Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/4d4eef-7246-460e-b946-ece7826787b4/1/Mb6A9YCHtbO0OxFyqIUJV_875pE.roa
File: Mb6A9YCHtbO0OxFyqIUJV_875pE.roa (raw, json)
Hash identifier: 86ohQcxKCl9r+PszAJGVAlnq7xE4JIvRmQFdzvsWarY=
Subject key identifier: 31:BE:80:F5:80:87:B5:B3:B4:3B:11:72:A8:85:09:57:FF:3B:E6:91
Certificate issuer: /CN=19cbd0a4136294215b1c243b0f0218cfdd565d57
Certificate serial: 018CC6B8FC0A298CA366889F5E4E2846DF9D
Authority key identifier: 19:CB:D0:A4:13:62:94:21:5B:1C:24:3B:0F:02:18:CF:DD:56:5D:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GcvQpBNilCFbHCQ7DwIYz91WXVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/4d4eef-7246-460e-b946-ece7826787b4/1/Mb6A9YCHtbO0OxFyqIUJV_875pE.roa
Signing time: Mon 01 Jan 2024 20:31:01 +0000
ROA not before: Mon 01 Jan 2024 20:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31735
IP address blocks: 193.28.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/4d4eef-7246-460e-b946-ece7826787b4/1/GcvQpBNilCFbHCQ7DwIYz91WXVc.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/4d4eef-7246-460e-b946-ece7826787b4/1/GcvQpBNilCFbHCQ7DwIYz91WXVc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GcvQpBNilCFbHCQ7DwIYz91WXVc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:fc:0a:29:8c:a3:66:88:9f:5e:4e:28:46:df:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19cbd0a4136294215b1c243b0f0218cfdd565d57
Validity
Not Before: Jan 1 20:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31be80f58087b5b3b43b1172a8850957ff3be691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:89:cd:b9:86:c3:48:81:9c:89:23:06:c1:fe:
b7:4a:77:bc:ef:07:9a:9a:a2:30:88:5e:f7:68:e7:
58:e5:a7:85:2a:bb:9b:cc:fb:28:22:79:5a:80:9b:
93:1b:7d:0c:3b:59:80:ee:6d:97:9b:a8:ba:0e:97:
bc:4e:34:ee:f2:ed:66:4e:84:25:06:67:c4:b5:f5:
52:8f:88:40:33:23:00:5e:31:09:ae:39:80:d4:9e:
af:9c:2b:01:9a:c9:f6:82:1c:13:c6:6b:05:a2:8d:
b6:47:ef:06:b5:43:49:47:e8:8e:54:f2:cd:37:2d:
b1:fe:a6:6b:a3:02:eb:25:4a:26:95:77:f4:81:f1:
9a:57:95:88:09:a6:5f:02:f0:9e:ad:ba:83:08:c2:
6a:6b:35:0e:c0:84:a0:26:f5:a6:cc:7d:98:bd:41:
12:68:c5:29:11:99:3c:c6:13:fe:dc:d6:01:e9:f7:
76:28:9c:5a:c2:71:1d:96:37:66:dd:4d:5f:2b:64:
2a:1d:2f:0e:fa:65:60:83:cc:02:f6:bf:11:9d:22:
3b:fe:50:1b:de:08:44:e7:97:82:41:d4:f8:b1:23:
07:a4:90:1c:1d:4a:5f:7e:77:b9:a3:e8:78:a4:14:
85:e5:ca:46:5e:7f:16:15:18:2a:f4:61:25:8c:01:
e0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BE:80:F5:80:87:B5:B3:B4:3B:11:72:A8:85:09:57:FF:3B:E6:91
X509v3 Authority Key Identifier:
keyid:19:CB:D0:A4:13:62:94:21:5B:1C:24:3B:0F:02:18:CF:DD:56:5D:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GcvQpBNilCFbHCQ7DwIYz91WXVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/4d4eef-7246-460e-b946-ece7826787b4/1/Mb6A9YCHtbO0OxFyqIUJV_875pE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/4d4eef-7246-460e-b946-ece7826787b4/1/GcvQpBNilCFbHCQ7DwIYz91WXVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.180.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:f6:6e:50:7d:4c:e6:a9:67:81:7b:a1:aa:b6:22:67:ff:59:
f5:f7:31:96:6b:ae:1a:75:41:9d:80:4d:10:2b:39:05:f2:ef:
ae:e9:1c:ee:47:41:4e:d5:b3:4b:b4:65:73:d2:d8:d0:97:56:
bd:9f:9a:9e:fb:8d:3c:e4:6b:9a:fd:b8:de:32:f3:53:15:66:
f8:2c:63:74:08:67:93:8a:3f:e1:42:88:60:10:ef:d7:3e:45:
4c:93:0d:37:b5:30:8d:dc:0d:d6:70:8d:c9:bb:4e:f0:68:fd:
5a:7f:76:c7:29:b7:8b:5e:24:10:c3:7b:b9:37:6e:82:ff:26:
c5:0d:08:7d:2f:64:c7:8d:f4:28:75:43:b4:f8:f9:9d:57:85:
d7:54:73:e0:90:87:0a:35:5d:31:46:88:2a:e7:9a:ea:f6:aa:
32:e8:ba:39:67:62:82:f8:d4:78:c7:9f:b8:ff:4a:d0:59:36:
54:e7:e5:75:6b:19:58:09:34:a0:c2:33:0f:86:b6:45:be:9b:
5c:2a:b2:2e:bf:8f:d8:48:6a:0c:44:28:59:fc:e1:88:79:30:
6e:39:54:d1:e4:8d:26:97:fd:f0:b4:32:47:5b:a7:19:dc:b3:
47:34:ed:98:6d:f5:d1:f0:28:3b:af:55:0d:78:53:a7:0a:93:
b0:89:c0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:12:29 2024 by rpki-client on console-ams.rpki-client.org