Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/iomGW5A3JLCw2qaeZVHeONA0OFE.roa
File: iomGW5A3JLCw2qaeZVHeONA0OFE.roa (raw, json)
Hash identifier: +hMUAzA7OLbi1E9sPioKNOv5svnLbyEu4kZljjoCQhI=
Subject key identifier: 8A:89:86:5B:90:37:24:B0:B0:DA:A6:9E:65:51:DE:38:D0:34:38:51
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 018F62EEA0687BA6801FB08082C62542471A
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/iomGW5A3JLCw2qaeZVHeONA0OFE.roa
Signing time: Fri 10 May 2024 14:35:56 +0000
ROA not before: Fri 10 May 2024 14:35:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 5.180.84.0/22 maxlen: 24
46.244.96.0/24 maxlen: 24
92.240.148.0/24 maxlen: 24
92.240.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 11 Jun 2024 14:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:62:ee:a0:68:7b:a6:80:1f:b0:80:82:c6:25:42:47:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: May 10 14:35:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a89865b903724b0b0daa69e6551de38d0343851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:86:1d:6b:5f:ef:02:b3:2f:1f:0d:f8:1a:59:
fb:1c:bc:f0:f3:a6:b2:8a:86:01:3f:00:32:00:3f:
d1:8b:81:51:f1:44:56:b9:0a:91:82:c0:6f:2a:fc:
1d:7b:e9:b4:3c:b9:bc:f0:b7:7c:59:6a:84:ac:9f:
7b:34:f1:0a:76:f1:9f:3d:ca:dc:54:9d:2c:77:8b:
40:24:1c:28:d6:f8:d0:d3:90:4f:c1:4a:ea:76:20:
3e:a2:17:62:82:4e:96:4f:11:b1:1d:35:55:be:ce:
03:c5:ca:c7:57:b5:88:29:62:3b:fe:db:e6:ae:dd:
02:e1:c6:15:19:8a:65:89:86:2b:e6:5a:2c:f7:bb:
40:91:d6:dd:8b:5e:a4:2a:d7:5b:4e:61:b2:88:5c:
0c:21:98:2b:bb:3a:31:8c:78:af:7f:2c:c3:cf:98:
f0:41:70:b1:25:12:fb:2d:94:9a:cc:37:33:54:d9:
68:ab:65:43:08:6c:17:a6:58:aa:2e:a2:0a:d3:3a:
23:99:64:72:7c:a9:9f:50:45:c7:51:6f:b6:25:4c:
46:53:16:b0:11:3c:c0:c9:e4:40:0b:9b:de:25:24:
6f:dd:b5:2c:a4:4a:b8:25:83:5f:04:ac:4d:01:41:
16:ff:ab:fa:b3:2b:32:6f:af:44:b1:a1:48:72:f2:
c5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:89:86:5B:90:37:24:B0:B0:DA:A6:9E:65:51:DE:38:D0:34:38:51
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/iomGW5A3JLCw2qaeZVHeONA0OFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.84.0/22
46.244.96.0/24
92.240.148.0/24
92.240.150.0/24
Signature Algorithm: sha256WithRSAEncryption
03:5b:99:e5:61:e5:96:22:30:30:73:71:c8:35:1e:20:a2:73:
57:4d:b0:b7:29:c6:38:07:f7:9b:63:b9:fd:7c:8b:0d:96:78:
c5:f0:c4:92:d7:f3:53:ff:f7:7a:12:1c:52:07:07:f5:ff:ad:
44:06:25:7b:37:cb:b3:71:c7:2c:7a:85:7e:62:ad:59:f5:ff:
1c:ac:d9:8f:8e:58:01:e8:40:ad:03:13:55:eb:55:ca:a9:e1:
a1:13:8b:02:ef:ac:b8:ce:8f:81:c3:71:37:cd:dd:55:a5:a1:
1f:24:6a:36:a7:9c:9f:cd:c3:31:e4:4d:44:0c:cf:08:88:3e:
20:b7:a4:2e:24:e6:49:3a:8a:df:c1:dd:43:53:f8:3d:cc:2d:
9c:95:83:9a:03:97:d2:d9:3e:e8:47:89:b7:14:3f:0b:91:f4:
eb:5e:96:05:23:16:86:6f:5d:fc:e2:f2:4d:6c:af:d2:dd:89:
9c:5b:97:df:24:65:86:d5:2e:8a:82:6c:10:6f:7f:2a:26:ee:
b5:c5:73:77:e1:9a:29:ec:66:3f:ac:70:51:94:99:37:f5:dd:
8d:98:0d:0b:29:22:d0:be:fa:19:f3:f8:11:23:2f:a9:46:39:
2a:0a:f0:c4:53:48:04:e5:bb:bb:f8:2d:5e:eb:a6:e7:3d:b7:
06:09:37:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 19:22:19 2024 by rpki-client on console-ams.rpki-client.org