Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/sV-fCL7wu_MtNQkZLzhJki-bE5c.roa
File: sV-fCL7wu_MtNQkZLzhJki-bE5c.roa (raw, json)
Hash identifier: JJsYuacbUCkEcEx0/1ifq4ecyvj56lw5vdch5FaRBNM=
Subject key identifier: B1:5F:9F:08:BE:F0:BB:F3:2D:35:09:19:2F:38:49:92:2F:9B:13:97
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 019002878659D5C9254D9AB38F06497FEE28
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/sV-fCL7wu_MtNQkZLzhJki-bE5c.roa
Signing time: Mon 10 Jun 2024 14:22:34 +0000
ROA not before: Mon 10 Jun 2024 14:22:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58262
IP address blocks: 31.40.2.0/24 maxlen: 24
31.40.3.0/24 maxlen: 24
31.40.4.0/24 maxlen: 24
31.40.5.0/24 maxlen: 24
91.226.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.mft
rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:02:87:86:59:d5:c9:25:4d:9a:b3:8f:06:49:7f:ee:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Jun 10 14:22:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b15f9f08bef0bbf32d3509192f3849922f9b1397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b6:d1:dc:4c:9f:e7:61:64:e2:ea:bd:9a:17:
21:6d:6c:d6:3f:88:dc:09:e4:86:9e:76:5c:5c:81:
e2:b9:f4:73:b9:db:33:82:7e:fb:c5:48:f0:25:fc:
1e:96:f0:48:d6:4a:89:b3:8b:d6:32:d1:d7:e3:bb:
99:d9:36:14:f2:23:ca:62:42:46:0c:23:a5:ae:d9:
ba:c2:c9:0d:82:94:27:08:2d:cd:17:7a:ff:93:90:
fa:0b:ef:86:16:24:0b:fe:09:c8:be:ca:a7:7c:f9:
33:0c:a0:42:3e:a5:83:fb:d9:ea:dc:4e:fa:a4:c9:
fa:90:65:84:49:17:38:f5:46:5c:e5:b0:fb:d2:d1:
f0:47:85:16:53:02:51:68:d1:8a:9e:9d:37:7f:c9:
42:28:62:bb:ae:dc:ac:00:61:8a:7c:eb:6f:fe:c9:
d1:14:d7:83:fe:61:e7:05:af:61:db:b6:47:61:fe:
85:e2:12:fb:c6:4b:44:44:d9:12:22:f2:a7:af:d9:
ef:a5:56:87:8d:e9:ba:dd:e1:7a:78:6d:9c:04:69:
49:3d:00:48:08:f4:3a:4d:a6:b4:68:66:b6:28:02:
90:69:43:6b:19:67:ce:70:e0:3e:ce:1a:8d:00:87:
5e:be:d7:4e:45:30:29:55:98:06:33:2b:f0:4c:3a:
cc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5F:9F:08:BE:F0:BB:F3:2D:35:09:19:2F:38:49:92:2F:9B:13:97
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/sV-fCL7wu_MtNQkZLzhJki-bE5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.2.0-31.40.5.255
91.226.224.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:37:4d:a8:eb:f2:4d:10:82:da:99:d7:f6:7e:ac:96:34:25:
bd:9a:3a:4b:19:f8:61:53:69:2e:b4:9a:e2:ba:cd:56:f9:13:
e2:a1:05:7d:70:70:a8:6b:49:d4:28:30:c7:62:67:93:8a:37:
b1:3a:6e:74:ff:e3:33:47:b5:b9:1a:c7:89:d7:0c:7d:ef:dd:
4e:6f:00:2a:cb:1a:d8:31:ac:60:53:d4:ce:8a:fd:7a:17:6c:
14:90:51:03:bc:64:df:63:c0:3a:ec:07:91:87:a3:ba:52:c7:
f0:e8:5d:64:83:ac:bb:92:4a:26:29:bf:71:cb:31:b0:a9:fa:
a8:fb:7c:6e:b6:06:15:84:4d:fd:f2:28:0d:89:6c:c3:98:c1:
c6:eb:08:63:91:5a:ca:b6:c9:5b:9f:30:65:64:34:59:5b:9d:
6c:b0:e0:07:88:b8:10:92:d6:74:80:14:7e:36:86:bf:5a:f5:
f4:4c:82:db:78:ea:7b:66:54:a9:32:30:91:f0:c4:a1:d6:ae:
db:dc:89:9d:91:6f:90:23:11:f1:12:b6:ec:76:f6:10:bf:c7:
9c:b3:bc:d6:b1:69:f2:be:fc:47:96:ab:a7:a4:e6:7b:52:44:
2d:1f:c6:f4:c4:b4:62:80:4e:ec:2b:dd:c3:52:20:bd:99:17:
b9:9d:bd:90
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Jun 23 01:47:27 2024 by rpki-client on console-ams.rpki-client.org