Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/_MVaiqig2_qPTk2ZxpoZeNRWJSc.roa
File: _MVaiqig2_qPTk2ZxpoZeNRWJSc.roa (raw, json)
Hash identifier: 56gnGfpbcuNkAEAk3i5WJBSpPY/BKRpIqndp/t6yU0g=
Subject key identifier: FC:C5:5A:8A:A8:A0:DB:FA:8F:4E:4D:99:C6:9A:19:78:D4:56:25:27
Certificate issuer: /CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Certificate serial: 018CC94C05E2089C7E75F4157C040EE02917
Authority key identifier: 14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/_MVaiqig2_qPTk2ZxpoZeNRWJSc.roa
Signing time: Tue 02 Jan 2024 08:30:51 +0000
ROA not before: Tue 02 Jan 2024 08:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15576
IP address blocks: 31.132.8.0/22 maxlen: 22
2a06:6400::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:05:e2:08:9c:7e:75:f4:15:7c:04:0e:e0:29:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Validity
Not Before: Jan 2 08:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcc55a8aa8a0dbfa8f4e4d99c69a1978d4562527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:94:99:1a:6d:03:be:63:1a:3f:7f:18:86:
38:cd:cb:9c:07:6a:fc:2e:3c:ca:c7:f4:8c:88:78:
0c:1d:af:d5:16:72:78:8c:bf:ed:4f:50:af:8c:6b:
74:0e:9e:2a:f9:ed:d1:d7:ba:3e:fd:4a:31:b2:f6:
78:75:de:e3:ab:fb:d7:78:81:e5:e7:da:a9:d5:14:
54:08:37:6a:9c:d3:d3:04:a6:23:46:de:9a:a4:c4:
a4:cb:03:9a:8c:c5:1b:9b:cd:43:fa:33:5a:0a:c7:
af:2b:5f:e9:29:ca:61:fc:07:8d:08:f2:e4:77:31:
71:87:2a:eb:94:d9:69:50:1b:81:a8:f9:b9:53:36:
c6:38:40:36:c8:59:3d:85:1a:59:7c:45:f6:2e:9e:
35:33:7e:98:3c:80:f2:fb:08:2a:6c:eb:38:7e:b7:
fe:e9:83:b7:ad:b2:19:d1:e5:48:01:0f:9a:70:d5:
5b:2a:30:26:c9:5a:51:3a:fa:c0:67:4e:01:05:96:
7e:84:75:9a:e3:10:37:db:27:f3:e4:8d:9c:83:68:
bc:c0:63:43:fd:3e:0c:ed:bb:d9:b0:78:70:3f:b7:
57:17:39:cc:e2:9d:43:3b:a7:bb:b4:3f:fa:24:7b:
8d:89:f1:02:6b:0a:be:76:50:0c:82:c5:38:ac:32:
57:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C5:5A:8A:A8:A0:DB:FA:8F:4E:4D:99:C6:9A:19:78:D4:56:25:27
X509v3 Authority Key Identifier:
keyid:14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/_MVaiqig2_qPTk2ZxpoZeNRWJSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.132.8.0/22
IPv6:
2a06:6400::/29
Signature Algorithm: sha256WithRSAEncryption
6c:98:b9:df:d6:83:1c:87:15:ea:53:30:d6:24:44:da:52:f9:
39:db:02:46:08:b2:e6:bc:6e:86:81:b3:ce:cd:5f:0a:d8:86:
6f:0e:85:45:51:ca:71:38:06:c0:51:a0:92:df:a4:a1:9c:b9:
ab:ad:40:64:4e:61:e0:5a:dd:93:dc:23:0f:24:c5:fa:25:d1:
f5:63:95:2d:bf:29:67:2c:6d:6e:81:56:a4:4e:1b:da:26:46:
bd:a0:b0:73:dc:22:5c:f3:89:20:2d:7e:a6:5f:89:2c:5c:28:
74:d2:1f:e0:77:c4:08:16:0e:04:89:ad:4f:1c:6a:e9:8a:a3:
03:31:d4:54:21:96:df:e8:fc:5e:7f:e4:31:99:af:89:6b:78:
17:e2:19:9a:8e:85:96:12:77:be:cf:bc:86:5b:0c:71:b9:f6:
71:a5:1e:ff:c5:e4:89:c5:87:33:8a:12:52:60:b6:83:12:a3:
13:b3:16:7d:b4:e0:7a:e4:b8:40:91:41:ca:8a:92:2a:08:f6:
35:7b:e2:cc:8d:2b:a8:ac:a5:9c:87:de:5b:f6:4f:81:e0:30:
84:b3:87:e8:ab:8e:77:88:f6:a1:3d:0f:30:f0:36:13:f7:f4:
f4:ef:e7:b0:63:24:87:1a:5b:f2:2d:91:ec:28:6f:6f:10:6e:
a9:20:d9:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 04:28:03 2024 by rpki-client on console-ams.rpki-client.org