Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/lwMbSG5G5JJoybqaghAZ_Kp1Grg.roa
File: lwMbSG5G5JJoybqaghAZ_Kp1Grg.roa (raw, json)
Hash identifier: iZI7KPpHHA9ivFY/louWNTfZoFkPJ0GcPgYColLTNJE=
Subject key identifier: 97:03:1B:48:6E:46:E4:92:68:C9:BA:9A:82:10:19:FC:AA:75:1A:B8
Certificate issuer: /CN=01838307f79acdc59ad6eb82e8c8aaefa3d88289
Certificate serial: 018CC50010FC84D5190E62B93A6DB4D31086
Authority key identifier: 01:83:83:07:F7:9A:CD:C5:9A:D6:EB:82:E8:C8:AA:EF:A3:D8:82:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYODB_eazcWa1uuC6Miq76PYgok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/lwMbSG5G5JJoybqaghAZ_Kp1Grg.roa
Signing time: Mon 01 Jan 2024 12:29:25 +0000
ROA not before: Mon 01 Jan 2024 12:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13189
IP address blocks: 185.199.136.0/22 maxlen: 22
82.100.64.0/18 maxlen: 18
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/AYODB_eazcWa1uuC6Miq76PYgok.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/AYODB_eazcWa1uuC6Miq76PYgok.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYODB_eazcWa1uuC6Miq76PYgok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:10:fc:84:d5:19:0e:62:b9:3a:6d:b4:d3:10:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01838307f79acdc59ad6eb82e8c8aaefa3d88289
Validity
Not Before: Jan 1 12:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97031b486e46e49268c9ba9a821019fcaa751ab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fc:4f:54:57:65:28:d0:d6:61:9b:2f:1a:3d:
f6:3d:06:84:8b:b7:07:af:c5:39:9e:b4:af:22:a7:
6b:90:30:8c:fc:4f:a4:f7:db:22:9a:20:9a:9f:98:
1a:d7:61:a9:52:49:b9:61:d0:37:f5:8a:dd:63:73:
33:01:44:a2:35:8b:a6:6c:59:02:3b:67:60:10:01:
c1:b5:36:c0:4c:b6:70:13:d1:25:54:a7:3a:a7:c0:
c0:6c:5a:db:91:a2:94:f9:fb:2f:f3:e5:fd:08:60:
7d:70:5e:3e:9e:ed:0c:7c:ae:8a:92:e2:3b:14:1a:
b4:fc:c7:b5:e0:02:70:0e:2e:0c:31:04:9c:6b:8d:
ec:35:4a:ce:77:d8:37:17:85:2e:2b:d8:e1:9b:d6:
74:fe:38:8c:1b:ef:57:86:c2:b4:c5:8c:6f:bd:e1:
20:0c:96:f3:f1:fe:b0:4a:d2:7d:13:dd:ca:7c:3e:
38:66:42:c8:4e:22:88:48:81:99:a0:c0:72:83:67:
16:02:0a:89:1c:9d:c3:a4:d1:91:00:a3:35:fc:9a:
ea:7e:db:e2:3d:67:e5:4e:bc:23:7c:7d:12:3a:ff:
d8:51:d4:83:92:1c:1a:42:5c:89:99:78:e0:58:ec:
56:ca:2e:4a:35:81:2a:d4:26:bc:0b:c6:69:9c:5f:
45:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:03:1B:48:6E:46:E4:92:68:C9:BA:9A:82:10:19:FC:AA:75:1A:B8
X509v3 Authority Key Identifier:
keyid:01:83:83:07:F7:9A:CD:C5:9A:D6:EB:82:E8:C8:AA:EF:A3:D8:82:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYODB_eazcWa1uuC6Miq76PYgok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/lwMbSG5G5JJoybqaghAZ_Kp1Grg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/AYODB_eazcWa1uuC6Miq76PYgok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.100.64.0/18
185.199.136.0/22
Signature Algorithm: sha256WithRSAEncryption
e6:f6:04:19:6e:d0:99:59:b4:0c:90:7e:df:02:23:b9:e7:7c:
4d:df:e1:af:ab:98:d2:2d:3e:d4:de:e5:a6:a7:9b:38:d4:0c:
ff:8b:80:f3:65:c0:8e:aa:99:cd:4d:2b:95:2e:43:0d:36:7b:
6e:84:17:d4:a8:78:fd:a4:32:f5:55:47:f6:26:cf:b8:85:d5:
43:78:05:a2:86:8a:ff:75:74:6f:db:4e:29:02:1b:33:86:98:
35:76:25:97:af:37:1c:c2:90:f2:18:62:65:a4:d4:d4:27:77:
03:dc:0f:be:40:e4:65:ec:29:3d:58:51:de:ec:f3:e2:14:49:
a6:7b:ee:81:79:8c:a2:30:9d:aa:dc:06:f4:11:ab:47:15:dc:
6e:a0:6f:e3:df:22:12:9c:04:99:5b:38:6f:cf:1a:0f:6f:7b:
4b:4d:4a:40:4b:c1:06:ba:cb:1c:de:95:aa:ac:c4:aa:7a:1e:
39:14:c4:d8:6e:00:01:54:45:bd:42:b8:41:8b:e8:e8:d0:0a:
6c:42:b6:e9:fe:e6:18:aa:78:f9:e8:df:2c:97:b6:9a:9e:e2:
01:ee:38:44:2e:d9:9c:00:92:2e:62:be:82:9d:99:af:bb:2b:
97:53:f9:f2:aa:64:84:81:4b:be:72:9b:c6:f8:01:b7:4c:af:
c7:42:01:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 03:09:38 2024 by rpki-client on console-ams.rpki-client.org