Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/12ebcc-a9ff-402f-a51e-a579662f0950/1/MSaw9NQnLz6kTuyanTxRP0mAGwE.roa
File: MSaw9NQnLz6kTuyanTxRP0mAGwE.roa (raw, json)
Hash identifier: XhH1DiNXVf5mp9fkKhR8TWcE9Gj3Tw2CSJhdH8s+Y9Q=
Subject key identifier: 31:26:B0:F4:D4:27:2F:3E:A4:4E:EC:9A:9D:3C:51:3F:49:80:1B:01
Certificate issuer: /CN=e0f8b9e47856cbba082b7af4297a1b723dafc402
Certificate serial: 018CC7272532C9ACED73841735FED6A6573C
Authority key identifier: E0:F8:B9:E4:78:56:CB:BA:08:2B:7A:F4:29:7A:1B:72:3D:AF:C4:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Pi55HhWy7oIK3r0KXobcj2vxAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/12ebcc-a9ff-402f-a51e-a579662f0950/1/MSaw9NQnLz6kTuyanTxRP0mAGwE.roa
Signing time: Mon 01 Jan 2024 22:31:20 +0000
ROA not before: Mon 01 Jan 2024 22:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28917
IP address blocks: 91.247.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/12ebcc-a9ff-402f-a51e-a579662f0950/1/4Pi55HhWy7oIK3r0KXobcj2vxAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/12ebcc-a9ff-402f-a51e-a579662f0950/1/4Pi55HhWy7oIK3r0KXobcj2vxAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Pi55HhWy7oIK3r0KXobcj2vxAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 13:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:25:32:c9:ac:ed:73:84:17:35:fe:d6:a6:57:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0f8b9e47856cbba082b7af4297a1b723dafc402
Validity
Not Before: Jan 1 22:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3126b0f4d4272f3ea44eec9a9d3c513f49801b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6c:87:3a:42:26:86:04:ef:8b:1b:10:b3:4a:
c7:61:32:ef:ed:db:be:5d:85:db:a5:81:6d:8d:a7:
e0:77:99:34:e3:23:fb:e8:78:47:53:3c:3a:47:7f:
de:e5:4d:1a:fa:ca:58:2d:ea:41:61:dd:4b:4b:07:
3d:fc:06:fa:62:37:3d:2e:42:bc:c2:dc:83:d6:9f:
52:42:93:ec:ce:33:1f:f6:87:dc:f4:f8:1f:c5:63:
0d:16:79:a0:c5:50:b7:41:0c:a5:80:46:df:be:03:
1c:99:a1:3d:a7:4a:68:4c:25:6c:bc:d7:41:ea:fd:
a1:b4:68:e6:32:c5:76:9f:c2:6c:fa:fe:40:b0:f3:
6e:50:86:ac:1d:31:55:31:9e:29:6b:e6:63:5b:e8:
82:d5:07:fb:3a:83:0e:a3:ec:0b:ed:2f:8f:2b:5f:
e4:b5:49:28:74:9a:b2:cc:bb:bd:a5:ff:7a:7e:2a:
7f:e5:6e:bc:50:e4:eb:7d:2c:82:83:e4:5d:ba:17:
c7:4c:46:1a:b2:e7:f8:54:f9:bd:87:5d:4c:a4:e3:
13:01:ee:a8:3c:4e:2e:90:a6:77:9d:19:cc:bb:af:
b9:e7:2e:46:dc:ba:1b:29:8b:a6:71:d6:06:67:ce:
70:00:be:bd:39:7d:21:3e:a9:45:72:63:5a:62:97:
a3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:26:B0:F4:D4:27:2F:3E:A4:4E:EC:9A:9D:3C:51:3F:49:80:1B:01
X509v3 Authority Key Identifier:
keyid:E0:F8:B9:E4:78:56:CB:BA:08:2B:7A:F4:29:7A:1B:72:3D:AF:C4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Pi55HhWy7oIK3r0KXobcj2vxAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/12ebcc-a9ff-402f-a51e-a579662f0950/1/MSaw9NQnLz6kTuyanTxRP0mAGwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/12ebcc-a9ff-402f-a51e-a579662f0950/1/4Pi55HhWy7oIK3r0KXobcj2vxAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.185.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:9f:0a:56:44:e7:a3:64:4b:48:60:57:9f:f9:bd:13:cd:60:
43:8c:4b:62:b4:07:ae:ce:f0:a4:30:a6:17:ee:98:d0:22:7f:
a0:2a:01:6c:0a:32:0b:55:50:f4:29:91:e7:e4:8c:be:24:f9:
80:72:f1:ff:ac:a2:5e:a8:79:44:ca:60:d8:7b:f4:15:89:8d:
6a:fc:ab:b4:e1:9e:5c:d9:8a:14:25:f1:b1:dd:e6:b1:c9:2b:
a8:78:1c:54:e3:aa:c1:a3:82:08:00:f5:45:d2:d3:12:42:c4:
27:17:16:d3:28:63:ee:46:55:58:f1:ec:fc:1d:45:89:5e:e4:
a6:3f:cc:5f:f7:96:f5:c1:ed:5f:98:ae:7f:c0:fd:1a:0d:d9:
9c:c3:ca:03:23:73:f3:a9:e6:80:ec:5d:a3:a4:bb:fa:95:01:
0d:a1:23:fd:c0:86:f3:ab:22:42:bb:52:52:70:a1:93:97:2d:
3e:6c:0d:11:b8:ed:81:d2:e2:19:62:4b:a0:b1:38:85:57:5f:
91:09:d7:65:f1:30:1e:07:e1:18:2d:4c:a6:15:92:e1:32:d7:
20:95:35:1a:61:72:fd:a5:b8:80:dc:18:20:7f:a9:6b:fe:eb:
42:1a:b4:9e:ba:38:c6:50:3e:f3:c3:ba:bb:9c:b9:8f:e7:d4:
97:cd:aa:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:25:49 2024 by rpki-client on console-fra.rpki-client.org