Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/7TGciNki_G-1UX6_1jdAg8tGOO8.roa
File: 7TGciNki_G-1UX6_1jdAg8tGOO8.roa (raw, json)
Hash identifier: EN5EOusp357r14LA3DTGD5KW1p87w30NWt+3Ll1iDug=
Subject key identifier: ED:31:9C:88:D9:22:FC:6F:B5:51:7E:BF:D6:37:40:83:CB:46:38:EF
Certificate issuer: /CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Certificate serial: 018FC4AADAED1C56DCB78F330761AD4ABF89
Authority key identifier: E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/7TGciNki_G-1UX6_1jdAg8tGOO8.roa
Signing time: Wed 29 May 2024 14:04:42 +0000
ROA not before: Wed 29 May 2024 14:04:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212954
IP address blocks: 5.253.128.0/24 maxlen: 24
5.253.129.0/24 maxlen: 24
5.253.130.0/24 maxlen: 24
5.253.131.0/24 maxlen: 24
80.244.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:aa:da:ed:1c:56:dc:b7:8f:33:07:61:ad:4a:bf:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Validity
Not Before: May 29 14:04:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed319c88d922fc6fb5517ebfd6374083cb4638ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f5:d6:1c:79:0e:d4:33:1d:4d:08:4e:e0:33:
6c:d3:a6:fd:17:9b:31:52:e7:02:64:95:f8:fd:6f:
92:dd:f7:f1:f4:ae:01:b1:c9:7c:a6:b8:ca:4f:4c:
b0:f0:15:7d:ab:68:6e:6c:63:f8:28:04:48:03:0b:
de:ba:5e:e6:c8:96:49:14:9b:9d:8c:3b:ad:dc:cc:
7d:52:f7:cb:08:e8:9b:a8:f4:9b:15:ae:80:30:ce:
af:60:10:c2:20:6a:10:33:0c:44:fd:c8:d5:8d:c2:
cb:6a:78:29:de:35:d4:28:7e:d2:cf:7b:ce:c2:df:
5b:06:df:f2:11:6f:a3:f2:7e:50:df:84:a2:ce:69:
97:b9:32:dc:0a:4d:23:da:ed:ad:40:a0:ad:83:a1:
33:d5:90:80:8c:4a:bb:4a:05:19:24:dc:ca:c1:f2:
b3:8b:ab:e1:c9:e7:1c:c5:0e:f3:88:f5:63:62:59:
92:71:0b:e0:ef:a0:4f:f1:d7:72:e6:59:a9:d4:92:
3e:9e:1d:e3:38:5c:50:a6:70:3f:25:71:75:be:d1:
d8:2c:0a:ed:05:55:26:00:5a:e3:49:d1:6d:c9:1b:
94:6d:04:a4:58:bd:55:c0:51:bf:50:91:71:c9:60:
1f:76:7a:06:37:98:d8:00:6b:dc:d0:b8:18:84:aa:
56:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:31:9C:88:D9:22:FC:6F:B5:51:7E:BF:D6:37:40:83:CB:46:38:EF
X509v3 Authority Key Identifier:
keyid:E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/7TGciNki_G-1UX6_1jdAg8tGOO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.128.0/22
80.244.10.0/24
Signature Algorithm: sha256WithRSAEncryption
26:48:1e:9d:1f:e7:15:07:30:3b:1e:0f:c6:39:65:98:f0:47:
5f:f4:e4:0e:e8:b8:e0:b7:e6:a3:27:27:b2:5b:1a:3e:8e:a6:
35:a7:7b:34:4f:be:f6:6b:6c:74:97:b4:df:db:6b:d8:40:e5:
07:90:1c:09:4f:1d:3d:03:e8:a4:e0:65:69:60:0a:10:10:32:
4c:ed:17:8e:4f:c1:30:de:a7:fa:18:ac:f0:93:1d:c7:00:89:
bd:77:a2:f1:e6:31:81:c1:8a:dc:65:97:0c:0d:cd:74:0c:ec:
83:5f:a2:58:98:12:9b:2b:11:35:74:85:e0:6e:60:72:c7:9f:
7e:7d:cd:0e:ae:a1:35:72:55:09:f9:fd:0e:19:18:9a:ca:d1:
5a:f3:ca:74:64:95:4e:5e:99:f9:07:a3:00:2e:07:c2:d8:e9:
9a:39:47:7f:84:15:ff:1a:b6:cb:e3:d0:db:80:f1:a5:22:8f:
e8:e4:b0:7f:a5:b5:b0:69:a2:71:a0:fb:a2:df:0f:37:de:3e:
5c:50:7c:a7:48:62:83:5f:c1:ba:cd:e6:09:84:c8:e1:19:e7:
91:f1:95:10:d1:3a:ee:d5:ba:de:a8:be:00:95:d1:c1:64:2e:
d5:8e:26:37:ad:3e:17:fe:2f:48:15:f3:e4:31:4e:4a:59:49:
53:e9:f2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 11:18:21 2024 by rpki-client on console-fra.rpki-client.org