Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/ISLG8qNXE_Xcu81ZFMAqq4xmrKw.roa
File: ISLG8qNXE_Xcu81ZFMAqq4xmrKw.roa (raw, json)
Hash identifier: M65I7azBaPCqnyil7BArgwT9eaivmDaHgl534JIFv7k=
Subject key identifier: 21:22:C6:F2:A3:57:13:F5:DC:BB:CD:59:14:C0:2A:AB:8C:66:AC:AC
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018CC94E6CBAB66BFCF91704E511ED6F820C
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/ISLG8qNXE_Xcu81ZFMAqq4xmrKw.roa
Signing time: Tue 02 Jan 2024 08:33:29 +0000
ROA not before: Tue 02 Jan 2024 08:33:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 46.3.213.0/24 maxlen: 24
46.3.209.0/24 maxlen: 24
46.3.211.0/24 maxlen: 24
46.3.210.0/24 maxlen: 24
46.3.212.0/24 maxlen: 24
46.3.208.0/24 maxlen: 24
46.3.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:6c:ba:b6:6b:fc:f9:17:04:e5:11:ed:6f:82:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:33:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2122c6f2a35713f5dcbbcd5914c02aab8c66acac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ce:e0:a2:54:8f:ba:52:01:fa:ae:3c:3b:ae:
fc:68:af:b3:d7:6e:83:12:c2:33:4d:5f:6d:81:fb:
ee:31:6e:bd:ac:bd:c1:5f:d5:95:1b:dc:39:d4:f0:
ad:c6:82:ee:0b:1b:dd:df:0a:4e:dd:75:06:e0:4a:
de:a3:ab:64:85:9c:e1:d0:7c:2a:9e:7d:46:e4:58:
11:a4:dd:b3:d4:ec:11:c3:38:a6:80:73:40:58:4f:
ad:90:33:69:7d:a4:a1:b2:0f:7b:b7:8e:70:c2:68:
be:d9:67:07:0b:aa:d5:2f:81:cf:17:96:83:4b:de:
df:25:dd:18:03:00:65:4d:6d:87:c1:67:75:13:46:
b1:d4:52:66:27:99:f3:11:c5:0b:52:1d:f9:89:f2:
47:99:aa:15:73:ad:aa:80:f7:29:1e:da:0a:cd:4c:
61:60:3e:68:44:95:39:e2:8c:04:8d:8f:23:8a:ef:
2f:66:32:03:ff:a1:81:30:a2:dd:d5:64:ae:3f:78:
d4:4e:fb:e9:75:5e:c8:c2:38:d2:f5:24:55:4c:96:
a0:a3:7a:6b:84:f5:8b:0f:43:77:26:cf:18:bd:36:
10:58:e1:f3:42:51:3a:c0:1c:ab:06:88:28:b8:b9:
0c:ea:b5:83:82:c6:a2:c9:c6:8a:a4:5d:bb:65:01:
d5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:22:C6:F2:A3:57:13:F5:DC:BB:CD:59:14:C0:2A:AB:8C:66:AC:AC
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/ISLG8qNXE_Xcu81ZFMAqq4xmrKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.208.0-46.3.214.255
Signature Algorithm: sha256WithRSAEncryption
0e:7c:50:7a:7c:fc:ae:39:83:00:2c:92:1a:c6:e5:3e:62:e1:
33:ef:fa:a8:90:f1:59:16:a3:e9:79:33:b1:db:cd:da:01:5a:
07:61:f8:68:56:e2:6e:28:f5:d1:66:61:ab:fe:93:41:95:81:
8c:c7:fc:d4:5e:a4:a4:df:81:fb:14:b9:dc:a9:e8:bd:e0:3a:
ed:7e:aa:97:34:1a:7f:2a:38:48:f6:42:aa:47:18:c8:64:37:
db:d0:17:fd:91:64:ad:75:43:5c:9b:40:e1:dc:ea:c0:20:29:
8d:c4:d7:6b:bf:84:cb:68:e2:b0:be:29:b3:7b:85:85:22:d2:
ca:75:7f:9b:d0:d2:58:e3:e5:c9:03:d1:e2:4f:c5:36:f3:2c:
19:fa:03:91:ff:5d:f1:89:34:06:73:41:f3:02:68:47:f4:70:
4b:78:57:e4:57:8b:73:13:0f:43:72:c2:78:04:9a:0e:a6:28:
e4:01:f3:4e:45:b7:76:df:77:ed:11:80:eb:7a:f7:48:5f:51:
b1:be:67:64:6e:fc:ed:39:57:05:da:da:09:97:e1:7d:b7:aa:
a7:61:50:1a:2e:e5:98:04:10:3c:5b:b7:21:d0:27:9a:43:3a:
27:40:db:52:53:61:ad:36:05:bd:d6:d5:65:57:4c:e8:a4:1c:
f0:8d:24:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:40:23 2024 by rpki-client on console-ams.rpki-client.org