Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/5ZNCuGHBWoBRxqgOXmXsQumW7RE.roa
File: 5ZNCuGHBWoBRxqgOXmXsQumW7RE.roa (raw, json)
Hash identifier: Yvmq6KjcQl0KGUoOAxuVkCiLqZf5TcFdhEmTbtE5c3I=
Subject key identifier: E5:93:42:B8:61:C1:5A:80:51:C6:A8:0E:5E:65:EC:42:E9:96:ED:11
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018CC9BA95E5B9C8A24763AEDF0CB0DC2DBD
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/5ZNCuGHBWoBRxqgOXmXsQumW7RE.roa
Signing time: Tue 02 Jan 2024 10:31:37 +0000
ROA not before: Tue 02 Jan 2024 10:31:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24768
IP address blocks: 83.147.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 15:42:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ba:95:e5:b9:c8:a2:47:63:ae:df:0c:b0:dc:2d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 10:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e59342b861c15a8051c6a80e5e65ec42e996ed11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ee:44:e9:6b:87:54:52:b9:ac:48:e0:9b:83:
87:38:d8:0e:44:7c:9f:07:27:46:46:c2:a6:ba:73:
ba:d6:32:42:93:e7:93:b6:8a:a0:45:0e:24:76:55:
be:f4:29:12:4e:a0:a5:70:df:99:98:a1:a8:be:22:
0c:6a:4c:6d:e6:de:55:cb:ff:a4:72:82:6f:5d:1a:
ab:07:d7:73:89:f6:21:ae:73:ec:24:3a:83:48:40:
9c:66:86:10:03:c1:12:72:9f:56:e1:41:ea:6e:92:
7c:cf:d5:f8:bd:5c:ba:36:97:dc:55:8e:a1:d6:1a:
0c:7d:02:02:55:75:71:e5:05:19:eb:23:05:ce:2c:
96:79:d3:11:40:12:9e:cc:ce:c4:9b:fd:a0:f5:b8:
fb:f2:78:1d:3a:32:05:e4:f3:83:02:32:19:42:df:
48:7b:14:bd:4d:d3:83:9a:93:57:c2:c3:22:5e:68:
87:05:49:3c:1d:4e:5e:e6:0b:2a:e6:a7:cc:30:ee:
12:cb:2a:76:b5:f3:76:c8:2d:4f:0f:75:9f:69:b2:
ab:ee:0f:c2:a4:30:a9:99:6c:79:91:d4:81:62:d3:
ca:44:3a:84:a1:0d:dd:8f:b0:a3:a0:1b:bc:a1:fe:
ae:62:8a:e8:33:10:76:7c:99:e1:19:cb:57:86:f0:
3f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:93:42:B8:61:C1:5A:80:51:C6:A8:0E:5E:65:EC:42:E9:96:ED:11
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/5ZNCuGHBWoBRxqgOXmXsQumW7RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.222.0/24
Signature Algorithm: sha256WithRSAEncryption
25:3c:3a:fa:09:d4:f4:18:b9:ba:90:db:b5:33:79:b3:92:d7:
f0:af:ba:7d:68:3b:a1:53:80:1a:08:09:f2:3e:a3:d2:40:9a:
2c:ea:66:15:fe:f1:69:d0:f2:b8:5b:dd:23:cf:86:4d:c7:c3:
5a:66:04:b1:0f:2f:e4:97:ac:e6:4b:2b:9c:60:56:04:82:88:
4e:cf:29:e1:1c:32:56:bb:1b:00:34:52:bb:30:6d:15:73:bb:
e3:f8:f2:56:80:64:22:3a:bf:61:99:ba:28:46:e2:aa:1a:88:
15:93:a5:ca:7a:30:25:f3:40:cb:3f:64:0e:3f:95:a3:b8:53:
1b:af:98:21:6e:5e:d6:f1:0c:0e:19:12:1b:c0:79:9c:2c:b6:
8f:72:03:1a:4e:03:1b:47:32:b5:fd:16:80:14:a1:de:cf:80:
bd:97:34:ca:c4:7b:7c:09:07:80:5a:31:41:86:3b:97:17:b8:
4b:6b:9b:86:76:34:99:55:51:57:27:08:bd:81:4f:f8:21:de:
b6:55:cd:e6:73:57:2c:7a:16:d4:70:fd:1c:f2:e9:20:6e:de:
22:bd:ff:ab:b9:70:1d:ea:15:ce:60:9b:37:85:e8:99:6d:3c:
d6:0b:4e:01:b7:a8:18:f7:13:e0:8c:98:9d:32:b5:bb:0c:82:
4b:86:b1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 00:05:28 2024 by rpki-client on console-ams.rpki-client.org