Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/67603a-f529-4b18-99fb-503b99d5ad68/1/sr6PCa9_38Ez9Hze5m1MiguYwPc.roa
File: sr6PCa9_38Ez9Hze5m1MiguYwPc.roa (raw, json)
Hash identifier: rr6ZMldSzqdHunlxPLwiQmHxCA8E0DSieFrs+QaEJgk=
Subject key identifier: B2:BE:8F:09:AF:7F:DF:C1:33:F4:7C:DE:E6:6D:4C:8A:0B:98:C0:F7
Certificate issuer: /CN=6a54370c4ba9bde2b98376bf8f942a94926c1519
Certificate serial: 0192998DFBAAB50927341DD052A8331A0FE3
Authority key identifier: 6A:54:37:0C:4B:A9:BD:E2:B9:83:76:BF:8F:94:2A:94:92:6C:15:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alQ3DEupveK5g3a_j5QqlJJsFRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/67603a-f529-4b18-99fb-503b99d5ad68/1/sr6PCa9_38Ez9Hze5m1MiguYwPc.roa
Signing time: Thu 17 Oct 2024 08:17:51 +0000
ROA not before: Thu 17 Oct 2024 08:17:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56656
IP address blocks: 31.134.96.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/67603a-f529-4b18-99fb-503b99d5ad68/1/alQ3DEupveK5g3a_j5QqlJJsFRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/67603a-f529-4b18-99fb-503b99d5ad68/1/alQ3DEupveK5g3a_j5QqlJJsFRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/alQ3DEupveK5g3a_j5QqlJJsFRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:99:8d:fb:aa:b5:09:27:34:1d:d0:52:a8:33:1a:0f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a54370c4ba9bde2b98376bf8f942a94926c1519
Validity
Not Before: Oct 17 08:17:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2be8f09af7fdfc133f47cdee66d4c8a0b98c0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:01:19:5c:7b:35:c0:08:1b:38:d5:19:fc:bf:
27:3f:11:d5:f8:b0:63:c8:36:6e:5e:ba:15:00:4e:
d2:79:66:b5:13:f1:e4:a0:f0:6e:08:fd:3e:e7:44:
35:af:2e:72:94:2b:20:2e:76:68:c3:89:2c:40:f3:
b0:98:40:6c:fa:ad:2a:84:9c:71:42:98:cf:5d:8b:
69:40:46:ad:ca:fe:38:3a:db:34:07:90:3b:73:52:
45:94:aa:c2:2f:58:4c:33:ac:6e:c9:47:dd:cf:ba:
d2:36:3f:a7:2c:5e:c3:26:45:f8:48:48:bc:60:72:
58:98:1f:c5:0d:33:9e:20:23:27:fc:ab:6e:61:a2:
b5:4a:01:98:22:38:9a:c6:79:2f:6f:cf:c6:8f:30:
c3:45:e5:42:81:83:fe:18:df:ad:31:c0:bf:5b:a9:
c2:5b:b9:9c:7f:4b:31:cf:e1:67:53:2d:1b:6a:8a:
f0:02:e3:36:52:da:81:09:c3:25:19:21:9f:0c:a6:
68:50:ea:cf:53:52:c5:4c:2c:94:f8:f8:a3:40:c3:
ca:b6:4c:e9:3f:38:0c:9b:e9:2a:b9:d6:fb:4e:34:
8b:e6:f5:f4:d0:de:c9:c7:33:fd:45:e5:eb:09:c3:
e5:ac:a5:35:50:80:b3:20:96:55:7a:73:1b:58:c6:
7d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:BE:8F:09:AF:7F:DF:C1:33:F4:7C:DE:E6:6D:4C:8A:0B:98:C0:F7
X509v3 Authority Key Identifier:
keyid:6A:54:37:0C:4B:A9:BD:E2:B9:83:76:BF:8F:94:2A:94:92:6C:15:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alQ3DEupveK5g3a_j5QqlJJsFRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/67603a-f529-4b18-99fb-503b99d5ad68/1/sr6PCa9_38Ez9Hze5m1MiguYwPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/67603a-f529-4b18-99fb-503b99d5ad68/1/alQ3DEupveK5g3a_j5QqlJJsFRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.134.96.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:b4:25:e0:ba:d1:ca:58:c4:7c:36:0d:f1:22:52:f1:53:30:
12:e9:a9:4f:a5:24:86:7b:6b:f9:0c:4b:83:55:51:ec:77:a9:
fa:3a:ac:04:ef:83:1a:5f:57:35:d7:3d:cb:b9:d9:ed:94:8b:
d4:9e:d6:9c:fa:df:21:10:8f:ec:f3:50:4b:e1:4b:f2:79:c1:
74:2a:b5:2d:2e:4c:9e:18:36:d1:d1:bb:11:f6:8f:da:eb:70:
25:83:b1:7d:f1:66:be:4c:0c:67:80:13:40:61:00:29:05:c4:
d6:31:cd:b1:e6:0f:32:7f:2a:a9:3c:e8:e6:a7:11:b1:37:73:
19:6b:8e:2f:e9:2e:f9:9d:3b:76:64:2f:f5:ef:53:eb:d1:cd:
66:e4:3e:bd:0a:b2:fb:d1:1f:31:f0:a0:07:c3:0d:e4:69:cf:
81:e1:59:2b:d6:79:e9:05:fc:73:31:fa:ad:13:e3:a2:e5:a6:
71:0a:d1:18:45:ce:d1:85:e6:fa:47:e7:35:52:49:c1:5f:16:
bb:bb:ff:1e:56:84:74:ac:8d:8c:62:58:bf:29:38:c7:fd:ef:
fe:c4:14:1b:36:da:f1:2a:de:89:c8:d2:b1:94:17:71:3a:a0:
9a:72:9b:0c:da:1a:56:12:8a:59:c3:63:7c:b6:1a:49:b2:6e:
23:71:56:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:59:30 2024 by rpki-client on console-fra.rpki-client.org