Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Wg4foGH8xOEl8-0JeuWH9ruTESY.roa
File: Wg4foGH8xOEl8-0JeuWH9ruTESY.roa (raw, json)
Hash identifier: nqv4AbuPSdSHDHTB2626bEf+EdXR7mAFYexCQSvb3xA=
Subject key identifier: 5A:0E:1F:A0:61:FC:C4:E1:25:F3:ED:09:7A:E5:87:F6:BB:93:11:26
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018EADD09EBAD53F4D549527D5B9CA185630
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Wg4foGH8xOEl8-0JeuWH9ruTESY.roa
Signing time: Fri 05 Apr 2024 10:31:54 +0000
ROA not before: Fri 05 Apr 2024 10:31:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198427
IP address blocks: 5.182.112.0/24 maxlen: 24
83.137.153.0/24 maxlen: 24
83.137.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 00:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ad:d0:9e:ba:d5:3f:4d:54:95:27:d5:b9:ca:18:56:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Apr 5 10:31:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a0e1fa061fcc4e125f3ed097ae587f6bb931126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:20:f1:b3:03:66:4f:98:48:47:50:83:4c:0a:
b2:78:4a:13:df:80:7b:ce:be:67:69:7d:f7:94:be:
06:9c:60:22:96:38:d9:7d:cf:67:d8:c3:ed:1a:b4:
f4:8b:db:dc:21:7e:c6:af:0f:49:f1:65:6d:e4:7b:
1f:d4:e0:19:11:ec:03:66:3d:aa:c8:82:df:e9:8b:
14:03:00:1d:13:00:1b:0f:fb:49:02:0d:65:57:67:
f1:1c:81:12:62:e0:23:4b:18:53:a0:65:08:43:b4:
34:0b:80:f9:ef:3d:fb:3e:3d:07:d4:48:33:91:96:
2b:a9:b9:6d:02:5b:55:78:ae:52:01:80:38:b9:81:
21:15:50:2e:89:3a:10:62:19:5c:ba:9d:45:9a:1c:
a3:ec:f8:29:d9:d9:fd:10:c7:2c:c6:32:79:7c:6c:
3a:f8:cc:41:a3:ce:aa:24:b8:9d:17:3d:70:73:30:
eb:b9:5a:a0:80:36:5c:96:17:18:8c:ff:b4:d5:14:
ac:4d:4e:f4:7f:1e:a4:0c:cc:83:bc:ed:2e:e7:8b:
1b:86:94:2f:00:9f:56:76:b1:58:ff:b1:7a:e2:d0:
15:a9:7c:00:3f:03:4a:49:22:63:84:d0:12:76:de:
c7:69:a2:a4:9f:bf:11:69:b5:8d:6c:d6:93:99:be:
4f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0E:1F:A0:61:FC:C4:E1:25:F3:ED:09:7A:E5:87:F6:BB:93:11:26
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Wg4foGH8xOEl8-0JeuWH9ruTESY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.112.0/24
83.137.153.0/24
83.137.156.0/24
Signature Algorithm: sha256WithRSAEncryption
56:49:32:39:4f:ff:18:2b:ec:ba:71:a4:a6:08:5f:66:c9:24:
27:61:46:a1:ed:fd:ee:9e:54:71:bc:39:7e:31:c5:a8:4e:c2:
21:8e:ba:43:32:95:9d:94:7a:1a:ca:57:b9:1e:e1:3b:ef:10:
62:50:ae:76:f6:78:3b:91:0c:70:12:ed:3d:6e:cc:0c:01:5e:
bd:36:d1:68:f0:d5:6e:6a:f8:f9:a1:39:64:31:b2:a3:69:dd:
44:20:ec:9b:bb:5c:f4:57:dc:02:e6:77:d6:c5:f2:70:75:53:
c2:3f:fc:ae:30:fe:1d:68:2d:cd:33:a3:82:0d:e4:ef:57:03:
06:33:0e:36:2a:17:89:39:a2:aa:ad:b8:9b:04:0b:da:ac:3a:
aa:a0:c6:2c:a2:51:9e:d7:be:d1:7a:d9:7a:42:4d:65:f9:53:
f9:db:d4:2d:4c:07:33:6b:1a:3a:d7:5e:6d:ab:4d:1d:f3:de:
ca:3f:5d:47:94:2c:b9:b4:03:67:cd:c9:2d:a8:2f:41:27:e2:
98:a0:9b:3b:28:48:04:da:be:36:0e:86:d2:f4:5d:6a:3b:7c:
8e:c3:d5:c8:56:22:ad:20:99:24:d6:b4:85:52:2e:20:8c:da:
79:8a:df:b8:3e:c8:11:f1:e3:55:2d:ca:c1:18:36:2b:33:d3:
29:8b:3b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:42:35 2024 by rpki-client on console-ams.rpki-client.org