Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/x6kMK8pvvQHneDDzBJ_cxqxlYfs.roa
File: x6kMK8pvvQHneDDzBJ_cxqxlYfs.roa (raw, json)
Hash identifier: VTmakNwF5gNTZIWZNxF2czW6keCswCk5k13TVdFVBuI=
Subject key identifier: C7:A9:0C:2B:CA:6F:BD:01:E7:78:30:F3:04:9F:DC:C6:AC:65:61:FB
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 018FE4F8965BF513EB62993A05C0394CA447
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/x6kMK8pvvQHneDDzBJ_cxqxlYfs.roa
Signing time: Tue 04 Jun 2024 20:37:27 +0000
ROA not before: Tue 04 Jun 2024 20:37:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 5.22.204.0/22 maxlen: 22
188.191.48.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 20:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e4:f8:96:5b:f5:13:eb:62:99:3a:05:c0:39:4c:a4:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jun 4 20:37:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7a90c2bca6fbd01e77830f3049fdcc6ac6561fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f8:9b:2b:96:01:ee:b2:3c:21:2c:52:d5:21:
63:8e:b9:b3:77:3d:38:ec:6f:a9:75:43:1a:95:a7:
84:ef:44:f2:13:d8:ac:7c:61:a0:75:0e:ab:0d:08:
90:83:b6:4b:b7:cd:92:4c:88:b3:65:ed:9b:17:cb:
5e:62:de:6f:bf:f5:a6:03:e2:06:8c:5c:a7:44:44:
12:b6:9b:c4:bb:24:63:36:08:f3:aa:a8:d1:0d:1b:
67:73:fb:83:c1:ce:d0:4e:00:5c:34:4a:0c:a8:0a:
51:4b:dd:2d:d0:f4:b2:63:3c:7b:33:a3:e4:30:5b:
0b:7e:a0:a5:45:b3:9f:64:2e:b5:d7:d1:6a:50:e4:
a0:be:80:9e:2f:51:80:25:32:28:84:a2:ef:00:f8:
53:4a:20:18:7b:ef:ba:e3:bd:1e:aa:0e:6b:b2:9a:
d7:5d:7a:06:c4:5f:17:58:72:ba:16:f0:74:15:36:
5e:fd:77:0b:8b:a9:78:bd:4e:26:f7:8d:50:79:2c:
10:d0:66:11:35:d9:3c:ed:2c:5b:a7:01:e3:4c:7a:
a9:56:f3:30:80:95:97:3d:2c:91:84:5d:27:4f:a9:
eb:9b:a8:6d:01:18:a5:60:8e:21:29:dc:11:7f:d7:
ff:54:be:4a:14:98:6c:88:14:1b:55:a9:c2:f8:00:
4c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A9:0C:2B:CA:6F:BD:01:E7:78:30:F3:04:9F:DC:C6:AC:65:61:FB
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/x6kMK8pvvQHneDDzBJ_cxqxlYfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.204.0/22
188.191.48.0/22
Signature Algorithm: sha256WithRSAEncryption
57:ca:9d:01:01:eb:b6:3a:ac:46:03:d4:a5:ed:f0:3d:3c:5e:
b5:93:f1:97:6b:42:9a:e3:bc:9e:1f:7e:c4:a8:84:bb:e1:37:
0b:65:07:35:35:39:61:37:77:c5:18:be:ef:88:d4:d5:b2:7d:
59:83:62:07:29:3c:db:b2:0d:ba:21:7d:c7:12:b0:4b:d7:69:
1b:2d:f1:bc:96:56:35:d3:d9:02:4e:98:c5:d3:7e:09:bf:fe:
e4:30:2a:2c:98:7d:92:30:d1:46:60:1d:d1:19:ea:78:b1:6a:
93:d1:36:18:f6:61:32:f2:0f:5c:d5:fd:ae:ef:44:15:dc:c5:
e6:97:e3:25:35:a8:c5:0c:c7:c6:1f:9a:5d:9f:94:ce:ca:ce:
20:74:16:d0:3b:29:fc:44:e8:c2:e7:df:01:71:4a:68:3c:f7:
78:34:e2:3f:4e:31:1a:40:a3:8d:97:2e:44:cf:4d:72:9a:ac:
19:f8:95:e3:e2:2e:f1:14:71:7f:03:bc:12:20:92:e9:cc:b4:
fb:5f:e4:5d:b1:37:ce:18:ce:d8:2c:fc:e3:96:85:82:07:b3:
ed:14:d6:da:63:0a:34:45:37:88:e4:f2:20:c0:94:a2:8c:97:
6b:11:44:b6:6b:6e:d1:81:c2:02:e0:eb:61:e8:e2:d3:c8:85:
7e:ca:15:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 04:47:52 2024 by rpki-client on console-ams.rpki-client.org