Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/qKGSipdvpFPD_ZH4hjyjrqIBQ3o.roa
File: qKGSipdvpFPD_ZH4hjyjrqIBQ3o.roa (raw, json)
Hash identifier: GwHpbNo9aE0MIWBZx/EDL8AP3ytPZCi/uxo6uwsrtuE=
Subject key identifier: A8:A1:92:8A:97:6F:A4:53:C3:FD:91:F8:86:3C:A3:AE:A2:01:43:7A
Certificate issuer: /CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Certificate serial: 018CC50013D3F03B9453FB44AB8236B64B56
Authority key identifier: 13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/qKGSipdvpFPD_ZH4hjyjrqIBQ3o.roa
Signing time: Mon 01 Jan 2024 12:29:25 +0000
ROA not before: Mon 01 Jan 2024 12:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5577
IP address blocks: 185.5.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.mft
rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:13:d3:f0:3b:94:53:fb:44:ab:82:36:b6:4b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Validity
Not Before: Jan 1 12:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8a1928a976fa453c3fd91f8863ca3aea201437a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:56:51:4c:c7:f1:a0:38:7a:75:38:8a:38:e9:
5f:53:23:e2:f9:53:9a:28:61:3e:30:a4:5d:2f:1e:
19:22:74:6c:97:8c:0b:36:8e:65:32:c1:8c:10:67:
e1:8c:93:9f:74:50:a9:b8:96:ee:1d:f6:2f:88:77:
d8:7e:fc:55:7e:52:a6:c9:77:32:e7:fa:79:67:1f:
84:2d:8d:aa:81:91:2d:64:99:28:6e:92:6c:8d:85:
cf:80:46:2b:b1:c1:a1:5a:d0:be:2c:84:c1:8d:ad:
a2:bf:ad:99:ed:2f:cb:14:61:70:d9:77:55:3f:b8:
45:4c:7a:f4:04:af:25:e5:5d:02:28:f3:eb:5d:84:
8e:40:f6:27:84:15:e9:ce:26:9a:ae:44:24:80:30:
2d:0e:fc:47:e6:79:80:8d:8f:7a:22:16:da:9b:f6:
be:e9:16:11:91:40:5d:9e:81:0c:15:50:99:ab:b6:
28:23:52:ad:5d:09:42:b9:ee:5c:30:df:ba:1d:0c:
3c:02:90:ff:74:0f:dc:72:08:79:05:11:c7:d7:ff:
6b:f5:38:f9:1e:ff:77:2f:ba:21:d4:6d:76:cf:f0:
ac:62:83:da:d7:b8:9c:fe:1b:0d:c2:ea:3c:e9:55:
22:1d:3e:35:6c:c0:9c:29:59:eb:74:38:91:34:7b:
48:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A1:92:8A:97:6F:A4:53:C3:FD:91:F8:86:3C:A3:AE:A2:01:43:7A
X509v3 Authority Key Identifier:
keyid:13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/qKGSipdvpFPD_ZH4hjyjrqIBQ3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.45.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:ba:ed:6c:3f:f4:e3:01:2b:98:fe:4b:11:ec:5b:4a:71:5e:
e7:50:b5:ee:3f:c7:f2:b4:2c:50:90:70:b4:fe:a8:2d:4a:21:
3f:70:80:30:d2:b7:f8:dd:bd:d6:43:fa:ce:c1:a6:5a:11:f6:
c9:48:bd:1b:a5:ef:57:ac:b8:5e:28:69:f8:0a:67:d4:e5:47:
52:b7:80:4e:bb:af:39:95:c0:fe:41:fc:4f:6d:7e:8e:b1:82:
af:62:c1:9a:e0:43:cb:34:34:68:6d:95:0d:23:46:c5:f0:5e:
bc:e5:b4:32:e3:08:d1:99:61:96:48:12:52:9d:50:f8:c1:2c:
4c:57:40:5e:94:e3:a6:ee:98:4c:8b:bb:b7:bf:ee:01:97:27:
48:05:26:6d:74:b8:4d:18:bb:d2:7b:9c:bf:40:d3:d3:c6:63:
65:ab:2e:20:36:d8:40:33:71:a6:ce:f3:59:c3:a5:1b:b9:43:
47:47:00:a9:aa:e5:6b:e3:9c:58:f7:83:b0:36:ce:a5:6f:12:
f1:ea:0b:3c:85:8d:bf:22:20:d2:0a:09:97:53:f5:96:02:e9:
83:c4:b6:fd:de:f2:95:3c:43:71:9b:f8:42:8e:fa:e6:8d:4d:
4e:69:ab:63:ba:cf:f3:8e:18:1d:f5:30:14:42:2d:14:e9:b6:
17:4e:74:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:58:12 2024 by rpki-client on console-ams.rpki-client.org