Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/MXBVPU9RwA-TLjWtPnFddqfx-AM.roa
File: MXBVPU9RwA-TLjWtPnFddqfx-AM.roa (raw, json)
Hash identifier: 6ORvW9v1jOVZ9pOaIXdOlq00u80Pklr6ffoJJJMm+Ko=
Subject key identifier: 31:70:55:3D:4F:51:C0:0F:93:2E:35:AD:3E:71:5D:76:A7:F1:F8:03
Certificate issuer: /CN=464952bc165441ec6e2e2010c933dc830f361731
Certificate serial: 019064F0E5AF5A4D9F8CC192DAF59ADF7BBB
Authority key identifier: 46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/MXBVPU9RwA-TLjWtPnFddqfx-AM.roa
Signing time: Sat 29 Jun 2024 17:00:27 +0000
ROA not before: Sat 29 Jun 2024 17:00:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39527
IP address blocks: 93.113.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/RklSvBZUQexuLiAQyTPcgw82FzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/RklSvBZUQexuLiAQyTPcgw82FzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jul 2024 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:64:f0:e5:af:5a:4d:9f:8c:c1:92:da:f5:9a:df:7b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464952bc165441ec6e2e2010c933dc830f361731
Validity
Not Before: Jun 29 17:00:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3170553d4f51c00f932e35ad3e715d76a7f1f803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:83:75:3b:f9:ed:42:ed:b4:3a:30:64:1f:31:
74:64:06:be:05:e6:f2:92:d5:c6:05:e3:2b:29:c9:
d1:80:d5:a8:cb:04:0f:d5:a9:ea:ab:80:a9:0b:e8:
2f:7d:40:31:0c:a3:ed:17:db:1b:67:02:e9:4d:37:
3f:9e:7c:df:2b:fd:f2:e8:e9:57:ee:67:d5:59:a8:
bc:ba:b0:65:34:d0:9a:7c:4d:16:63:e5:b7:e2:1e:
44:26:11:02:73:fb:d2:74:b4:52:c1:36:36:2b:87:
f0:ac:ed:90:bb:7b:bd:e0:c9:3f:de:fc:b3:1e:60:
b8:d7:97:b9:6a:03:3e:c4:9d:08:96:dc:3c:ac:36:
d1:58:ab:7d:d9:44:a9:e0:43:8a:c1:68:8d:ba:34:
5f:dd:2e:2c:b0:79:29:7a:46:ea:a5:cd:0b:85:03:
9e:36:ac:6f:e4:02:b7:8a:cc:cd:fc:3a:25:8f:1d:
13:44:1a:c2:71:d5:7a:c5:a0:2f:7d:0f:a6:f8:f5:
bd:84:1e:e7:39:01:08:75:b0:4d:f5:bf:b9:3b:a2:
f0:cc:f2:ae:72:3d:2b:41:29:c8:36:b3:30:d8:de:
42:ec:75:93:e9:5f:cb:a6:c9:72:86:12:d9:58:35:
52:63:2c:59:1c:20:f3:cb:63:38:0b:a0:2f:33:10:
32:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:70:55:3D:4F:51:C0:0F:93:2E:35:AD:3E:71:5D:76:A7:F1:F8:03
X509v3 Authority Key Identifier:
keyid:46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/MXBVPU9RwA-TLjWtPnFddqfx-AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/RklSvBZUQexuLiAQyTPcgw82FzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.128.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:28:89:9f:8c:21:4a:b7:fa:71:f4:10:1f:fc:24:44:41:f4:
