Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/mJLOFQAaZoC1HhgZ6yZHFCA_Iy8.roa
File: mJLOFQAaZoC1HhgZ6yZHFCA_Iy8.roa (raw, json)
Hash identifier: LvGONG3NXFMqKdYofIOfY/9ZQOnIJeRKK6eMLaqfjFA=
Subject key identifier: 98:92:CE:15:00:1A:66:80:B5:1E:18:19:EB:26:47:14:20:3F:23:2F
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 0192F1B322388DBF27FC2BDAB761ED1C569A
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/mJLOFQAaZoC1HhgZ6yZHFCA_Iy8.roa
Signing time: Sun 03 Nov 2024 11:05:01 +0000
ROA not before: Sun 03 Nov 2024 11:05:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62048
IP address blocks: 94.182.195.0/24 maxlen: 24
94.182.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f1:b3:22:38:8d:bf:27:fc:2b:da:b7:61:ed:1c:56:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Nov 3 11:05:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9892ce15001a6680b51e1819eb264714203f232f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:43:23:7e:89:89:c1:9b:c0:65:6e:18:2b:0b:
2e:6e:2a:6c:34:1b:7f:2e:7d:b8:85:dc:34:e1:4b:
f1:41:e2:b6:e4:48:51:e6:49:95:58:70:37:4c:45:
cb:35:62:42:75:99:7b:f2:7d:3d:0d:c7:bc:c1:58:
d7:13:46:36:f3:8a:17:c5:e9:aa:55:2f:d6:2d:48:
cd:0a:8a:f9:b4:de:4a:d6:f8:8f:d7:b9:4c:f1:a7:
02:d7:91:b6:b3:82:25:61:5b:c8:2d:53:85:83:b7:
4f:e9:f8:58:1a:89:08:4a:1d:2d:d8:5b:fe:3a:5a:
e3:b7:cd:04:25:52:4f:6d:7b:13:69:9b:2f:57:82:
83:ad:75:60:f2:8e:3f:c6:93:15:d6:70:08:1a:53:
09:28:0d:b7:33:3f:ac:60:16:70:48:02:7f:79:c0:
eb:33:89:cd:ef:44:48:1b:08:45:17:98:bc:be:22:
82:1f:82:ba:ad:4f:34:14:16:f7:c4:5e:98:c2:b3:
31:84:c9:76:ab:54:91:f3:21:3e:00:5c:d5:a9:85:
f5:8c:78:dc:9f:48:a4:62:25:93:62:42:68:46:73:
a6:dd:db:74:27:ce:3d:d2:38:c5:51:3f:4a:dd:6f:
cb:57:05:88:95:9e:2f:7e:0b:60:f0:82:39:3d:c9:
31:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:92:CE:15:00:1A:66:80:B5:1E:18:19:EB:26:47:14:20:3F:23:2F
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/mJLOFQAaZoC1HhgZ6yZHFCA_Iy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.182.195.0/24
94.182.227.0/24
Signature Algorithm: sha256WithRSAEncryption
89:b3:eb:17:2d:04:a9:ab:40:ba:73:12:e9:40:5b:46:84:18:
31:a7:65:8b:d5:6e:4b:80:94:e8:a9:32:14:9c:33:1d:56:91:
da:86:ad:c0:e5:fb:47:77:d6:bc:95:56:05:f8:55:78:2c:0a:
8e:1f:c5:03:d6:48:f4:30:7f:6c:ad:38:bb:9c:e1:14:fa:22:
ea:1c:46:76:7a:7b:47:ab:18:00:6f:9c:dc:0e:58:93:b5:e2:
3f:50:4e:8e:d8:47:59:2a:af:04:50:40:1e:03:49:ba:2a:e2:
a3:75:03:b9:db:34:36:68:88:c8:6a:ae:d1:94:13:a7:b0:f3:
53:34:36:97:06:ac:8f:7e:1f:da:3e:eb:78:e3:2a:e0:08:68:
50:0b:8b:5a:02:43:47:b7:02:95:83:20:f3:af:97:8b:89:d8:
73:6c:84:23:97:7e:cb:ed:8a:1f:fa:57:a4:0a:21:43:5d:56:
e8:55:0a:63:ea:90:17:fe:ba:ea:a0:be:6b:40:ba:de:e4:6b:
73:5e:ba:09:60:e6:bc:67:ae:fa:18:ae:36:3d:7a:80:ba:36:
14:bd:e9:62:15:bc:88:8a:30:45:4f:52:9f:66:e4:b3:56:8e:
55:d5:47:b6:27:c7:5d:d0:d4:3c:5f:33:a2:35:9e:38:35:12:
40:c7:49:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:23:05 2024 by rpki-client on console-fra.rpki-client.org