Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zQNuJUlxMJgK0sRPenOpuMzTod8.roa
File: zQNuJUlxMJgK0sRPenOpuMzTod8.roa (raw, json)
Hash identifier: q1zUDw/qJ0u9iQrJxVFPfqJtIykZqetcw2lnwv7/QBk=
Subject key identifier: CD:03:6E:25:49:71:30:98:0A:D2:C4:4F:7A:73:A9:B8:CC:D3:A1:DF
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EE603A29C74E58D673F7611ABF3CAD4DB
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zQNuJUlxMJgK0sRPenOpuMzTod8.roa
Signing time: Tue 16 Apr 2024 08:26:21 +0000
ROA not before: Tue 16 Apr 2024 08:26:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35177
IP address blocks: 5.139.192.0/19 maxlen: 19
62.183.100.0/22 maxlen: 22
62.183.104.0/21 maxlen: 21
62.183.112.0/22 maxlen: 22
85.173.136.0/21 maxlen: 21
94.233.128.0/21 maxlen: 21
178.35.192.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Jun 2024 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:03:a2:9c:74:e5:8d:67:3f:76:11:ab:f3:ca:d4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 16 08:26:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd036e25497130980ad2c44f7a73a9b8ccd3a1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:25:6f:f4:07:41:2c:44:fb:a5:05:dd:f2:5f:
43:9f:69:9f:a2:d5:72:27:ea:79:b8:32:07:57:ee:
ef:b1:df:a2:31:e3:e4:82:17:eb:40:6e:44:41:6e:
e7:7b:7a:4d:cf:9b:87:0a:65:1d:01:df:7e:63:f9:
70:25:38:d8:9f:26:90:ae:7f:ee:76:e1:db:28:7f:
d4:eb:b2:7c:06:0f:87:1e:b8:40:33:0b:96:1c:be:
32:ce:c4:38:9d:08:6a:c1:6c:fc:e9:c2:6b:50:82:
07:5b:07:2f:3b:7d:13:b7:8c:fb:c4:64:49:6e:4a:
de:1c:fd:9b:00:64:9a:bc:93:72:3a:6c:ad:72:0a:
27:8c:1b:fc:fc:6f:a6:40:9b:e9:5b:e2:ae:f6:dd:
9d:b7:27:40:07:67:da:81:f0:1b:4d:3b:d6:ff:cc:
46:13:40:05:b6:ae:9a:c5:0f:33:41:df:b3:eb:d4:
7f:af:6b:af:48:c2:0a:b1:30:fb:de:61:a3:f3:79:
1d:62:6c:92:0e:e2:2a:23:e6:ea:e1:f6:22:3f:52:
6c:d6:85:ed:77:73:c7:ed:34:17:1b:b2:f4:be:4c:
98:34:cc:cf:e2:b9:ea:85:4f:54:71:63:e5:e5:c5:
d3:f1:5a:b0:63:de:51:85:f4:ad:e6:20:d5:48:94:
be:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:03:6E:25:49:71:30:98:0A:D2:C4:4F:7A:73:A9:B8:CC:D3:A1:DF
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zQNuJUlxMJgK0sRPenOpuMzTod8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.139.192.0/19
62.183.100.0-62.183.115.255
85.173.136.0/21
94.233.128.0/21
178.35.192.0/19
Signature Algorithm: sha256WithRSAEncryption
51:0e:ff:a9:33:d1:b9:b3:c0:d6:08:b1:40:2a:17:62:bc:46:
59:08:08:30:6d:da:b8:1d:74:a3:04:69:a0:ee:40:03:4f:ae:
19:68:d5:e0:a8:02:3a:62:45:cd:c0:88:ca:eb:b2:63:27:77:
0a:95:1e:ab:d5:f8:6c:54:c1:70:40:a3:2d:9e:0f:75:e8:b1:
bf:82:59:eb:db:be:7a:ce:ea:86:82:13:a6:a0:e2:f1:c3:8f:
c0:a6:52:70:5e:83:43:1d:1a:a7:d6:b6:4c:f6:a2:f1:47:74:
1e:bd:e0:c9:b9:e0:c4:44:6e:e5:ce:42:af:a1:c6:bf:1e:10:
b3:61:c2:ad:35:a7:48:c8:28:40:01:f1:19:69:f8:80:f7:67:
92:62:8f:af:78:d3:f0:64:b5:2b:d7:48:d0:22:20:64:10:90:
93:4b:28:fa:22:4e:42:0d:56:f1:50:d5:ac:ad:5e:a2:3e:f1:
f1:9c:ca:a4:db:b3:49:f3:0f:b5:57:56:7e:86:45:aa:0f:84:
3b:50:d9:b3:60:60:9a:82:da:80:78:dd:13:d9:b9:9f:9f:a9:
95:cf:49:48:dc:1c:e9:bb:e4:52:e1:48:88:91:00:2c:c0:53:
0e:fc:61:4b:2a:b6:bf:df:ff:2a:40:72:1d:2f:86:e3:f9:f4:
b4:b7:3f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 10:25:10 2024 by rpki-client on console-fra.rpki-client.org