Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/VQI1O3WANkOcseWLES8VdB44x0U.roa
File: VQI1O3WANkOcseWLES8VdB44x0U.roa (raw, json)
Hash identifier: xPyPMaaHVl4SNWxWAI/SIiufNtYxeV8dNjwwOK/KwC0=
Subject key identifier: 55:02:35:3B:75:80:36:43:9C:B1:E5:8B:11:2F:15:74:1E:38:C7:45
Certificate issuer: /CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Certificate serial: 018CC5DC2EA1E6734708CC6292F8941C59DE
Authority key identifier: E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/VQI1O3WANkOcseWLES8VdB44x0U.roa
Signing time: Mon 01 Jan 2024 16:29:50 +0000
ROA not before: Mon 01 Jan 2024 16:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398464
IP address blocks: 216.247.232.0/22 maxlen: 22
113.30.192.0/21 maxlen: 21
5.183.88.0/22 maxlen: 22
2a10:d507::/32 maxlen: 32
2a10:d501::/32 maxlen: 32
2a10:d502::/32 maxlen: 32
2a10:d506::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:2e:a1:e6:73:47:08:cc:62:92:f8:94:1c:59:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Validity
Not Before: Jan 1 16:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5502353b758036439cb1e58b112f15741e38c745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a1:a9:c9:88:49:b2:7e:03:1c:54:27:93:87:
cd:12:2c:f0:7f:b6:57:51:f6:58:bd:51:71:8a:0c:
d8:ac:59:b7:33:77:0b:17:54:e4:4f:74:90:86:a2:
9e:f6:ce:b7:e6:10:e1:19:a5:8c:14:c6:b9:6d:1b:
84:ad:db:95:2c:a4:81:fb:3d:8c:3d:60:1a:32:c7:
f9:84:bf:88:76:c1:e9:78:5d:16:99:38:71:98:32:
ae:d8:97:98:dc:49:eb:fa:32:3f:c1:c5:00:cc:d1:
f6:ee:c8:d0:a4:5a:76:c0:57:28:b1:5d:62:ca:6a:
9b:1c:d5:28:bc:81:a8:c6:91:e9:47:b1:cf:a5:d5:
13:bf:a3:29:13:d6:fe:47:46:1a:9d:2b:5c:35:79:
f0:bb:3c:10:d4:69:92:f1:b2:8c:9f:cf:67:d8:76:
5a:ef:49:61:37:6c:05:fd:29:99:15:69:45:38:33:
5a:64:62:6b:c6:c7:cb:8b:3c:f3:f2:fc:ae:1d:95:
70:8f:fe:a0:24:42:e8:27:f2:b1:08:a2:40:a2:3b:
14:61:15:dd:6b:46:8c:d1:68:02:1b:7c:a3:55:f7:
a5:79:c9:d8:59:20:57:10:eb:7d:8a:0a:ea:33:24:
88:e1:ab:74:d2:9f:c1:8f:ee:db:67:4c:55:3d:43:
82:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:02:35:3B:75:80:36:43:9C:B1:E5:8B:11:2F:15:74:1E:38:C7:45
X509v3 Authority Key Identifier:
keyid:E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/VQI1O3WANkOcseWLES8VdB44x0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.88.0/22
113.30.192.0/21
216.247.232.0/22
IPv6:
2a10:d501::-2a10:d502:ffff:ffff:ffff:ffff:ffff:ffff
2a10:d506::/31
Signature Algorithm: sha256WithRSAEncryption
4a:76:12:b2:24:6e:0d:bb:be:13:b7:b2:7e:06:9d:00:d3:d7:
33:f0:d5:58:5e:e9:eb:28:21:f8:69:bd:a0:57:3a:68:20:ac:
e3:a9:e7:a5:2e:c7:a8:fb:d0:19:6f:19:96:28:d4:a9:41:dd:
0d:ee:86:7c:eb:7f:e7:60:c5:70:07:33:69:e2:c1:56:7a:2f:
c4:e2:cf:7f:2c:82:05:99:ca:51:ab:0e:b0:39:5d:c3:66:ed:
77:ad:02:b4:90:b0:c1:ed:6c:fa:04:fb:6f:64:48:0c:83:20:
64:34:e8:ea:96:3e:65:c7:a2:8a:30:d2:92:0b:e1:80:16:2f:
94:6b:1b:e1:89:ee:2e:4f:c7:23:6b:26:48:23:91:3b:24:03:
05:d3:44:bb:01:af:3a:a2:69:bc:ab:a5:56:f6:1e:59:08:9a:
5c:35:09:54:8e:b0:a5:8b:73:d3:5f:de:eb:70:a6:5e:4b:bb:
90:b8:b0:af:a8:e2:be:7d:ef:4d:f3:38:8c:24:2c:1f:58:7e:
a6:9b:ba:5e:90:1b:ed:d4:fc:0f:99:94:88:b3:74:9f:0b:3b:
d4:2a:54:31:9b:9c:f6:60:99:96:30:13:94:2f:e9:64:a5:ba:
25:16:62:4b:ad:42:5d:27:0e:44:ba:19:6e:d3:c2:3d:67:50:
dd:5a:f0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:45:36 2024 by rpki-client on console-ams.rpki-client.org