Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/vx864tUrOZ_5hM0OprRm00JUmY8.roa
File: vx864tUrOZ_5hM0OprRm00JUmY8.roa (raw, json)
Hash identifier: OYqhfGPqO4EUTxmIoF3zZIWpfdPPTxPjZBiGqWnylAw=
Subject key identifier: BF:1F:3A:E2:D5:2B:39:9F:F9:84:CD:0E:A6:B4:66:D3:42:54:99:8F
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 018CC8016B6E55F2436F12406FC8B0F2D6C8
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/vx864tUrOZ_5hM0OprRm00JUmY8.roa
Signing time: Tue 02 Jan 2024 02:29:45 +0000
ROA not before: Tue 02 Jan 2024 02:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 31.14.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:6b:6e:55:f2:43:6f:12:40:6f:c8:b0:f2:d6:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 2 02:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf1f3ae2d52b399ff984cd0ea6b466d34254998f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:09:49:6d:9c:40:22:4e:a8:60:29:13:21:30:
63:f6:94:ed:38:3e:39:d4:80:96:ed:95:8e:29:94:
7c:c7:f4:df:20:d2:0e:41:38:f4:85:be:c5:7a:48:
95:58:e8:4c:89:75:b9:ac:7c:94:b0:82:d4:c5:64:
92:b3:00:49:22:0c:1d:24:3e:69:eb:f6:72:3a:df:
f9:c0:fe:12:9e:01:02:14:af:c0:85:0b:8b:37:8c:
9b:a4:63:cb:a2:39:b3:11:68:35:b4:45:84:0a:3e:
8f:d0:4a:d4:b2:b0:8a:e0:b8:b5:61:2b:73:1c:78:
08:4d:1f:51:7c:69:50:86:25:99:54:fc:c3:3c:a4:
7b:1e:3f:f4:57:80:97:ca:67:d8:08:30:17:5c:91:
9b:fd:e7:32:ab:0b:3b:28:4e:55:fe:99:fc:9f:9e:
d1:dc:ef:76:da:de:31:83:2b:4f:9e:74:3d:83:5b:
14:16:48:89:68:ab:54:6d:a8:de:e2:52:e4:9c:58:
91:af:35:cb:02:51:54:65:f5:75:68:c0:04:af:63:
b5:ce:4d:9c:58:13:09:56:63:9c:ec:c1:d6:e6:a9:
c5:b0:e1:fe:4c:77:5a:af:59:49:e2:92:b5:c5:07:
40:2a:88:6a:ce:5d:2d:b6:f0:03:d0:8a:29:45:bd:
1e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1F:3A:E2:D5:2B:39:9F:F9:84:CD:0E:A6:B4:66:D3:42:54:99:8F
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/vx864tUrOZ_5hM0OprRm00JUmY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.75.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:41:ea:8d:44:c7:5c:53:9b:72:d0:dd:e3:17:6a:d4:9d:64:
06:16:98:b3:73:bb:68:12:3d:28:fa:c7:30:6d:75:f3:61:fe:
79:96:f3:d3:1b:76:50:b0:1b:12:eb:d1:02:3d:e0:01:bd:fc:
59:1a:a7:5d:45:57:60:4a:19:b4:b0:82:5b:8f:f4:6d:d7:a9:
8f:22:ce:2f:3a:32:6e:cf:da:b9:b6:ee:3e:98:2f:97:1c:8f:
0a:6f:4a:80:06:f9:8f:33:36:4d:11:85:be:94:e8:e8:e5:f3:
a8:a5:95:c6:06:03:77:7e:98:fc:c4:7a:c6:12:90:ba:b8:1f:
58:1f:5b:35:d6:1c:ac:39:49:c2:55:a1:aa:28:f5:64:92:5a:
ca:07:5a:67:c9:04:c3:5c:f0:e2:bc:b6:86:25:7e:21:22:9e:
4d:b6:67:e3:f4:a0:f1:1e:ab:c9:98:9a:e9:4b:1e:92:31:b1:
b6:2c:0b:c7:40:30:f3:8a:f1:c2:3f:05:e8:97:8e:7b:45:17:
a9:2c:65:2f:35:0c:59:91:79:92:95:c8:7c:2a:20:11:e4:da:
74:0e:d7:2c:da:de:48:ce:01:12:8c:50:fe:3b:64:83:c3:03:
c8:a6:4e:e3:9e:dd:47:a6:fc:52:d2:8d:a4:61:92:46:97:18:
a2:a5:5c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:22 2024 by rpki-client on console-ams.rpki-client.org