Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/MjaJ4E4QZMoAlHb-A_9h4PJA1c8.roa
File: MjaJ4E4QZMoAlHb-A_9h4PJA1c8.roa (raw, json)
Hash identifier: n97YnadBPppZmJ8jtgBVV7yUuZLBO+HxaF/3clnRGyo=
Subject key identifier: 32:36:89:E0:4E:10:64:CA:00:94:76:FE:03:FF:61:E0:F2:40:D5:CF
Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Certificate serial: 01904FF3CAFAC4A019A5A4B150DBEAAAF425
Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/MjaJ4E4QZMoAlHb-A_9h4PJA1c8.roa
Signing time: Tue 25 Jun 2024 15:11:35 +0000
ROA not before: Tue 25 Jun 2024 15:11:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56566
IP address blocks: 89.190.52.0/23 maxlen: 23
89.190.55.0/24 maxlen: 24
212.4.142.0/23 maxlen: 23
212.96.185.0/24 maxlen: 24
213.211.37.0/24 maxlen: 24
213.211.44.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft
rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:f3:ca:fa:c4:a0:19:a5:a4:b1:50:db:ea:aa:f4:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Validity
Not Before: Jun 25 15:11:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=323689e04e1064ca009476fe03ff61e0f240d5cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d9:48:70:2d:4b:21:a8:2d:db:b0:dd:53:37:
72:bb:97:a3:93:cd:03:e0:9e:2a:6e:0a:83:16:36:
15:e4:18:9c:c7:4c:bc:cb:7b:5a:56:bc:dc:e6:40:
e5:d5:75:e0:29:68:be:e4:7d:c2:27:c6:61:f5:f1:
2e:9a:11:0c:d2:fc:a4:30:f0:68:3c:d7:72:e1:ce:
6a:20:14:8f:ab:dc:02:92:4b:af:97:bc:be:b7:16:
11:f9:f6:f5:fd:38:ba:da:d1:5c:d2:81:08:ea:e1:
92:02:34:5f:25:6e:4d:c7:41:40:df:4c:e0:09:f2:
18:9d:c1:23:5d:98:c6:a7:94:a4:c1:4b:0f:e6:df:
1a:f9:af:d7:4a:79:ef:49:e7:ca:75:34:61:22:bb:
fa:91:f6:64:e6:30:9b:a2:22:9c:9b:fa:1d:2b:cb:
b9:08:ea:39:61:f2:a5:10:7e:40:11:76:0b:c1:10:
c2:e4:c3:ec:01:3a:7c:4d:6f:54:74:56:ec:25:ec:
57:56:42:48:ed:f6:a2:99:d6:73:df:d6:34:4e:6b:
2c:94:c1:4b:d5:c3:46:2a:ce:6c:66:fb:09:2f:57:
13:15:5b:8f:83:81:2f:b0:1a:0f:4e:7e:a4:f5:8c:
8b:33:47:df:a3:50:72:2f:ac:b9:f2:92:85:ef:04:
a6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:36:89:E0:4E:10:64:CA:00:94:76:FE:03:FF:61:E0:F2:40:D5:CF
X509v3 Authority Key Identifier:
keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/MjaJ4E4QZMoAlHb-A_9h4PJA1c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.190.52.0/23
89.190.55.0/24
212.4.142.0/23
212.96.185.0/24
213.211.37.0/24
213.211.44.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:18:da:e8:b6:46:45:04:1f:f7:53:55:71:b8:3e:1d:b3:32:
95:7d:50:06:a7:78:a1:23:5e:84:df:9a:38:48:fa:28:b3:03:
94:bf:13:ff:c0:55:0f:3b:86:5d:59:04:e0:c2:04:95:c0:8a:
2e:5a:b8:21:7b:a4:a2:ea:2c:8b:a9:97:99:51:65:c1:a0:e9:
37:00:56:cf:c2:a9:58:de:60:28:c7:7e:4e:9b:93:f1:bf:b1:
17:b2:f7:71:01:a7:e2:90:39:85:ca:67:8c:ef:78:2a:51:55:
f8:da:f2:bb:9d:da:ae:2f:36:59:32:b8:21:20:8c:63:9e:b6:
ca:13:fd:72:e1:0a:a7:92:9b:cc:db:0d:3b:c3:ac:d5:13:c7:
a2:dd:31:71:cb:d3:4e:97:3d:c4:06:3d:31:29:c2:4f:8d:3a:
57:03:b0:d7:70:77:4c:7e:08:a0:64:10:c8:0d:b5:f7:3f:c7:
95:72:1e:f2:6b:38:42:87:81:ac:c7:95:d2:09:99:1d:8d:74:
1f:02:83:fc:fa:ff:dc:64:f0:49:f9:a0:a7:b7:83:8c:b4:92:
cc:d3:b5:da:91:d9:86:c3:83:f0:70:b9:f3:57:7c:9a:a5:ed:
9d:31:d9:30:69:ad:b1:9a:7f:c8:69:1a:db:e4:1e:be:dc:6f:
45:b7:70:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:40:41 2024 by rpki-client on console-ams.rpki-client.org