Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/l-KBvE1QB0M1sD2x2cSMjiQQiJM.roa
File: l-KBvE1QB0M1sD2x2cSMjiQQiJM.roa (raw, json)
Hash identifier: 8bGECK+/xgRTfUfcIO9qgGH7QnCeaugge50cDg1EL5M=
Subject key identifier: 97:E2:81:BC:4D:50:07:43:35:B0:3D:B1:D9:C4:8C:8E:24:10:88:93
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018FD2BB658232129924B3039A4BE0B4A7F6
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/l-KBvE1QB0M1sD2x2cSMjiQQiJM.roa
Signing time: Sat 01 Jun 2024 07:37:27 +0000
ROA not before: Sat 01 Jun 2024 07:37:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 31.43.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 19:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d2:bb:65:82:32:12:99:24:b3:03:9a:4b:e0:b4:a7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jun 1 07:37:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97e281bc4d50074335b03db1d9c48c8e24108893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:25:4e:d4:5a:f6:92:12:28:4c:a1:6c:74:2a:
db:b6:a2:16:9b:1f:8b:33:f4:52:8d:c5:05:94:0b:
15:30:e7:d4:83:7e:db:d9:1b:2e:42:9b:60:f6:02:
5d:55:30:cf:2c:b7:cd:af:f1:5c:2b:9b:c3:3b:9c:
8e:b0:94:53:54:bc:c6:3b:00:6f:3b:0e:81:07:b0:
6f:dc:d9:49:f0:b7:62:34:a9:d8:4f:19:89:f8:8c:
5f:6d:c0:d6:36:2e:c4:56:40:07:88:9d:5f:2e:29:
dd:7a:27:87:9b:5c:b3:66:7e:cd:5c:d1:34:8d:b5:
c8:7a:96:4c:8c:ab:cc:68:fc:7a:a1:25:7c:35:c7:
31:2d:64:aa:55:ab:cb:ea:dd:0d:b4:2d:9b:47:1d:
cd:60:35:47:25:ab:6c:63:15:cb:84:5a:7f:0e:58:
fb:30:8f:26:28:5e:60:b5:60:1b:41:1d:ca:8a:00:
d3:35:db:52:e5:3b:08:77:87:1b:f7:ef:9c:0a:4b:
3a:9a:d5:77:f7:c5:d7:88:5d:78:02:ae:11:2b:6f:
b2:36:7b:f4:b5:c8:ca:77:85:74:1a:11:32:21:f3:
20:b0:ac:0a:0b:70:c8:f8:7a:b8:ea:34:e7:5c:b3:
5e:4b:be:69:14:df:65:e4:e1:bb:e2:c6:04:4f:44:
47:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E2:81:BC:4D:50:07:43:35:B0:3D:B1:D9:C4:8C:8E:24:10:88:93
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/l-KBvE1QB0M1sD2x2cSMjiQQiJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.166.0/24
Signature Algorithm: sha256WithRSAEncryption
11:7d:d0:f3:33:17:e1:66:4a:c5:9e:e1:95:b1:05:80:22:90:
47:06:ea:a0:f4:36:98:7d:3c:82:74:c6:51:46:72:19:13:15:
a6:59:99:0c:dc:07:41:58:c4:96:20:bb:ad:05:b0:ac:26:96:
19:04:05:54:fc:6e:ca:f8:1a:ac:f8:1f:3a:c8:cd:b7:35:84:
79:db:40:44:67:eb:7c:ba:af:e5:80:85:20:28:9d:18:ab:10:
6a:26:8c:c3:fa:68:6a:65:13:43:a6:df:1b:9b:1f:15:13:e2:
11:e9:e3:f8:10:ab:d1:4d:99:4f:07:31:62:b2:7b:58:84:22:
8b:fc:1e:e6:5e:cd:b7:b5:a6:a3:8b:cc:f8:e9:64:a7:d1:7c:
15:40:1f:de:ed:b7:6e:4f:f1:59:ae:fe:43:88:01:1f:46:76:
81:f3:25:70:3d:a6:f5:52:a9:e4:66:bd:01:6c:52:8d:18:b5:
ef:c0:a5:fd:1a:2e:96:2d:c7:d2:7c:01:50:cc:bf:93:3a:27:
7c:2e:0f:a9:bc:d1:cc:22:8d:02:cc:2b:3d:5a:fd:24:c4:a9:
99:ed:0e:14:e1:eb:6d:8a:88:6b:85:e3:b3:4e:a5:34:a9:20:
9c:6c:d9:a6:52:e4:90:f1:82:86:89:d5:51:62:1e:c1:ba:a3:
9d:50:65:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 04:08:46 2024 by rpki-client on console-fra.rpki-client.org