Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/3Vw_kWWRb3icvjig6N0_cHXQuyg.roa
File: 3Vw_kWWRb3icvjig6N0_cHXQuyg.roa (raw, json)
Hash identifier: Eiz2leRLXL49slH7RaYA+SUZeu5DbVsOQ8DZCyIXEp0=
Subject key identifier: DD:5C:3F:91:65:91:6F:78:9C:BE:38:A0:E8:DD:3F:70:75:D0:BB:28
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 018FE8B72570E9EC7B04C723E9F6D94A7218
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/3Vw_kWWRb3icvjig6N0_cHXQuyg.roa
Signing time: Wed 05 Jun 2024 14:04:27 +0000
ROA not before: Wed 05 Jun 2024 14:04:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 81.31.234.0/23 maxlen: 24
81.31.242.0/23 maxlen: 23
81.31.244.0/22 maxlen: 24
185.84.160.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:b7:25:70:e9:ec:7b:04:c7:23:e9:f6:d9:4a:72:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Jun 5 14:04:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd5c3f9165916f789cbe38a0e8dd3f7075d0bb28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:74:39:73:7b:7c:9f:b9:af:ca:1d:50:57:7d:
af:77:bc:76:97:26:e7:8a:94:5c:01:83:c8:17:71:
ba:e8:1e:82:a4:67:d8:27:88:b8:33:90:00:36:2d:
79:78:a7:c1:28:9a:60:f6:77:01:ef:9d:88:c6:98:
17:4f:8a:0b:85:84:a7:a8:7e:c6:98:fd:df:8d:fc:
d8:3c:8e:1b:83:96:4b:92:b1:5e:77:d8:e8:1f:ed:
a2:9c:da:eb:ca:df:ca:09:5d:e6:f9:33:c5:ea:85:
14:c1:10:a0:22:db:a4:91:64:de:d5:f5:31:07:d0:
7d:b6:f3:4f:56:2a:9a:bf:4f:8b:71:10:e1:fb:b9:
f6:62:60:fc:1c:69:94:7c:01:20:99:16:09:f7:c4:
52:17:02:90:89:3e:fa:e9:c4:79:1b:0d:3a:1a:b5:
0d:a8:8f:34:c3:30:4a:c5:6b:84:bc:9d:6a:4f:5b:
b7:4a:fc:b6:03:db:14:6b:6f:95:2c:42:83:55:a6:
cb:8c:30:42:68:97:57:a8:32:69:47:61:75:3c:88:
25:a0:eb:bd:7c:4f:fd:d9:0f:83:a4:07:3a:c0:de:
53:c9:02:9f:a7:ac:02:08:61:8e:a2:5f:42:24:29:
e0:74:68:49:20:8e:65:65:bb:f4:f3:64:1f:b5:34:
b4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:5C:3F:91:65:91:6F:78:9C:BE:38:A0:E8:DD:3F:70:75:D0:BB:28
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/3Vw_kWWRb3icvjig6N0_cHXQuyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.234.0/23
81.31.242.0-81.31.247.255
185.84.160.0/23
Signature Algorithm: sha256WithRSAEncryption
33:90:45:35:66:07:91:22:26:57:21:1c:dd:ba:32:25:1e:01:
5e:e6:6a:e3:af:43:80:87:c4:41:24:f1:c0:aa:91:66:60:cb:
4c:79:29:6a:45:25:09:6e:2f:6b:d4:37:6e:25:c0:03:5d:cb:
4a:df:7e:8a:e8:2d:67:81:bf:ee:7a:f7:25:5d:81:6f:7f:7c:
6f:1e:4a:ff:76:5d:41:36:3c:2c:9d:71:71:43:ef:19:0b:d0:
4c:05:cc:f6:05:ec:9c:cf:1d:99:50:ce:20:86:29:51:5c:42:
fa:fc:12:18:7e:57:a4:97:c7:61:84:a4:42:21:df:ea:f5:6e:
29:a3:76:4a:cb:b3:bd:00:51:09:3c:ca:b6:7f:2f:68:68:e1:
79:8b:26:01:fe:04:74:24:0d:7b:39:77:fd:80:4c:91:58:39:
03:20:c3:6e:3f:e5:57:7b:0a:36:6e:df:e7:e8:4a:ad:b3:e5:
46:ec:87:ab:bb:9c:7c:2c:8d:47:d9:07:71:e1:fc:a7:44:4a:
1a:cb:63:6c:08:0f:c9:0b:94:99:8a:6c:c3:2c:12:aa:03:9f:
87:fe:02:c9:f6:06:3b:d6:fb:e7:05:88:1e:07:12:42:fe:cd:
6f:46:4f:96:e3:11:d3:3a:c8:78:75:c0:61:19:fa:c8:38:6a:
6c:d4:20:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:04:13 2024 by rpki-client on console-ams.rpki-client.org