Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/QSoV1yHPo8hShmWNrw8ZVsCSM2E.roa
File: QSoV1yHPo8hShmWNrw8ZVsCSM2E.roa (raw, json)
Hash identifier: DL4/VDsa7RhV84ICrVivDdhpSfhzBNs9TCYPGdt8Nsg=
Subject key identifier: 41:2A:15:D7:21:CF:A3:C8:52:86:65:8D:AF:0F:19:56:C0:92:33:61
Certificate issuer: /CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Certificate serial: 018CC424BB1A358ADFCBE9405159E3BA08D5
Authority key identifier: 92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/QSoV1yHPo8hShmWNrw8ZVsCSM2E.roa
Signing time: Mon 01 Jan 2024 08:29:50 +0000
ROA not before: Mon 01 Jan 2024 08:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60374
IP address blocks: 5.56.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 10:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:bb:1a:35:8a:df:cb:e9:40:51:59:e3:ba:08:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Validity
Not Before: Jan 1 08:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=412a15d721cfa3c85286658daf0f1956c0923361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d3:d6:e6:99:06:30:83:7e:b1:fe:41:25:69:
9d:07:7c:d7:1c:d4:63:ed:21:6f:1d:8c:6a:10:5d:
f7:8a:00:5c:4a:e5:8d:f5:7c:b1:ba:2b:c3:00:f4:
92:16:f8:33:af:4d:3d:81:ee:55:c5:ad:8e:bc:e4:
89:c6:ef:42:99:48:8d:df:54:d9:96:28:fd:4f:3a:
ac:c0:14:5c:9d:98:19:eb:4b:cd:16:a6:aa:9a:e3:
72:58:16:42:ab:90:e7:68:87:a5:e7:89:e7:07:93:
73:7d:ee:33:8a:55:fa:01:85:99:cd:71:57:d6:3e:
62:60:0b:2e:9f:21:62:1b:72:00:28:15:03:5a:a1:
ee:c3:ef:27:6a:64:5c:81:8b:d0:62:80:61:f3:fa:
c8:21:f2:23:1f:66:3b:6f:54:b0:db:7b:47:a4:dc:
be:63:63:a0:5c:90:f5:b0:b9:2d:f2:3f:85:18:29:
7a:10:97:69:af:98:75:a0:16:9e:08:28:52:cd:5e:
59:90:ac:cf:69:c8:b8:64:00:c3:74:d0:2c:52:48:
35:3d:61:7a:cf:82:39:f8:6f:cb:98:5f:80:13:16:
7d:4f:b2:f2:ad:b3:9e:e5:47:c0:3a:d9:bf:b7:d9:
0c:a7:4f:ff:ba:81:55:a8:15:6d:3a:25:70:be:8d:
5a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2A:15:D7:21:CF:A3:C8:52:86:65:8D:AF:0F:19:56:C0:92:33:61
X509v3 Authority Key Identifier:
keyid:92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/QSoV1yHPo8hShmWNrw8ZVsCSM2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.134.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:bb:9a:25:1a:90:6c:12:93:0e:1c:16:e7:91:b3:37:a3:b9:
9a:5b:c3:e9:8d:9a:02:10:a3:81:e5:ab:dc:67:ba:f0:a2:43:
7d:e8:a3:2f:f0:ca:43:14:42:b6:40:90:2f:a1:94:85:28:e9:
d3:29:5c:80:36:43:45:b0:b4:45:59:9a:07:ff:2b:58:a7:d8:
15:9b:cd:66:0d:71:05:c7:d6:b8:f5:94:7d:03:bc:bc:2c:62:
af:2c:07:6b:63:e1:56:ac:11:e2:e0:2a:fc:2c:fa:5c:1c:a7:
96:16:3b:8f:74:f6:59:8b:4d:1e:9c:89:94:ee:ef:61:96:1e:
9f:46:23:43:99:4a:27:3f:61:bb:0e:02:ed:ae:5c:2c:f5:3e:
3d:b5:e0:d8:2e:53:01:5c:bf:62:a0:c2:2a:88:a0:2d:0f:4b:
3c:01:b2:84:8f:e9:10:c5:a8:66:c5:2b:fa:7e:d1:a6:83:a1:
da:5c:41:f5:ef:63:4b:79:8f:92:07:bf:ba:ed:81:7a:b5:6a:
9b:d8:19:0a:1f:09:03:f5:4a:1d:d3:ee:9d:41:35:f1:54:30:
92:b9:4e:31:2a:65:d2:2b:23:43:4d:45:13:3c:6a:7f:4a:e6:
bc:5a:e4:49:72:3e:a1:85:4c:4c:2b:e1:0e:f3:aa:b5:a4:e3:
65:77:a8:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:04:09 2024 by rpki-client on console-fra.rpki-client.org