Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/MeXNfT2ZxnKBiRpNPrNk8MqA7Vs.roa
File: MeXNfT2ZxnKBiRpNPrNk8MqA7Vs.roa (raw, json)
Hash identifier: XDQIhblhjSm/FozTA7XG+VuODHIyOdORiylhBHfyBBQ=
Subject key identifier: 31:E5:CD:7D:3D:99:C6:72:81:89:1A:4D:3E:B3:64:F0:CA:80:ED:5B
Certificate issuer: /CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Certificate serial: 018D3564240427B4D2A2DD70D62E41A3320F
Authority key identifier: F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/MeXNfT2ZxnKBiRpNPrNk8MqA7Vs.roa
Signing time: Tue 23 Jan 2024 08:16:11 +0000
ROA not before: Tue 23 Jan 2024 08:16:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48629
IP address blocks: 45.159.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:35:64:24:04:27:b4:d2:a2:dd:70:d6:2e:41:a3:32:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Validity
Not Before: Jan 23 08:16:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31e5cd7d3d99c67281891a4d3eb364f0ca80ed5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d7:1f:c8:8e:e0:15:a9:54:ed:9e:80:98:88:
7b:b8:b5:64:f7:64:36:bd:44:25:ef:76:07:15:4f:
23:d5:3a:08:fd:ac:bf:7d:0b:2c:2b:8d:5d:4f:d5:
ff:3d:48:ea:77:76:6e:c7:73:91:9b:40:77:b3:ac:
1b:b0:51:e8:a4:f6:01:b4:7d:e7:14:d2:9c:9c:ba:
19:98:48:f2:90:52:d8:7b:99:03:0f:8f:6d:f5:54:
a2:3d:e1:b2:5e:d7:0d:0e:20:b9:7a:e3:a6:cc:16:
37:ae:d5:5f:52:82:f9:a2:ab:56:d2:b8:56:ff:9b:
97:f3:4c:d9:0b:36:fa:07:9a:08:cd:9a:43:94:30:
d9:80:bf:f5:bb:c2:45:27:08:39:4f:21:38:dc:d1:
f1:6d:09:61:8d:e9:9f:b3:9e:30:9c:46:6e:b6:fe:
04:ab:e3:59:34:18:ec:52:59:df:ff:63:4e:33:97:
b7:f1:fc:a3:9b:37:d3:b4:ed:59:5d:e5:df:5b:0c:
aa:58:1c:bd:43:90:e2:ed:6a:6c:39:aa:21:52:3f:
c3:7e:6f:50:1a:df:86:93:0b:8c:a9:ea:ab:b2:95:
8f:67:c5:60:cd:0c:98:2e:95:9e:88:b8:c9:8e:5d:
7b:b8:26:32:ec:91:ab:ee:09:76:7c:34:29:ad:be:
39:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E5:CD:7D:3D:99:C6:72:81:89:1A:4D:3E:B3:64:F0:CA:80:ED:5B
X509v3 Authority Key Identifier:
keyid:F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/MeXNfT2ZxnKBiRpNPrNk8MqA7Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.187.0/24
Signature Algorithm: sha256WithRSAEncryption
47:2b:c6:ab:fc:ff:0f:87:f9:41:a0:f5:8f:d3:60:11:b7:1c:
46:b5:0d:a1:90:48:73:52:af:20:a6:3e:cf:79:52:d2:a1:6d:
e7:4a:08:b7:bc:01:48:c0:f4:57:de:20:2c:ed:2b:91:15:33:
75:ea:b6:d0:ae:04:2a:46:35:a9:4c:24:bd:54:17:5f:3d:c7:
c7:00:4d:d7:29:11:b7:b4:39:1c:38:1f:a7:56:f4:bb:6d:a9:
56:54:6a:96:e7:be:ae:09:ad:d9:d4:57:25:e7:24:3c:aa:2f:
22:28:1a:bf:12:20:d6:86:41:0e:3a:f1:eb:b7:b2:2e:5f:65:
46:77:d0:0a:b4:b8:65:12:36:39:db:49:5c:82:ab:a8:5f:ed:
97:e9:1d:49:e9:cb:26:10:b2:03:aa:e1:d7:7a:c9:3f:32:22:
d1:bd:52:2a:ec:a8:f0:a7:c7:9f:24:5c:68:d6:fa:76:21:14:
bf:98:d7:20:b5:93:53:ee:5b:ae:69:03:f8:7d:91:c0:22:df:
f4:05:6d:c7:4b:90:5e:06:ff:3e:b5:c5:85:6c:fd:e3:a0:9e:
02:4a:c6:8d:bc:6d:e6:2b:0e:f7:11:0c:1c:01:ca:42:95:9f:
6a:68:97:57:7d:ae:2c:b7:98:1b:8a:b3:a1:2a:6e:ce:4a:5e:
09:19:79:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 07:08:13 2024 by rpki-client on console-fra.rpki-client.org