Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/VjvBLSk-7cgf3-S02-BDzE6nM08.roa
File: VjvBLSk-7cgf3-S02-BDzE6nM08.roa (raw, json)
Hash identifier: +cqtknRUTy5O5CIGUdcr+CLQoiTvN49kygI1Hi9dSik=
Subject key identifier: 56:3B:C1:2D:29:3E:ED:C8:1F:DF:E4:B4:DB:E0:43:CC:4E:A7:33:4F
Certificate issuer: /CN=942588b91da9cca81b49e603a988e2b1eabddc98
Certificate serial: 01918EA7BA981824DE317764D4F8D6722BF6
Authority key identifier: 94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/VjvBLSk-7cgf3-S02-BDzE6nM08.roa
Signing time: Mon 26 Aug 2024 12:27:22 +0000
ROA not before: Mon 26 Aug 2024 12:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15596
IP address blocks: 31.42.112.0/22 maxlen: 22
31.42.120.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:a7:ba:98:18:24:de:31:77:64:d4:f8:d6:72:2b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942588b91da9cca81b49e603a988e2b1eabddc98
Validity
Not Before: Aug 26 12:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=563bc12d293eedc81fdfe4b4dbe043cc4ea7334f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:63:81:e4:35:15:e5:75:e0:f8:6d:fe:e3:90:
ef:d8:e4:18:1e:b0:05:64:fe:dd:ef:d4:40:3d:82:
08:3f:0e:b8:a4:1a:df:81:c8:1b:2a:d0:29:a3:0e:
f7:9e:b4:d6:54:05:1c:e6:d8:7e:6d:f4:06:8f:7d:
39:77:a3:06:52:2c:87:0d:2f:15:06:61:fa:f7:9f:
6e:1a:57:5b:13:19:9d:3e:ed:06:ac:21:78:c6:ea:
a3:e9:a2:68:31:5d:18:f7:e9:52:87:fa:8a:a3:19:
f9:dc:70:c3:e9:e4:52:b1:d3:11:2a:3f:2d:c1:f1:
83:03:5e:5e:7f:58:2f:13:a3:10:1a:66:d2:5e:95:
bb:fb:50:e5:c9:99:13:a0:16:25:be:8d:93:27:d4:
ff:1a:1c:3a:8a:f1:32:b9:48:51:28:c1:9d:2e:58:
66:fb:fa:f3:d8:0e:78:9e:6c:0a:66:4d:0e:68:ab:
8a:48:0c:85:0c:f9:5f:64:25:87:7a:d3:d2:5c:a1:
68:7a:b5:be:ad:1b:bb:fe:e8:4e:02:fa:65:41:52:
9a:d0:92:6d:43:fa:44:4e:d6:6c:64:12:8b:83:6e:
0e:db:69:b8:69:94:35:10:b1:5a:bc:af:1c:56:a2:
a2:54:3b:e1:9e:35:2f:b4:74:de:6b:ab:9b:d7:a2:
49:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3B:C1:2D:29:3E:ED:C8:1F:DF:E4:B4:DB:E0:43:CC:4E:A7:33:4F
X509v3 Authority Key Identifier:
keyid:94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/VjvBLSk-7cgf3-S02-BDzE6nM08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.112.0/22
31.42.120.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:46:de:03:1b:5c:77:72:c2:b6:b1:2f:f2:e3:95:66:4d:49:
d0:3f:22:f2:ed:82:53:aa:dd:c1:d7:f4:cb:f5:99:6f:42:94:
3c:d4:97:4f:b7:83:50:b4:54:b9:20:21:2a:5e:92:f9:6e:0c:
f4:63:dd:f6:08:50:bf:26:8d:1e:92:2b:6b:2e:c5:d7:f8:45:
78:59:ca:21:fb:b8:6c:49:1f:e0:8e:1f:04:9c:21:ce:cd:a4:
a6:c9:63:16:2d:a9:ed:6d:81:0e:97:07:25:45:7a:d6:8c:22:
eb:b7:71:37:66:f3:28:6d:37:99:12:5d:d0:42:f8:54:28:36:
23:1a:4e:53:b2:20:3d:f3:aa:8e:6d:53:84:58:e5:a5:59:8e:
2b:10:9a:a0:2f:40:95:52:b5:a3:fe:04:96:34:91:b5:90:29:
71:62:c1:aa:ed:50:ac:11:27:18:59:2b:c4:f0:7a:d2:23:cd:
3e:8d:2c:04:ea:4b:71:35:20:30:4d:6e:26:49:1e:77:81:5e:
f6:c9:95:fa:4e:80:87:4a:74:aa:e9:34:87:51:88:20:6c:af:
50:c4:c1:11:6b:ff:38:0b:0c:ce:88:c1:23:cf:90:8e:d2:67:
44:4b:50:0b:05:0c:d3:1e:d6:a2:f7:6f:4a:22:3a:51:3e:1a:
9e:5e:da:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:12:42 2024 by rpki-client on console-fra.rpki-client.org