Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/MBqW2T-MvGKz4F_kZsrevZQLr50.roa
File: MBqW2T-MvGKz4F_kZsrevZQLr50.roa (raw, json)
Hash identifier: tZdpnyFjyMOJ5baZcn5m3jLr0kZHjrBxMoxZq5P9mso=
Subject key identifier: 30:1A:96:D9:3F:8C:BC:62:B3:E0:5F:E4:66:CA:DE:BD:94:0B:AF:9D
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 01907208821537E1D32D31E539A3FF67BFE1
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/MBqW2T-MvGKz4F_kZsrevZQLr50.roa
Signing time: Tue 02 Jul 2024 06:01:18 +0000
ROA not before: Tue 02 Jul 2024 06:01:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12479
IP address blocks: 62.32.128.0/19 maxlen: 24
62.32.160.0/19 maxlen: 24
62.32.192.0/20 maxlen: 24
62.32.208.0/20 maxlen: 24
62.32.224.0/19 maxlen: 24
83.231.0.0/17 maxlen: 17
83.231.0.0/19 maxlen: 24
83.231.40.0/24 maxlen: 24
83.231.41.0/24 maxlen: 24
83.231.42.0/24 maxlen: 24
83.231.48.0/21 maxlen: 24
83.231.56.0/21 maxlen: 24
83.231.64.0/18 maxlen: 24
185.124.28.0/22 maxlen: 24
212.169.128.0/17 maxlen: 24
213.143.32.0/19 maxlen: 19
213.143.32.0/24 maxlen: 24
213.143.44.0/22 maxlen: 24
213.143.48.0/22 maxlen: 24
213.143.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:08:82:15:37:e1:d3:2d:31:e5:39:a3:ff:67:bf:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Jul 2 06:01:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=301a96d93f8cbc62b3e05fe466cadebd940baf9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:31:df:3a:ed:15:84:76:87:dd:b1:16:f0:4c:
72:1d:68:f9:e3:f3:81:ef:25:33:08:2d:26:c5:c0:
b7:a8:63:85:69:f3:d3:36:c2:3a:31:7c:ac:c4:aa:
dd:e6:5e:46:31:0a:d3:63:63:33:fc:e3:ce:fc:11:
ca:f8:b7:3d:69:71:13:ce:f9:93:eb:76:ac:d4:da:
12:a6:aa:80:04:30:ea:d1:bb:65:24:ba:fa:70:02:
67:98:5f:0e:47:ac:ef:54:5a:96:f1:7b:10:b1:e5:
84:79:ec:98:2d:03:7f:91:88:57:b1:d6:1a:38:9d:
bf:08:a6:e1:15:88:7c:ee:9a:8a:47:b4:1e:59:e6:
24:bc:ff:73:56:8e:88:6a:75:01:42:46:bd:10:ee:
de:65:e4:cf:fc:a6:ce:ee:2a:9c:e0:b2:9e:f9:97:
b1:1a:f4:78:58:8b:7b:13:3e:46:41:1b:62:8b:3a:
4b:2d:eb:42:f3:64:db:06:5a:6f:d1:10:33:03:9d:
93:a1:cb:92:e6:97:e0:dd:25:a4:8b:1d:6e:50:b1:
a4:69:7b:3e:e5:60:3e:2b:c8:2e:5f:c4:57:72:00:
4d:93:32:16:a9:5a:1f:5c:8c:e5:68:94:74:93:6f:
06:84:c0:d5:28:67:f5:a4:05:a9:a2:06:50:1b:40:
7f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1A:96:D9:3F:8C:BC:62:B3:E0:5F:E4:66:CA:DE:BD:94:0B:AF:9D
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/MBqW2T-MvGKz4F_kZsrevZQLr50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.32.128.0/17
83.231.0.0/17
185.124.28.0/22
212.169.128.0/17
213.143.32.0/19
Signature Algorithm: sha256WithRSAEncryption
86:bc:0e:b0:c0:03:6b:bd:84:c6:23:ec:c3:a5:2d:14:9a:25:
1e:9d:66:90:b8:eb:e2:03:e8:be:52:37:d5:ad:f5:c4:c1:fe:
10:27:68:90:41:5d:44:8a:64:67:72:ab:ce:4f:00:14:b1:a2:
bf:26:d9:a3:37:6b:e6:2d:ec:d5:f3:ff:fb:53:77:fe:49:f2:
b6:02:d6:9c:a7:df:b4:42:5c:ad:ec:71:a9:1a:e7:77:e5:a1:
4e:d2:6c:c7:f7:7c:9f:87:08:e7:9e:f2:fa:99:fc:4f:8d:f7:
d4:93:94:c3:e0:53:1b:cb:4d:88:08:f7:25:81:25:6d:3a:c1:
d0:3b:b6:ae:ab:ca:a2:3d:90:4d:2e:a6:63:29:b3:24:09:96:
c3:b8:ed:84:fd:30:2c:c2:c4:14:71:7b:89:d9:3b:a3:76:26:
8f:82:d7:5b:7d:84:1b:17:2b:bf:9b:04:6c:ef:f8:ee:d3:9a:
f7:3d:af:31:02:ac:1e:19:7f:94:fc:10:07:82:7d:f4:25:b5:
b4:9c:e2:e2:88:3d:75:a2:81:d5:70:a9:3d:14:28:38:a2:92:
6d:50:53:d4:69:45:ea:4d:15:c8:6d:60:0a:e6:55:f2:47:4d:
35:ac:83:8e:1c:7a:8b:ef:b5:bc:2e:4b:b2:a7:22:b8:e6:8d:
44:9e:08:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:30:09 2024 by rpki-client on console-fra.rpki-client.org