Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/iFW1E7BiLEkQ7ss4xSoJMBpzwr8.roa
File: iFW1E7BiLEkQ7ss4xSoJMBpzwr8.roa (raw, json)
Hash identifier: SlCf5B1HPkLdQSZBSMYq1ZYDy52ZmutaLGpYVqTBITw=
Subject key identifier: 88:55:B5:13:B0:62:2C:49:10:EE:CB:38:C5:2A:09:30:1A:73:C2:BF
Certificate issuer: /CN=d389b418da34aa3934ecde2b731df1d4ed7ec80e
Certificate serial: 018CC56ED8AC12C9955FC2B418FC0784EE87
Authority key identifier: D3:89:B4:18:DA:34:AA:39:34:EC:DE:2B:73:1D:F1:D4:ED:7E:C8:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04m0GNo0qjk07N4rcx3x1O1-yA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/iFW1E7BiLEkQ7ss4xSoJMBpzwr8.roa
Signing time: Mon 01 Jan 2024 14:30:25 +0000
ROA not before: Mon 01 Jan 2024 14:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212523
IP address blocks: 5.133.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/04m0GNo0qjk07N4rcx3x1O1-yA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/04m0GNo0qjk07N4rcx3x1O1-yA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/04m0GNo0qjk07N4rcx3x1O1-yA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d8:ac:12:c9:95:5f:c2:b4:18:fc:07:84:ee:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d389b418da34aa3934ecde2b731df1d4ed7ec80e
Validity
Not Before: Jan 1 14:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8855b513b0622c4910eecb38c52a09301a73c2bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:34:44:b5:51:e1:60:84:13:af:1d:81:7f:5f:
ba:6c:22:41:33:7d:f9:8a:4e:51:ea:cf:42:46:c7:
0a:09:4b:ee:95:0f:12:e2:55:1d:57:bc:94:75:f1:
30:bf:8d:50:ce:7b:23:82:e3:71:85:b1:68:a7:d8:
c7:d3:99:c8:e3:3c:c0:67:de:0c:05:4c:78:ae:79:
b2:12:19:2c:08:42:db:da:8a:38:9f:3d:db:e8:23:
0d:e4:5c:aa:65:26:43:c5:9f:7b:29:7c:8f:b4:ac:
18:e3:76:77:de:b3:2b:ef:ad:8c:5b:a3:10:e1:0c:
36:6d:92:58:b8:b1:98:ab:50:8d:89:43:c1:f3:22:
4b:f6:b4:4f:25:a7:e8:e3:f9:d4:ea:87:c0:1e:c0:
22:85:71:97:c0:3b:8b:e2:47:83:ed:42:e7:5f:7b:
8a:a3:51:1c:c9:17:a7:1e:8b:5b:70:6a:cd:94:9e:
7b:64:c7:8e:c1:7c:d9:36:b2:9d:e0:9a:44:00:13:
52:52:ae:79:93:23:02:c4:bb:87:89:bb:48:39:50:
24:43:c4:69:39:9a:9f:26:c5:5d:6b:7f:0a:a0:b4:
e5:bf:c5:5f:5f:2d:7e:a8:7d:63:3f:18:b0:b7:97:
2f:f4:92:b2:99:4a:49:ab:5a:3e:91:32:6d:47:4c:
27:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:55:B5:13:B0:62:2C:49:10:EE:CB:38:C5:2A:09:30:1A:73:C2:BF
X509v3 Authority Key Identifier:
keyid:D3:89:B4:18:DA:34:AA:39:34:EC:DE:2B:73:1D:F1:D4:ED:7E:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04m0GNo0qjk07N4rcx3x1O1-yA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/iFW1E7BiLEkQ7ss4xSoJMBpzwr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/04m0GNo0qjk07N4rcx3x1O1-yA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.115.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:37:93:67:51:c5:69:97:da:75:56:a1:9a:05:82:46:ab:75:
2a:24:8a:81:97:73:df:3d:63:17:f9:11:d3:7b:33:f1:fe:1c:
65:f6:3e:4d:32:52:76:3c:72:4f:d7:13:cb:d5:5c:a4:bb:d0:
95:3f:1a:b8:ba:ea:5a:7d:89:fa:d3:c4:12:ba:56:86:c3:62:
98:0a:e9:6e:11:91:ee:d9:da:94:fc:33:c4:b0:9b:53:1c:06:
39:c0:8c:0f:01:11:67:59:8f:ed:a1:06:92:c8:66:7b:a8:d0:
d8:52:88:01:57:36:52:9b:16:6c:43:28:61:e8:f1:09:59:31:
34:eb:2a:f1:9f:bc:87:c0:6b:4e:00:82:db:d3:1f:7e:69:47:
ae:65:41:92:4a:cd:f0:ec:c2:74:46:57:48:8d:19:cf:ac:a5:
4b:76:c3:2f:f9:ec:54:2e:47:c7:e5:f6:b0:af:97:1e:72:83:
ad:60:ef:f0:9f:b7:7f:60:5e:20:c8:54:12:cf:85:53:b7:6e:
8c:5c:66:a9:a4:24:93:b5:fe:e0:5c:76:d5:12:8b:0f:ce:81:
40:88:b8:76:69:e0:a7:48:a5:6b:8e:fc:20:90:1b:75:de:13:
05:00:50:2a:a4:8f:8a:0c:24:65:93:47:35:e2:57:10:b9:0c:
ad:ba:82:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:33:26 2024 by rpki-client on console-ams.rpki-client.org