98:6d:0e:b9:73:ad:1a:5a:48:79:a6:a4:51:dd:d1:cc:3f:40:
03:29:64:70:a9:d4:54:cb:4f:6b:0f:b7:46:f5:39:c3:7c:67:
c6:15:21:b0:94:4d:a8:00:a4:d1:fb:7e:5c:b8:b6:05:6d:c1:
11:cc:bc:37:c7:fd:09:b3:70:16:b0:0d:67:32:2b:30:68:40:
ac:d2:9b:1a:5b:8b:81:b9:c0:08:a7:2d:63:54:aa:2e:4a:50:
6e:99:f7:63:cf:f2:22:fa:5c:92:72:b7:a6:59:56:de:6e:04:
90:d4:f8:9f:ae:9f:24:2a:bc:3f:d6:5b:3a:63:66:68:ba:0a:
a2:24:7e:fc:c0:aa:71:12:c0:95:91:cc:49:06:ec:3f:4b:14:
fb:f1:f2:50:ad:c4:f3:ac:55:bf:93:24:31:14:36:65:a2:5b:
b4:58:b4:da:57:81:63:7c:e3:dc:69:38:4a:2f:46:4e:35:29:
e0:30:35:22:e4:e0:f7:0f:42:40:48:c3:60:0d:cf:dc:4b:42:
6b:4e:a4:63:19:f9:31:7d:f4:ee:70:86:61:4d:89:e2:99:ad:
2c:13:0b:fd:b8:38:d8:97:f9:b1:f2:57:dd:93:41:78:e8:64:
81:da:16:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBk8OWvWk2fjMGS2vWa33u7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NDk1MmJjMTY1NDQxZWM2ZTJlMjAxMGM5MzNkYzgzMGYz
NjE3MzEwHhcNMjQwNjI5MTcwMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTcwNTUzZDRmNTFjMDBmOTMyZTM1YWQzZTcxNWQ3NmE3ZjFmODAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYN1O/ntQu20OjBkHzF0ZAa+Beby
ktXGBeMrKcnRgNWoywQP1anqq4CpC+gvfUAxDKPtF9sbZwLpTTc/nnzfK/3y6OlX
7mfVWai8urBlNNCafE0WY+W34h5EJhECc/vSdLRSwTY2K4fwrO2Qu3u94Mk/3vyz
HmC415e5agM+xJ0Iltw8rDbRWKt92USp4EOKwWiNujRf3S4ssHkpekbqpc0LhQOe
Nqxv5AK3iszN/Doljx0TRBrCcdV6xaAvfQ+m+PW9hB7nOQEIdbBN9b+5O6LwzPKu
cj0rQSnINrMw2N5C7HWT6V/LpslyhhLZWDVSYyxZHCDzy2M4C6AvMxAySwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDFwVT1PUcAPky41rT5xXXan8fgDMB8GA1UdIwQY
MBaAFEZJUrwWVEHsbi4gEMkz3IMPNhcxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmtsU3ZCWlVRZXh1TGlBUXlUUGNndzgyRnpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wMTA1OGEtNGE4Mi00ODE4LTk3MmQt
ODQyODU4MTIyYmJjLzEvTVhCVlBVOVJ3QS1UTGpXdFBuRmRkcWZ4LUFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8wMTA1OGEtNGE4Mi00ODE4LTk3MmQtODQyODU4MTIyYmJj
LzEvUmtsU3ZCWlVRZXh1TGlBUXlUUGNndzgyRnpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXXGAMA0G
CSqGSIb3DQEBCwUAA4IBAQA9KImfjCFKt/px9BAf/CREQfSYbQ65c60aWkh5pqRR
3dHMP0ADKWRwqdRUy09rD7dG9TnDfGfGFSGwlE2oAKTR+35cuLYFbcERzLw3x/0J
s3AWsA1nMiswaECs0psaW4uBucAIpy1jVKouSlBumfdjz/Ii+lyScremWVbebgSQ
1Pifrp8kKrw/1ls6Y2ZougqiJH78wKpxEsCVkcxJBuw/SxT78fJQrcTzrFW/kyQx
FDZlolu0WLTaV4FjfOPcaThKL0ZONSngMDUi5OD3D0JASMNgDc/cS0JrTqRjGfkx
ffTucIZhTYnima0sEwv9uDjYl/mx8lfdk0F46GSB2hbk
-----END CERTIFICATE-----
Generated at Thu Jul 4 15:24:05 2024 by rpki-client on console-fra.rpki-client.org