Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/HmfmblL5om4TGXeLlC7umAEDJ74.roa
File: HmfmblL5om4TGXeLlC7umAEDJ74.roa (raw, json)
Hash identifier: YDUUbm+9PntKdJlzl9+dgmvg5ioJ1Gx0uWEfDurljRM=
Subject key identifier: 1E:67:E6:6E:52:F9:A2:6E:13:19:77:8B:94:2E:EE:98:01:03:27:BE
Certificate issuer: /CN=292c5d372319fa6175e56ca79883d12b0c6e38ec
Certificate serial: 018CC34897FE72A2DEDDBB4355B353FB452E
Authority key identifier: 29:2C:5D:37:23:19:FA:61:75:E5:6C:A7:98:83:D1:2B:0C:6E:38:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KSxdNyMZ-mF15WynmIPRKwxuOOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/HmfmblL5om4TGXeLlC7umAEDJ74.roa
Signing time: Mon 01 Jan 2024 04:29:23 +0000
ROA not before: Mon 01 Jan 2024 04:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 185.81.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/KSxdNyMZ-mF15WynmIPRKwxuOOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/KSxdNyMZ-mF15WynmIPRKwxuOOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/KSxdNyMZ-mF15WynmIPRKwxuOOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:97:fe:72:a2:de:dd:bb:43:55:b3:53:fb:45:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=292c5d372319fa6175e56ca79883d12b0c6e38ec
Validity
Not Before: Jan 1 04:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e67e66e52f9a26e1319778b942eee98010327be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:48:3d:95:7b:a6:0a:77:80:53:1b:f9:cb:d0:
c4:42:88:32:85:9b:13:83:ed:3e:25:ff:87:66:2a:
7d:4e:0d:27:7f:85:7b:00:c2:65:f5:44:79:b9:6d:
5f:4e:73:3c:a1:78:fd:da:88:9f:92:72:da:98:19:
f8:f8:17:6c:a2:52:ba:5c:36:99:7c:f1:0b:d8:ce:
cc:96:09:f4:42:57:ab:f1:61:69:d8:7e:8f:54:17:
fa:2f:b9:90:bb:8b:54:cd:3e:2c:92:ec:ad:73:e5:
40:a7:53:9b:27:58:34:7e:6e:ab:5a:72:55:c4:7f:
3f:05:7a:4d:ac:c0:97:6a:21:25:bf:22:e2:28:97:
65:a1:e3:8e:47:29:6e:64:20:4c:4d:fd:3a:d7:8d:
64:55:73:2f:6c:d9:14:1a:7d:7f:e2:73:80:7a:dd:
6e:08:59:15:dd:c2:7b:44:ce:ab:71:4e:dd:7a:a3:
92:02:7e:fc:77:1b:b2:31:0a:69:12:72:13:1c:36:
13:90:df:e5:53:c6:05:c8:c5:2f:02:1c:8f:c2:e3:
41:ca:f4:e9:fa:6a:ba:1b:d5:20:c9:a2:79:a2:c4:
47:fa:cf:8c:6d:ea:e6:6c:7c:a3:fb:fb:41:39:df:
7d:bb:99:14:7b:4e:45:d8:88:c7:41:b6:cb:63:3f:
65:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:67:E6:6E:52:F9:A2:6E:13:19:77:8B:94:2E:EE:98:01:03:27:BE
X509v3 Authority Key Identifier:
keyid:29:2C:5D:37:23:19:FA:61:75:E5:6C:A7:98:83:D1:2B:0C:6E:38:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KSxdNyMZ-mF15WynmIPRKwxuOOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/HmfmblL5om4TGXeLlC7umAEDJ74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/KSxdNyMZ-mF15WynmIPRKwxuOOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.69.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:d9:93:4d:3a:3c:11:e8:cf:bc:bb:f5:43:0a:79:40:33:16:
da:dd:9c:13:ad:99:b2:ec:76:4b:36:83:b9:8f:59:8c:28:d7:
5e:63:e8:b3:92:71:ac:01:a8:3e:78:ef:e3:4e:35:b4:e8:97:
27:ba:7a:d8:4f:01:21:53:6c:4c:2a:1f:67:00:5b:ac:38:8e:
79:47:1b:1c:3f:e3:cb:dd:de:85:6c:45:a7:5d:a1:d0:df:30:
39:e7:35:e1:c4:71:d3:50:3d:eb:f2:6b:ae:64:94:cc:90:f0:
78:41:9c:61:90:0e:8b:60:07:d3:15:27:16:e5:0a:55:d1:ff:
1d:3a:22:2e:88:e2:aa:dd:72:cd:1b:34:cb:df:93:36:4e:52:
ba:c3:45:10:48:28:d3:f0:ef:56:33:82:23:87:a7:81:7b:5b:
e2:89:c5:9b:47:a5:cd:a7:42:3b:06:7d:ca:de:43:28:a5:4c:
7b:d2:bf:a0:d4:c6:73:3e:c5:f8:a8:c3:56:57:46:bd:83:87:
cb:4f:8f:34:42:d1:82:be:c8:d7:4a:13:93:9a:95:64:01:39:
31:6b:13:ce:ea:4d:c6:2c:18:a2:d2:13:cf:65:95:fa:64:72:
a5:56:c6:58:50:17:f3:f6:cc:7b:e7:83:a1:be:5b:ef:ee:39:
82:44:f4:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 16:52:12 2024 by rpki-client on console-ams.rpki-client.org