Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/5XSyhxa7n2cT_2nd21qQNBjdGm8.roa
File: 5XSyhxa7n2cT_2nd21qQNBjdGm8.roa (raw, json)
Hash identifier: GJsnMRYy95A/LKQ5q9484zjzS8uiIptURr3f43g1JMI=
Subject key identifier: E5:74:B2:87:16:BB:9F:67:13:FF:69:DD:DB:5A:90:34:18:DD:1A:6F
Certificate issuer: /CN=e11aa92850ebfe648ad3d89add8e736ec3675a11
Certificate serial: 018CC5009AD0B05CE7DEC300A9EF0276F85A
Authority key identifier: E1:1A:A9:28:50:EB:FE:64:8A:D3:D8:9A:DD:8E:73:6E:C3:67:5A:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4RqpKFDr_mSK09ia3Y5zbsNnWhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/5XSyhxa7n2cT_2nd21qQNBjdGm8.roa
Signing time: Mon 01 Jan 2024 12:30:00 +0000
ROA not before: Mon 01 Jan 2024 12:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20676
IP address blocks: 194.180.132.0/22 maxlen: 22
194.180.128.0/23 maxlen: 23
194.180.142.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4RqpKFDr_mSK09ia3Y5zbsNnWhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4RqpKFDr_mSK09ia3Y5zbsNnWhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4RqpKFDr_mSK09ia3Y5zbsNnWhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:9a:d0:b0:5c:e7:de:c3:00:a9:ef:02:76:f8:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e11aa92850ebfe648ad3d89add8e736ec3675a11
Validity
Not Before: Jan 1 12:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e574b28716bb9f6713ff69dddb5a903418dd1a6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1d:15:f9:32:6a:7c:15:6d:e0:4a:b4:23:24:
e3:81:ba:5b:10:7d:1b:2a:17:73:25:82:e4:17:16:
99:93:49:91:da:b1:8d:a5:28:1a:7d:13:2c:95:bc:
c6:96:0c:42:a9:0b:41:71:2b:d8:3f:70:b9:ce:5a:
36:29:e1:2b:d9:98:36:d4:13:ba:ce:3b:14:54:a2:
c7:ad:6b:19:12:b4:55:69:9e:95:5c:78:27:30:8a:
89:ce:2f:96:c1:64:3b:79:c9:b8:31:1b:db:03:1c:
b6:04:ea:04:9b:e8:3d:00:4e:51:39:61:84:8a:e9:
7e:02:12:61:f4:ad:77:8a:28:38:23:67:2e:fa:4c:
32:97:0f:8e:5d:de:20:7d:36:fb:e9:d9:f8:b8:03:
cc:15:9d:08:1b:99:43:ff:43:f9:4b:e7:30:8f:4f:
37:73:64:43:2e:be:35:a3:1d:dc:a3:16:84:48:70:
4e:83:91:9d:32:fe:9b:74:67:76:29:2e:f6:19:b1:
30:9f:eb:ba:16:49:6b:9e:43:bf:57:4a:89:a5:dd:
9f:71:4d:4f:c4:e3:52:52:39:7a:be:0f:8f:7e:f3:
0e:fd:b6:e4:87:99:70:df:86:b5:14:3d:7a:0a:f3:
0a:aa:c5:0e:ce:f7:01:08:08:9a:c6:21:c4:dd:5d:
d8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:74:B2:87:16:BB:9F:67:13:FF:69:DD:DB:5A:90:34:18:DD:1A:6F
X509v3 Authority Key Identifier:
keyid:E1:1A:A9:28:50:EB:FE:64:8A:D3:D8:9A:DD:8E:73:6E:C3:67:5A:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4RqpKFDr_mSK09ia3Y5zbsNnWhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/5XSyhxa7n2cT_2nd21qQNBjdGm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4RqpKFDr_mSK09ia3Y5zbsNnWhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.128.0/23
194.180.132.0/22
194.180.142.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:57:ce:36:85:d3:56:46:85:b5:1c:37:8e:67:92:5b:d8:a0:
c8:b1:23:70:2a:7a:ad:70:b2:c2:fa:e8:d3:2b:60:34:9e:2f:
bb:16:06:5e:60:8a:b2:9d:49:26:9d:6d:01:e9:dd:67:56:28:
bb:fc:da:18:35:3d:f5:b6:c9:bb:97:bd:7a:a9:e0:5e:c7:29:
df:43:00:90:fe:25:6b:6b:f0:5f:ea:1d:30:b4:4e:01:50:db:
cc:c3:69:49:61:56:1c:74:7f:79:80:27:01:5d:ce:6d:50:13:
f1:57:96:ee:22:6a:5b:22:1b:82:ed:4e:bf:5b:a1:08:3e:0c:
f1:37:41:99:ab:90:7f:90:39:41:03:45:d0:f8:53:d3:e3:2d:
60:f8:ae:80:03:cb:66:61:15:ec:93:36:56:ee:e2:11:bb:49:
af:d8:42:16:f3:08:f8:1e:78:ee:ea:4b:ea:e5:00:ae:df:85:
e7:0b:a3:01:e2:06:9a:0b:a8:62:c6:67:a7:16:ad:6b:dc:36:
ab:d0:80:d7:07:37:38:fe:c0:12:7b:71:5c:4d:3a:e5:6c:a1:
7c:53:8a:30:0b:33:d6:ed:6c:82:10:fa:66:38:bd:ea:fe:3a:
3e:a7:1b:e4:e4:be:1b:22:53:30:21:32:71:c5:98:12:0f:92:
56:55:6d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:44:36 2024 by rpki-client on console-fra.rpki-client.org