Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/IgytVavS5dBwgRnC6mxfojZwLGw.roa
File: IgytVavS5dBwgRnC6mxfojZwLGw.roa (raw, json)
Hash identifier: 1Uc6FPKFpuMJqpfvnXToL1Mw9I4mxK/HA5Zm7RJ4rO4=
Subject key identifier: 22:0C:AD:55:AB:D2:E5:D0:70:81:19:C2:EA:6C:5F:A2:36:70:2C:6C
Certificate issuer: /CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Certificate serial: 018CC5DC2DD5B736986F51326EDFB527904F
Authority key identifier: E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/IgytVavS5dBwgRnC6mxfojZwLGw.roa
Signing time: Mon 01 Jan 2024 16:29:50 +0000
ROA not before: Mon 01 Jan 2024 16:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 216.247.232.0/22 maxlen: 22
185.217.166.0/24 maxlen: 24
113.30.192.0/21 maxlen: 21
5.183.88.0/22 maxlen: 22
2a10:d502::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:2d:d5:b7:36:98:6f:51:32:6e:df:b5:27:90:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Validity
Not Before: Jan 1 16:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=220cad55abd2e5d0708119c2ea6c5fa236702c6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:20:46:f9:8f:18:c4:83:93:30:68:e6:2c:9e:
60:1a:42:32:75:99:0e:97:e3:43:ec:2f:ac:1f:82:
27:20:a6:ab:d9:8e:09:c1:7e:f8:6e:fa:bc:2f:ed:
af:9c:ba:a1:40:f2:51:13:57:83:f7:04:19:82:b7:
75:41:8a:13:cf:af:e5:fd:80:f2:5b:67:e4:10:61:
ac:82:e3:54:57:ab:ab:e7:55:8d:4f:3d:ce:c9:04:
3b:0e:df:a7:09:d8:91:a4:a5:17:6f:a5:a5:25:b6:
1a:d4:1b:bd:52:5c:f9:e9:d8:a4:41:26:4d:67:4b:
c0:ef:cc:c3:1d:a1:65:ba:77:fe:60:83:3b:e8:2d:
9b:c9:49:47:c8:fa:97:ea:fe:24:de:09:c6:1a:01:
57:ed:6d:57:f0:6c:98:8e:c6:3c:29:30:60:32:1f:
69:f3:98:6a:74:6a:9a:84:17:42:43:29:39:35:3f:
e2:9a:4b:6f:02:f9:b8:6a:7c:47:d7:f5:69:db:65:
3a:9d:7b:97:53:86:2e:85:2c:50:10:c9:d6:33:a6:
80:28:24:6c:eb:d2:62:ef:1d:d2:29:98:05:a2:c2:
82:1c:27:30:5d:66:45:12:ca:e8:b4:08:9a:73:30:
7e:b3:47:a0:d1:18:ad:38:f4:15:f6:ea:08:07:8b:
27:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:0C:AD:55:AB:D2:E5:D0:70:81:19:C2:EA:6C:5F:A2:36:70:2C:6C
X509v3 Authority Key Identifier:
keyid:E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/IgytVavS5dBwgRnC6mxfojZwLGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.88.0/22
113.30.192.0/21
185.217.166.0/24
216.247.232.0/22
IPv6:
2a10:d502::/32
Signature Algorithm: sha256WithRSAEncryption
48:c9:97:b8:c2:23:2e:d6:11:89:26:69:78:95:c5:71:34:ea:
e6:d4:aa:b7:48:d6:69:28:db:75:62:3b:bb:80:3c:80:44:bd:
9c:79:8f:ae:80:85:cd:a6:0b:7e:92:6a:60:4e:a1:c6:17:6b:
6d:9c:c8:49:64:9c:7a:f4:31:9c:c6:43:fb:80:36:af:67:ec:
a8:8c:a7:2a:ef:3a:58:7a:f8:c8:82:94:03:43:c9:24:6f:d0:
79:ac:0b:84:75:ae:bb:87:c5:46:b6:94:c6:81:13:15:9d:e5:
f0:1b:fd:61:36:52:c4:02:93:21:af:06:a8:ae:24:8b:6d:f3:
d8:03:15:7c:29:63:a6:99:18:38:ff:6e:93:a3:bf:32:1f:a1:
61:ba:59:74:1b:08:ae:7d:06:75:46:1c:67:c0:3f:01:68:67:
d6:62:f7:2c:19:10:70:54:5e:26:d7:20:69:02:f4:20:87:24:
13:41:5f:91:fa:99:5e:b1:fc:13:96:b4:9e:54:eb:35:50:60:
95:ab:70:6e:be:72:82:7d:64:5b:40:f7:fb:4b:0c:6d:8a:b9:
be:a3:f2:74:f8:63:55:c4:49:75:03:ca:fb:a0:6c:20:5a:2a:
fd:92:50:08:cf:ef:2c:83:de:40:43:91:a5:9e:5d:cd:93:63:
33:d5:2f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 04:43:56 2024 by rpki-client on console-ams.rpki-client.org