Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/BXjHYSdmDSEHKTsenLvDNNU4Xvs.roa
File: BXjHYSdmDSEHKTsenLvDNNU4Xvs.roa (raw, json)
Hash identifier: T5M6lFO35AZn04m3cY96C0wdH9dTvV0IidC/CepIZdI=
Subject key identifier: 05:78:C7:61:27:66:0D:21:07:29:3B:1E:9C:BB:C3:34:D5:38:5E:FB
Certificate issuer: /CN=5b998e184d4fc4affa20509099d919a31a07947b
Certificate serial: 018CC64B15C7493C5B66CA0E7A4F2A729BAF
Authority key identifier: 5B:99:8E:18:4D:4F:C4:AF:FA:20:50:90:99:D9:19:A3:1A:07:94:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/BXjHYSdmDSEHKTsenLvDNNU4Xvs.roa
Signing time: Mon 01 Jan 2024 18:30:58 +0000
ROA not before: Mon 01 Jan 2024 18:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29449
IP address blocks: 82.143.0.0/18 maxlen: 18
46.37.224.0/19 maxlen: 19
2001:15a8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/W5mOGE1PxK_6IFCQmdkZoxoHlHs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/W5mOGE1PxK_6IFCQmdkZoxoHlHs.mft
rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:15:c7:49:3c:5b:66:ca:0e:7a:4f:2a:72:9b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b998e184d4fc4affa20509099d919a31a07947b
Validity
Not Before: Jan 1 18:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0578c76127660d2107293b1e9cbbc334d5385efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:9a:0c:b5:20:8a:cb:33:11:96:aa:79:ce:f2:
4b:92:14:56:22:8c:18:f6:55:f7:79:08:1b:f8:90:
8b:05:8f:b1:99:6e:7e:26:85:b4:2a:4c:fd:50:b5:
37:35:ce:8d:ed:ce:71:b9:37:0e:cf:a6:84:de:6f:
e4:6c:61:bf:1b:72:b4:45:3e:73:39:84:5f:8f:1b:
c1:19:cd:d7:e4:6d:92:92:d3:74:f5:d1:7d:47:a0:
8a:73:b2:11:9e:a5:f1:b0:72:66:89:78:67:89:dd:
c9:ec:69:94:cb:5b:95:d9:0a:21:1e:4a:59:a8:37:
9a:b5:44:18:7b:74:c3:e5:2f:38:e0:36:20:50:1f:
11:d8:50:3d:e8:8e:6a:79:7a:e8:2d:fc:0a:97:0c:
65:bd:50:b5:29:b8:60:99:7c:6b:51:29:28:c6:e6:
8e:30:05:bb:22:dd:70:27:25:fd:c9:41:de:9b:05:
00:b8:f5:26:f4:83:89:bc:37:ab:6b:74:13:2f:3f:
50:86:32:06:55:1e:7b:b2:aa:47:16:eb:cc:ef:b9:
8e:0a:51:83:80:c6:53:a8:d4:13:d8:4a:50:f8:87:
c7:97:b5:1d:cc:a4:4e:63:d7:f3:3e:0d:3a:54:06:
4f:f5:53:78:fe:0b:aa:34:1c:ed:40:3d:10:6e:f7:
1b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:78:C7:61:27:66:0D:21:07:29:3B:1E:9C:BB:C3:34:D5:38:5E:FB
X509v3 Authority Key Identifier:
keyid:5B:99:8E:18:4D:4F:C4:AF:FA:20:50:90:99:D9:19:A3:1A:07:94:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/BXjHYSdmDSEHKTsenLvDNNU4Xvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/W5mOGE1PxK_6IFCQmdkZoxoHlHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.224.0/19
82.143.0.0/18
IPv6:
2001:15a8::/32
Signature Algorithm: sha256WithRSAEncryption
bf:15:30:8c:5d:25:9f:53:d4:ff:1d:66:e5:74:d2:72:2a:e7:
0b:4e:a2:4b:22:bb:f6:15:84:30:48:9e:1a:71:14:15:57:bd:
e1:37:37:7f:42:a5:55:f0:e2:64:e2:b2:7d:4b:ad:32:0a:d5:
f7:b9:be:1b:f1:dd:80:8c:d8:ff:a7:cb:1d:1e:15:bd:58:30:
a2:38:09:fd:b3:1c:e4:a3:93:cc:61:3e:b0:f6:1c:5b:ad:62:
25:f2:74:18:f5:01:8b:8b:02:22:36:08:b3:a8:0a:7f:7f:54:
97:d9:33:1c:44:bb:bc:b3:16:04:c5:ac:28:52:e0:00:63:aa:
10:5f:df:7c:9e:e2:ac:df:d3:40:d0:18:6d:82:88:ad:16:85:
7b:7a:93:46:dc:77:28:b1:d9:1b:a0:e3:e2:70:9d:72:3d:e2:
01:cf:c0:a0:3b:52:b9:8c:ff:9f:68:2b:e9:6f:33:61:20:c7:
a8:a9:b4:42:05:4d:9c:4e:63:ee:10:b4:61:d8:e8:a0:ef:6f:
ba:de:1e:d7:90:68:a1:58:e1:68:77:83:3d:72:d2:b3:be:c6:
da:5e:e3:e4:c4:1a:b7:b1:4f:35:47:57:77:db:1a:a5:bb:ce:
6b:7a:af:38:6e:f4:2e:fd:8e:93:10:9f:c1:2c:eb:3a:a1:05:
60:4b:58:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:50:40 2024 by rpki-client on console-fra.rpki-client.org