Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5tC9gH7GnXR1hv297REEFOzYkW4.roa
File: 5tC9gH7GnXR1hv297REEFOzYkW4.roa (raw, json)
Hash identifier: VSUrVUCZ9dGa7WLKCX75+z2MXvXS1cRyGggbPjnmgMs=
Subject key identifier: E6:D0:BD:80:7E:C6:9D:74:75:86:FD:BD:ED:11:04:14:EC:D8:91:6E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F37DEC4169E0CE49B3A93978E41A4FAEA
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5tC9gH7GnXR1hv297REEFOzYkW4.roa
Signing time: Thu 02 May 2024 05:54:57 +0000
ROA not before: Thu 02 May 2024 05:54:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29066
IP address blocks: 5.253.66.0/23 maxlen: 23
88.218.76.0/22 maxlen: 24
92.119.124.0/22 maxlen: 24
93.123.100.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:37:de:c4:16:9e:0c:e4:9b:3a:93:97:8e:41:a4:fa:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 2 05:54:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6d0bd807ec69d747586fdbded110414ecd8916e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:79:eb:bd:ca:a8:54:ff:13:63:e6:22:af:36:
f2:98:85:85:6a:75:6a:87:b3:f6:10:7e:5b:78:f2:
65:e8:2a:5f:fc:c1:e7:48:50:de:02:05:47:07:e3:
c1:24:88:f5:eb:fa:a1:46:6a:58:37:76:17:c3:5a:
40:d7:8b:a4:4c:74:1d:48:9e:06:67:42:36:10:a9:
09:89:24:d2:b6:ad:44:5e:83:b2:e7:6f:c2:4f:11:
0d:10:fc:c6:7a:8d:b5:d4:aa:fd:ac:1a:ca:2c:8b:
36:ee:da:6b:75:e8:5c:a2:0a:20:d3:2e:f5:f7:c9:
54:67:c3:4b:25:6e:49:b6:d3:17:9c:a3:08:bb:f3:
73:2b:5b:67:0d:db:e5:36:6e:cf:5c:47:a4:a8:d7:
e2:54:2b:a7:77:b9:8b:d0:01:c9:d8:fe:8f:b7:2a:
a0:b4:90:70:45:2e:2c:12:5f:ba:25:a5:16:a0:ea:
83:83:a4:23:d9:3f:0c:a2:5a:cb:13:7f:de:b5:68:
51:75:e8:66:5f:ae:c5:44:00:45:d2:f9:52:69:a2:
55:ba:2d:e6:de:17:60:e8:40:74:1a:51:a4:5a:6f:
2f:f9:08:d7:6e:39:dd:ee:05:b5:f4:88:e9:32:45:
28:db:8f:12:d4:77:ca:bb:b2:37:df:e0:aa:5b:0e:
94:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D0:BD:80:7E:C6:9D:74:75:86:FD:BD:ED:11:04:14:EC:D8:91:6E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5tC9gH7GnXR1hv297REEFOzYkW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.66.0/23
88.218.76.0/22
92.119.124.0/22
93.123.100.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:bd:64:d0:38:47:fa:1d:92:16:b4:5f:d9:8c:e4:f2:33:b8:
9d:b5:15:da:fd:4f:42:6c:ac:9b:91:77:4e:6f:3c:d1:da:5e:
26:e2:ab:7d:d7:5f:fb:4e:29:2e:37:dd:04:29:d0:9b:05:5c:
20:da:3e:7f:67:92:d4:7b:4a:94:a3:26:86:b4:ea:e6:d0:ae:
a9:b5:29:fc:65:87:9d:2b:50:cc:ce:97:ba:76:00:bc:cb:2e:
6d:ab:f8:7d:1b:5c:0c:1b:ff:48:0a:7b:da:4d:ec:f5:26:94:
62:3f:16:39:f1:43:99:cb:39:48:53:d1:ef:d6:99:14:5b:d7:
d4:b9:14:dd:44:5c:85:ce:90:e6:ab:b3:86:72:60:5a:27:c2:
a3:29:d7:09:7f:ff:8c:91:78:b2:be:52:a7:58:de:a7:12:7b:
45:da:18:bb:00:3a:70:1f:f3:7f:b8:cc:26:cf:3b:1b:79:1d:
9d:1b:d7:57:cf:22:74:e1:9d:2a:dd:35:17:d7:a2:67:2b:aa:
96:7c:bb:ce:77:6f:d2:11:33:6d:ec:29:88:ba:67:08:a0:1b:
ee:9f:3a:07:d4:3f:bd:f4:17:da:ba:19:6d:3f:c4:83:d6:2e:
a0:fb:4d:f0:01:86:85:40:57:9a:c5:f4:ad:8e:bf:26:b0:ec:
48:3a:6f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:12:53 2024 by rpki-client on console-ams.rpki-client.org