Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/MLDlOlvlShqjwwpEH_LGLUQdpmw.roa
File: MLDlOlvlShqjwwpEH_LGLUQdpmw.roa (raw, json)
Hash identifier: DqdoWtwPcu9QgrkpcVg2Nfa6hlDLvLdJvuxWg1EUWKk=
Subject key identifier: 30:B0:E5:3A:5B:E5:4A:1A:A3:C3:0A:44:1F:F2:C6:2D:44:1D:A6:6C
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018F61E8C97C52A99D45580AFE38E6749E6C
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/MLDlOlvlShqjwwpEH_LGLUQdpmw.roa
Signing time: Fri 10 May 2024 09:49:56 +0000
ROA not before: Fri 10 May 2024 09:49:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133296
IP address blocks: 93.120.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft
rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:61:e8:c9:7c:52:a9:9d:45:58:0a:fe:38:e6:74:9e:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 10 09:49:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30b0e53a5be54a1aa3c30a441ff2c62d441da66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:25:5b:cf:af:1f:6f:c2:cd:bf:98:31:03:82:
06:58:e4:df:00:dc:94:4e:0f:f3:84:05:0a:96:84:
95:d8:ce:6e:44:e4:d3:58:3a:76:65:7b:6a:50:a4:
11:f6:aa:5e:0f:36:fd:c5:4b:04:56:bf:d2:bc:6a:
db:ec:fa:3e:06:5e:a8:45:ea:d9:c0:ee:0c:65:8a:
6d:93:81:bc:9a:49:5e:f3:f5:f7:75:5a:0e:be:c8:
3f:11:62:8b:ac:d0:e2:eb:4e:49:cb:23:a9:4f:66:
75:67:de:3b:95:b0:02:6e:cb:e3:a1:c9:36:b5:4c:
1d:a6:c4:f1:48:e0:dd:14:db:06:07:8a:aa:c4:81:
36:7c:51:51:70:51:9a:51:8e:38:d5:ed:0e:12:ca:
d7:85:d1:e8:f0:72:75:c6:8a:4d:57:08:d2:4a:19:
21:8b:cd:dc:c9:c4:a6:d5:3a:9e:f2:99:3f:ce:de:
59:1d:e2:3f:e4:b7:91:27:b4:70:f1:56:4a:4a:19:
92:1c:69:cb:81:e7:02:79:88:bc:0c:0e:62:9e:9a:
2f:86:09:a9:00:9d:3e:29:68:bf:0c:0a:e7:1a:40:
bd:63:77:a3:b8:1f:90:f2:25:2f:9d:13:65:9d:2d:
4a:00:2e:e2:da:28:61:e1:f0:a6:e0:c8:97:14:8f:
40:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B0:E5:3A:5B:E5:4A:1A:A3:C3:0A:44:1F:F2:C6:2D:44:1D:A6:6C
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/MLDlOlvlShqjwwpEH_LGLUQdpmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.120.39.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:25:0c:f1:74:ad:3c:e0:1d:5d:d3:41:f7:23:85:96:8d:1a:
b1:da:aa:5a:03:45:fb:61:09:95:b9:a5:7d:40:48:be:76:1e:
d3:b3:e1:0d:92:53:65:4b:12:c6:b5:46:0d:02:e6:bb:e3:5d:
ff:a0:df:be:9f:d8:99:f2:95:67:ac:29:83:87:43:6d:f1:45:
d8:a4:3f:22:33:fd:14:d7:4b:2b:d3:24:cc:60:08:0c:25:87:
61:f0:e4:78:31:3d:e6:e4:11:87:79:d1:4a:11:95:3b:f7:76:
3f:f5:2b:4a:10:16:f4:20:50:6c:63:c2:5e:1d:13:ed:53:42:
a3:e1:08:3d:0f:61:8c:41:47:0e:ad:db:c8:a9:62:d4:f2:14:
37:ed:22:79:95:87:4a:dd:17:96:95:28:2b:fe:3a:2c:1c:12:
8e:f8:33:e3:8c:94:72:b9:73:a0:ad:10:c0:05:3d:f2:71:eb:
32:ae:4d:5e:0a:8f:a3:65:bf:fa:d0:7d:e6:01:32:5e:b8:e5:
4c:4f:58:e8:f3:79:06:ef:80:30:7c:02:5a:12:b8:44:9b:7f:
25:d5:40:3c:04:dc:a4:84:34:86:5b:d6:36:4f:75:a7:1f:72:
34:dd:11:42:46:be:9e:e4:dd:2b:a6:51:17:6c:f0:37:c0:01:
e8:a2:8a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 20:05:48 2024 by rpki-client on console-fra.rpki-client.org