Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/54ZyLrx6hFnsnC5LW2uE5qUfA_Y.roa
File: 54ZyLrx6hFnsnC5LW2uE5qUfA_Y.roa (raw, json)
Hash identifier: +cnztQINnVq+/DCBM/b8eyuzgBmHla4sPrY5iUE+St4=
Subject key identifier: E7:86:72:2E:BC:7A:84:59:EC:9C:2E:4B:5B:6B:84:E6:A5:1F:03:F6
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018F51BAF33897A9A24217719ABAB17E8CA1
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/54ZyLrx6hFnsnC5LW2uE5qUfA_Y.roa
Signing time: Tue 07 May 2024 06:25:57 +0000
ROA not before: Tue 07 May 2024 06:25:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48753
IP address blocks: 217.156.66.0/24 maxlen: 24
217.156.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:ba:f3:38:97:a9:a2:42:17:71:9a:ba:b1:7e:8c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 7 06:25:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e786722ebc7a8459ec9c2e4b5b6b84e6a51f03f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:29:2a:3e:4a:f6:eb:fa:23:e9:66:6f:7c:
3f:fa:ca:2d:d6:3b:e5:db:c4:ec:82:c6:f7:d6:f3:
94:17:50:a1:6e:e7:5b:53:7e:69:79:06:cb:53:08:
0b:72:14:83:37:e0:0d:cc:58:cf:94:a5:ed:ac:de:
7d:e8:26:f5:60:39:c5:ba:f6:96:d5:b7:67:e1:80:
b2:3a:67:54:b0:ed:0a:ec:3d:c1:90:9a:2b:fd:3b:
ee:c8:8d:35:91:85:22:5b:2e:8b:c8:ba:7f:60:a1:
43:c0:e7:5b:f0:65:c8:7e:48:03:43:8c:b8:d4:ec:
a1:71:ff:dd:56:4b:a6:c1:6c:55:76:12:39:38:3f:
29:63:56:04:8b:e4:bc:f1:0b:be:9d:d7:86:98:09:
0b:e4:a3:fb:b1:17:c7:f8:0b:e4:d8:97:8c:c0:f1:
8f:ff:8b:92:0d:ab:e8:d1:6c:89:cc:1c:04:ab:82:
35:6d:34:a6:de:a5:ff:11:b7:ef:c3:44:3c:d2:21:
0b:cc:3d:ed:5b:8a:b2:f6:a5:8a:e9:26:57:a3:f9:
86:9f:e2:a3:4a:8f:91:f4:f6:f7:92:0b:1b:6d:76:
f2:67:53:2a:8d:1f:10:77:ab:1e:26:62:1f:cd:0b:
f8:5a:5a:33:6a:33:37:ec:ea:f3:41:1b:02:2f:d2:
d3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:86:72:2E:BC:7A:84:59:EC:9C:2E:4B:5B:6B:84:E6:A5:1F:03:F6
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/54ZyLrx6hFnsnC5LW2uE5qUfA_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.66.0/23
Signature Algorithm: sha256WithRSAEncryption
96:d7:42:f7:4f:ab:88:aa:38:b2:c9:ea:d7:5c:f1:dc:8c:a1:
26:62:00:df:b6:4d:bb:c9:41:8a:4a:56:c0:fa:4f:25:d8:39:
1c:61:22:45:bb:9a:99:0d:f8:25:c4:f7:82:4e:e7:3c:a0:94:
04:43:91:3f:c1:98:6f:79:f5:5c:21:ac:78:12:aa:5f:fc:04:
9e:5d:d2:2b:aa:47:80:e7:43:a0:9a:d4:90:73:c6:e9:ae:f2:
16:da:d6:88:61:0b:63:97:a2:f5:73:3d:5f:e2:7f:27:ba:16:
2b:2f:88:6b:54:e1:a3:b2:ac:14:c1:75:30:87:2e:84:1f:cd:
78:b4:09:71:b1:48:16:46:30:bb:1d:00:be:16:81:7c:44:7a:
c8:5a:d8:91:9d:7e:a0:2d:22:d7:90:5a:b6:25:04:cf:d5:c7:
83:be:ae:4f:b8:c3:bf:cc:3b:53:cd:fc:0f:49:c8:66:4b:7b:
51:21:47:68:13:2c:cf:07:d1:38:d1:01:c7:5f:79:a7:1e:d0:
31:bd:0c:a6:f9:cf:8f:d7:fd:36:7a:f1:37:e5:0c:20:da:e8:
dc:dd:aa:93:fc:b4:23:8f:03:12:51:b8:2c:1c:f2:0f:00:2b:
da:c5:e5:f4:50:c0:c0:11:80:1d:98:d3:b9:e3:2c:33:5e:bb:
de:c0:4a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 06:51:15 2024 by rpki-client on console-fra.rpki-client.org