Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/1-D24ILJkEw5ktTlVBN7-0RvMehs.roa
File: 1-D24ILJkEw5ktTlVBN7-0RvMehs.roa (raw, json)
Hash identifier: OcdJOKBnoSSXJoG09pSrAz+PK8G8SrfH1zcNsexMUWQ=
Subject key identifier: F8:3D:B8:20:B2:64:13:0E:64:B5:39:55:04:DE:FE:D1:1B:CC:7A:1B
Certificate issuer: /CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Certificate serial: 018CC56EEF936E3FF181104001B6E0D42CC6
Authority key identifier: 31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/1-D24ILJkEw5ktTlVBN7-0RvMehs.roa
Signing time: Mon 01 Jan 2024 14:30:30 +0000
ROA not before: Mon 01 Jan 2024 14:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48809
IP address blocks: 185.148.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:ef:93:6e:3f:f1:81:10:40:01:b6:e0:d4:2c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Validity
Not Before: Jan 1 14:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f83db820b264130e64b5395504defed11bcc7a1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c2:bb:61:97:c5:db:68:bc:fa:9c:f7:d4:84:
89:16:f2:17:df:11:45:ee:e2:04:ea:ae:0b:5c:2e:
f9:6f:ac:ae:db:7d:9b:61:5b:0b:10:ea:55:ea:17:
3b:6b:72:02:12:9b:5f:88:d8:07:f6:5c:7b:da:5f:
70:18:5f:13:12:73:30:00:bd:a5:ea:4e:b7:17:b0:
1f:8e:b6:81:4f:76:10:f6:b2:45:86:1c:b6:a7:8f:
fe:89:56:20:0f:45:88:62:33:ce:75:6b:b8:e3:e5:
84:14:80:f1:9d:f8:80:bb:95:a3:7c:b5:bf:8b:d6:
fb:6f:42:77:4b:24:12:19:05:2c:d1:9a:7a:83:70:
30:18:05:3c:26:b1:d7:c0:a0:b6:50:ab:83:72:64:
ff:09:bb:37:1d:f0:6e:85:c3:87:07:ab:c6:3f:1c:
b8:cb:09:6b:d9:99:06:06:f8:b5:e5:21:3d:5d:21:
e3:90:2b:1e:a6:34:eb:fb:81:56:57:47:f1:9f:32:
8d:af:31:c2:0c:f8:11:ec:ec:03:2c:36:2d:ab:91:
0c:15:ce:eb:05:b1:5a:90:0d:01:46:c9:d8:c5:e8:
65:4c:8a:8b:70:d0:b6:d0:e0:8d:c5:67:8b:12:b7:
af:4d:38:e7:af:fe:12:e7:a3:61:3c:6c:2f:1c:31:
cc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3D:B8:20:B2:64:13:0E:64:B5:39:55:04:DE:FE:D1:1B:CC:7A:1B
X509v3 Authority Key Identifier:
keyid:31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/1-D24ILJkEw5ktTlVBN7-0RvMehs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.78.0/24
Signature Algorithm: sha256WithRSAEncryption
54:1a:de:36:36:87:b8:9c:6d:c3:46:4b:a4:a0:2d:33:92:b9:
8c:be:52:66:d8:19:29:14:fd:2a:0a:2e:30:15:23:c1:ba:9e:
60:01:13:b2:e6:c1:83:98:70:f8:37:e7:cd:3b:ee:8d:2c:a7:
a6:ce:ce:6b:a6:ff:f9:3e:92:3a:db:fe:a2:1e:0e:f3:a9:46:
0e:db:9b:e7:e6:3f:fc:34:c6:f5:5e:3a:9e:89:40:40:05:1f:
52:9e:bc:5a:7c:2d:ff:39:18:11:aa:e2:65:06:ad:b6:27:60:
b5:2b:21:ae:da:d0:93:ed:f6:47:64:09:b5:c8:9e:cf:66:1e:
8d:71:92:9d:04:0e:54:2a:cc:7b:75:18:8a:55:3d:18:7b:39:
ed:d4:ca:5a:b5:b7:ff:79:62:22:ff:39:bf:52:89:6a:ac:cb:
89:be:3a:1c:21:0a:29:3d:00:dd:02:12:2d:05:ce:a2:3f:c4:
3c:32:84:74:14:d8:fc:f8:eb:40:8e:2c:8a:8d:93:f0:ef:74:
d7:46:9d:c0:12:21:43:09:bb:8a:4f:b7:b7:73:49:3e:6e:22:
6f:f7:be:f5:0b:6b:7b:3c:9d:e4:4e:7b:de:d4:ed:a8:80:6e:
83:86:13:77:4e:75:7f:98:f2:fb:46:52:c5:ce:a3:38:64:55:
9e:f7:a4:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:40:41 2024 by rpki-client on console-fra.rpki-client.org