Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/JvrYlm8NmBlKteNpxQ7jZB80ah4.roa
File: JvrYlm8NmBlKteNpxQ7jZB80ah4.roa (raw, json)
Hash identifier: nb9ptXWFzxYBxF3iGHtoKMBPKCkzK0ensp6c0WE1yqc=
Subject key identifier: 26:FA:D8:96:6F:0D:98:19:4A:B5:E3:69:C5:0E:E3:64:1F:34:6A:1E
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 018CC86F044A82D7AF013DFD73DD45897B56
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/JvrYlm8NmBlKteNpxQ7jZB80ah4.roa
Signing time: Tue 02 Jan 2024 04:29:27 +0000
ROA not before: Tue 02 Jan 2024 04:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.188.253.0/24 maxlen: 24
91.188.254.0/24 maxlen: 24
91.188.255.0/24 maxlen: 24
81.31.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:04:4a:82:d7:af:01:3d:fd:73:dd:45:89:7b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Jan 2 04:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26fad8966f0d98194ab5e369c50ee3641f346a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d7:49:73:5b:17:d7:7c:d0:fe:85:94:c4:aa:
a3:c9:82:5f:0c:b2:38:23:a3:99:e8:06:36:3a:b8:
80:20:9b:4b:67:e3:fe:40:a8:16:ee:8c:54:03:2a:
ae:d4:c6:57:d5:62:06:1b:12:54:ff:b6:78:a2:12:
83:9e:2a:c2:18:e1:52:b3:99:35:f9:62:96:a7:58:
bf:f9:f2:5d:2f:dd:47:fc:bf:6d:3f:76:66:ad:e4:
d5:f5:bb:a3:0f:e2:1b:a5:1d:6f:e4:a0:46:6b:a0:
7b:8d:e2:c9:da:6b:fc:ec:ae:04:61:1b:72:9b:d9:
ef:87:0d:bf:42:6c:c6:a9:14:68:dd:60:9c:3e:b4:
94:28:2b:47:86:0d:98:bb:36:42:00:85:ed:06:7d:
b8:b0:80:d6:54:26:ea:92:4b:32:58:3a:3a:26:cf:
53:39:79:9a:18:92:6d:8e:70:d3:8f:a0:98:41:71:
53:ee:a2:d2:c7:be:6e:95:c3:67:b4:c4:95:e9:3f:
e0:f7:cc:71:b2:46:8a:fb:89:36:1e:3a:86:2d:ab:
2e:10:c7:2a:4f:97:12:d5:b3:a4:c4:aa:2a:6d:18:
59:36:fd:62:f6:35:b4:02:48:2a:2d:ee:16:95:6a:
6d:36:4e:56:4c:bf:ae:12:9d:0e:7a:c3:d6:b2:14:
e9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FA:D8:96:6F:0D:98:19:4A:B5:E3:69:C5:0E:E3:64:1F:34:6A:1E
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/JvrYlm8NmBlKteNpxQ7jZB80ah4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.198.0/24
91.188.253.0-91.188.255.255
Signature Algorithm: sha256WithRSAEncryption
1c:fe:31:ce:1f:34:ef:5f:49:99:5c:5b:8d:02:6b:2b:87:55:
06:46:3d:18:04:76:c1:7e:f2:6c:fc:9e:c0:e7:44:0e:c6:1f:
e2:5b:0c:25:a7:c2:fc:71:34:79:cc:82:a6:04:d7:a3:fe:be:
05:56:3d:8d:56:b9:f1:e3:f1:90:c3:f4:ca:8a:d9:3a:9e:da:
34:4a:ab:5d:55:21:a2:54:8f:1a:03:29:c9:09:47:80:c2:7b:
c1:5a:26:b4:88:15:6e:99:83:8c:3c:4b:06:97:3b:57:be:5c:
50:48:bf:f8:8d:84:87:08:99:5e:cc:4a:13:ae:dd:99:dc:b0:
59:c9:e9:cf:e2:bd:f2:8b:06:20:c3:ad:5c:6b:69:1a:5e:4c:
85:a0:f3:41:a5:4b:21:f0:9b:f3:72:5c:d0:96:52:3d:c5:33:
2e:4a:64:c1:e5:a5:a4:ed:4b:a2:83:5f:e1:d1:55:00:72:52:
5f:ce:14:52:b7:69:b6:d6:ba:a2:19:c4:5b:fa:b4:3b:ff:8d:
41:b3:eb:d2:b6:7c:21:7d:04:f9:b3:75:ca:f4:00:a4:29:c5:
73:33:12:4f:7d:27:7d:2c:20:63:7b:da:fb:4e:50:ff:42:e0:
4b:3e:12:50:e5:11:4f:12:48:6f:cf:30:bd:02:3b:48:72:b8:
be:71:9a:d4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu May 2 21:24:25 2024 by rpki-client on console-fra.rpki-client.org