Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/ieCoun-6X17MX6fNT4oeje_qU-A.roa
File: ieCoun-6X17MX6fNT4oeje_qU-A.roa (raw, json)
Hash identifier: nVerZPCJOjeLhkMnZ3xz+GT1kdBnX4ludHbAy53DjJ4=
Subject key identifier: 89:E0:A8:BA:7F:BA:5F:5E:CC:5F:A7:CD:4F:8A:1E:8D:EF:EA:53:E0
Certificate issuer: /CN=b96e8b6d73f2f38548996f66621330a8d7108529
Certificate serial: 018CC49247EBEF4E864BF1D15272E2864B7D
Authority key identifier: B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/ieCoun-6X17MX6fNT4oeje_qU-A.roa
Signing time: Mon 01 Jan 2024 10:29:30 +0000
ROA not before: Mon 01 Jan 2024 10:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60880
IP address blocks: 192.145.24.0/22 maxlen: 22
5.133.84.0/22 maxlen: 22
5.133.84.0/24 maxlen: 24
185.197.188.0/22 maxlen: 22
185.205.240.0/22 maxlen: 22
2a0a:7cc0::/29 maxlen: 29
2a0a:7cc0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 01:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:47:eb:ef:4e:86:4b:f1:d1:52:72:e2:86:4b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b96e8b6d73f2f38548996f66621330a8d7108529
Validity
Not Before: Jan 1 10:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89e0a8ba7fba5f5ecc5fa7cd4f8a1e8defea53e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:18:61:3b:ac:81:84:d2:0c:3d:77:ca:1a:f3:
b6:b5:5b:f3:71:1a:a5:3e:e0:84:c5:64:35:c6:00:
af:d2:fa:42:85:4c:c5:5c:7b:c4:fe:6f:cc:10:62:
9c:64:14:d4:6b:cd:1f:70:6d:70:29:5a:22:16:42:
c3:14:27:14:14:69:46:2d:5f:f1:2b:f0:85:11:94:
56:ad:02:ed:70:27:aa:9b:cf:4f:99:2e:01:f6:f6:
16:71:6f:e6:5f:53:18:10:1c:95:a9:a9:05:68:9e:
fb:d3:cf:55:1e:af:77:67:12:44:05:89:93:ae:ec:
cb:f4:0c:88:f3:70:1d:8a:3f:2f:99:57:bc:21:1a:
ef:72:d4:5f:fb:ae:4c:95:67:85:03:72:9c:03:e1:
dc:ee:4a:3f:c2:95:77:b1:5a:6f:af:3d:26:22:d8:
bb:64:4e:69:89:2b:16:79:da:09:3c:87:6e:52:51:
84:de:e6:99:4a:15:4e:43:f7:a8:a0:4f:72:04:a2:
61:c9:46:04:82:86:f6:cb:3a:c2:26:ab:d6:6a:5f:
70:39:50:bc:2e:fe:47:af:b7:4c:35:25:1c:94:3d:
34:2b:4f:87:e5:43:c7:3d:02:5d:6f:52:ab:27:2f:
cb:7b:a4:7b:0a:bc:ec:98:9d:7c:0f:04:75:6f:8e:
2a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E0:A8:BA:7F:BA:5F:5E:CC:5F:A7:CD:4F:8A:1E:8D:EF:EA:53:E0
X509v3 Authority Key Identifier:
keyid:B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/ieCoun-6X17MX6fNT4oeje_qU-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.84.0/22
185.197.188.0/22
185.205.240.0/22
192.145.24.0/22
IPv6:
2a0a:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
76:cc:be:e4:1d:c8:70:8a:12:27:ab:12:fe:d3:82:b6:4e:3e:
f4:be:91:73:12:b1:5f:29:de:34:ed:93:20:45:fb:c5:06:ec:
b0:7c:34:46:1f:4f:25:56:4e:88:ae:79:f8:52:f5:8a:e6:42:
2d:fe:0a:cf:a9:94:c4:d9:14:98:fd:e3:fe:d8:c8:ad:9c:72:
c6:55:20:ca:28:75:a5:f9:aa:0c:cf:9d:dd:5c:fd:68:17:16:
6b:9d:b1:ca:9f:64:fe:ef:0e:3e:41:04:5b:93:4d:7a:f6:11:
aa:e9:42:72:ba:42:e1:d5:9a:a3:df:1c:b7:0f:11:0c:96:dd:
8a:59:5c:3f:93:96:af:0c:ab:6c:cb:28:d1:ee:5a:76:33:51:
4c:2d:51:a4:33:98:70:36:e7:de:f5:06:ac:43:83:b1:89:ad:
98:c6:98:9b:48:7e:49:da:5b:76:8f:86:9f:17:81:82:6e:91:
19:65:ae:a8:78:eb:98:77:db:c8:49:e1:f2:96:de:73:6a:cc:
e6:56:28:99:53:83:e4:89:6a:a3:1b:87:11:4a:a1:29:35:fe:
d8:46:8c:91:5d:07:71:0b:3d:48:d9:fe:ee:8b:e4:ac:74:2f:
cf:eb:72:bf:0c:3f:81:4e:47:da:dc:d4:46:71:70:9b:04:ee:
a2:a8:78:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:41:40 2024 by rpki-client on console-ams.rpki-client.org