Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c6f31a-7ca7-48c4-93ff-c480da0264ca/1/EGSEPXa7dPh65vFbOqk3vQV90Ug.roa
File: EGSEPXa7dPh65vFbOqk3vQV90Ug.roa (raw, json)
Hash identifier: xoHKnEoEotSc2n7yPiXc911e83/Mxs8nauNRRB5wCis=
Subject key identifier: 10:64:84:3D:76:BB:74:F8:7A:E6:F1:5B:3A:A9:37:BD:05:7D:D1:48
Certificate issuer: /CN=5a081a52ac9cb0856df6563ed87d38b0caca7ccc
Certificate serial: 018CC64A6B17AED0D005811D6B7B2CEC06AE
Authority key identifier: 5A:08:1A:52:AC:9C:B0:85:6D:F6:56:3E:D8:7D:38:B0:CA:CA:7C:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WggaUqycsIVt9lY-2H04sMrKfMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c6f31a-7ca7-48c4-93ff-c480da0264ca/1/EGSEPXa7dPh65vFbOqk3vQV90Ug.roa
Signing time: Mon 01 Jan 2024 18:30:14 +0000
ROA not before: Mon 01 Jan 2024 18:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47176
IP address blocks: 5.183.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c6f31a-7ca7-48c4-93ff-c480da0264ca/1/WggaUqycsIVt9lY-2H04sMrKfMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c6f31a-7ca7-48c4-93ff-c480da0264ca/1/WggaUqycsIVt9lY-2H04sMrKfMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/WggaUqycsIVt9lY-2H04sMrKfMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:6b:17:ae:d0:d0:05:81:1d:6b:7b:2c:ec:06:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a081a52ac9cb0856df6563ed87d38b0caca7ccc
Validity
Not Before: Jan 1 18:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1064843d76bb74f87ae6f15b3aa937bd057dd148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:06:55:30:3f:0d:a5:44:c0:1f:d6:af:8b:11:
79:69:e4:aa:a1:7b:0d:97:d2:59:eb:1e:03:1d:dd:
11:5d:23:8a:55:26:a4:6a:70:20:d6:06:04:e7:37:
42:ac:75:d1:51:8f:84:0a:ee:37:2a:89:43:c5:11:
e6:99:79:6b:dd:05:ad:1b:0b:5d:73:1d:9c:e7:7b:
a5:5e:ce:17:aa:e6:58:63:88:a4:10:62:47:d1:81:
94:ac:cc:1d:d0:b8:bd:02:18:fd:73:d8:1c:36:07:
ad:3b:05:1e:aa:b6:64:1b:6b:ba:ad:44:cd:a9:0e:
85:c6:40:2e:71:71:78:69:36:7b:48:21:7d:fc:81:
2c:91:9c:75:1a:0a:11:28:e3:02:80:45:24:12:a7:
86:05:4d:c7:f9:ab:88:f3:d1:1e:22:5e:da:bc:18:
9e:81:10:b7:c1:a8:55:e2:60:7c:36:c3:03:46:76:
26:ed:b2:73:42:6b:09:9c:f4:31:ed:b4:e1:57:1a:
20:85:8b:74:02:26:2d:4e:da:26:53:d5:84:46:f8:
bc:20:0f:88:3c:58:f9:09:12:8f:96:07:12:0a:08:
4a:b4:41:b6:81:7d:0c:90:b5:53:10:f4:f0:0b:03:
bf:16:2a:cf:60:53:ba:e2:02:e3:02:66:d6:5a:22:
f3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:64:84:3D:76:BB:74:F8:7A:E6:F1:5B:3A:A9:37:BD:05:7D:D1:48
X509v3 Authority Key Identifier:
keyid:5A:08:1A:52:AC:9C:B0:85:6D:F6:56:3E:D8:7D:38:B0:CA:CA:7C:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WggaUqycsIVt9lY-2H04sMrKfMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c6f31a-7ca7-48c4-93ff-c480da0264ca/1/EGSEPXa7dPh65vFbOqk3vQV90Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c6f31a-7ca7-48c4-93ff-c480da0264ca/1/WggaUqycsIVt9lY-2H04sMrKfMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.4.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:89:15:a2:39:49:9d:9a:aa:98:10:c4:6b:0b:5b:dc:8b:c3:
a5:0e:5f:06:fe:0e:5f:b6:67:34:d3:45:18:08:78:04:78:86:
14:a4:7e:da:e2:00:2e:2d:c2:ac:9b:68:fc:4f:ab:7c:99:d9:
b3:4c:43:03:cb:7a:04:13:69:20:2c:3f:4d:b1:c4:63:f4:82:
fe:94:4d:99:98:ff:8e:53:0a:ce:27:e5:f1:fd:bd:2f:7e:1d:
9c:dc:cc:7a:59:46:01:3b:73:aa:ec:19:d3:d2:24:8a:e4:86:
5d:45:24:df:ba:8c:32:3e:be:53:25:ab:9f:b8:02:e9:c9:e9:
24:ab:c8:fc:41:0d:23:3e:9b:d1:bf:34:70:86:73:03:a1:15:
b1:08:08:28:e6:f1:84:68:75:a7:e4:af:68:1d:28:6a:b9:4b:
d5:4f:42:18:4c:5a:b0:f3:58:d1:4e:d9:aa:80:a0:7d:25:5d:
32:76:a5:66:00:4c:29:38:75:f8:0c:26:f1:93:fa:ee:ed:2e:
80:ae:88:67:44:35:ae:11:1e:f1:df:02:97:50:6b:da:7f:69:
73:00:2b:51:54:8d:f9:db:d2:a9:d2:80:bf:4d:56:8e:c3:a7:
9b:7e:a6:ea:2b:96:7d:84:0c:26:64:19:ba:a2:ad:3b:da:cd:
80:45:42:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:22:11 2024 by rpki-client on console-fra.rpki-client.org