3fb7871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a1:b0:66:a5:5d:a4:a9:62:c2:55:76:77:f6:
a3:cd:69:2f:2f:98:92:b6:ea:b2:97:2e:7f:29:9e:
4b:f6:67:98:93:74:9a:8b:88:aa:f3:f3:07:04:8b:
48:2e:f7:f4:b4:24:25:71:e2:74:5f:71:20:20:59:
96:42:d1:ad:75:40:88:43:7c:52:fb:df:3d:a7:a6:
32:28:31:d7:c9:7f:7a:f0:a3:31:b0:66:56:f1:0c:
c9:fb:0e:8a:f6:2c:06:f6:11:c3:ab:0f:ae:b4:62:
fb:9d:da:02:f7:13:41:fb:51:f9:95:88:71:71:ad:
8a:d7:62:9d:2b:83:49:b6:f3:9a:d6:f6:13:19:f9:
dd:6a:85:55:28:09:cd:06:c8:c4:63:a5:7a:c3:d8:
e6:08:29:24:df:d5:b4:0f:21:b1:cc:60:c1:13:4c:
c9:28:4b:d0:65:c8:d2:3a:ce:4f:21:83:83:4b:44:
6e:d0:01:90:87:bf:7d:28:c8:29:d8:13:52:03:1d:
9f:d7:a7:c6:96:f3:a1:6f:cf:29:b1:a5:44:c0:a8:
e1:6f:27:81:6c:38:92:b6:6d:8c:c6:cf:5b:c7:14:
28:66:6b:e2:a4:27:b4:7c:dd:b2:60:75:fd:3b:9e:
8f:81:a8:f7:89:46:7f:09:83:d8:8c:a1:a4:ef:24:
7a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A3:CD:83:19:8D:AB:9A:2C:D0:FB:AE:61:A0:6F:A9:A3:FB:78:71
X509v3 Authority Key Identifier:
keyid:4A:8E:68:70:2E:F5:D4:8C:4F:2B:07:2D:9C:B4:73:E6:2B:87:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/So5ocC711IxPKwctnLRz5iuHs-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/zqPNgxmNq5os0PuuYaBvqaP7eHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/So5ocC711IxPKwctnLRz5iuHs-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.28.47.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:26:aa:9c:2d:20:97:99:97:1b:69:0f:a1:00:39:d3:fe:1c:
15:9d:73:a3:27:08:a3:e7:2a:83:42:87:8a:05:58:02:04:b9:
79:4b:2b:b0:41:19:90:82:32:8f:e9:5d:d4:60:be:1c:c5:00:
ee:b7:4b:ff:28:b3:ae:cd:a0:d4:38:f0:71:67:c1:9f:d0:d4:
b8:c4:d2:f1:f6:d5:e5:cc:97:90:80:bc:33:d6:de:1f:84:5c:
51:2c:6e:63:d0:e7:66:93:aa:ad:06:e0:0a:ec:d7:16:9c:10:
0b:0a:f5:96:8b:8d:f6:62:84:32:ec:d5:0a:d3:7a:6a:bf:09:
c1:a7:3f:36:dd:a7:23:0d:fc:c3:0f:f2:b6:ce:8a:65:81:66:
f2:03:cc:d9:c9:a4:85:9e:b0:e7:52:23:b5:77:ca:cf:74:60:
6b:3a:eb:ad:f3:05:17:f9:bb:b1:e0:27:8a:17:24:4a:d6:82:
9b:bf:74:1c:23:0a:9d:b7:41:98:42:d0:34:6f:29:28:eb:28:
18:7e:a9:72:98:ba:b3:c0:b9:37:49:c8:79:34:16:b8:49:f8:
f5:de:b1:9f:dd:a6:b4:0c:dd:73:9b:1b:a5:e3:fe:fc:4d:cb:
96:4c:74:e3:e2:d5:88:e4:e7:7a:38:83:c4:f3:89:d4:5d:42:
0a:bc:f1:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 05:59:19 2024 by rpki-client on console-ams.rpki-client.org