Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/fHt1IDOAWMM_Jp2iUL3B5xlRkyQ.roa
File: fHt1IDOAWMM_Jp2iUL3B5xlRkyQ.roa (raw, json)
Hash identifier: lHRA2LFcfGhs4WThnLrfP8Qg34lElSBAN9TiSC5WcfI=
Subject key identifier: 7C:7B:75:20:33:80:58:C3:3F:26:9D:A2:50:BD:C1:E7:19:51:93:24
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 018CC42483626FAE1BDC5965EFB9BEC2A572
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/fHt1IDOAWMM_Jp2iUL3B5xlRkyQ.roa
Signing time: Mon 01 Jan 2024 08:29:36 +0000
ROA not before: Mon 01 Jan 2024 08:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43361
IP address blocks: 185.175.94.0/23 maxlen: 23
45.10.89.0/24 maxlen: 24
31.133.98.0/23 maxlen: 23
194.31.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 21:43:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:83:62:6f:ae:1b:dc:59:65:ef:b9:be:c2:a5:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 08:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c7b7520338058c33f269da250bdc1e719519324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:44:4b:3e:31:88:6c:28:d1:67:af:a2:71:c3:
7f:c0:40:a8:03:ac:5c:ab:2b:a0:4c:44:42:6f:bd:
92:01:41:7c:e4:46:69:6d:54:7f:d5:75:96:a9:44:
4b:0b:89:93:ef:53:77:c1:44:2f:62:b1:91:aa:64:
04:d4:a1:80:5f:71:f6:e5:0c:3a:45:30:41:b4:28:
24:9a:5b:70:25:76:2d:8c:90:b7:60:99:e3:ad:6e:
af:8a:e2:06:0b:01:54:0c:54:f4:97:4c:65:fb:3d:
fd:97:da:aa:75:c1:69:88:dd:ee:f2:b5:ef:b9:7a:
20:1a:1f:59:84:49:d5:91:16:63:e9:e3:e2:07:23:
6d:07:b6:5d:94:fa:83:81:a6:8f:d9:11:88:ae:0c:
5c:eb:78:3b:e6:3b:25:f1:63:a1:3e:4a:2a:03:c3:
50:5f:c7:4b:09:87:5e:22:e0:66:77:fe:2b:5b:c6:
14:b1:0c:b2:d6:b9:53:e4:fb:9c:73:66:da:52:18:
38:6f:ca:de:9c:40:f8:15:88:48:a5:b8:a0:2a:92:
4b:01:13:8b:c2:40:fd:3c:fc:72:04:c4:e7:63:6a:
a4:89:89:4a:11:57:4e:6a:af:01:9a:0d:f8:42:72:
31:d4:8b:68:c6:27:32:c1:e0:a8:87:31:78:dc:3f:
f5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:7B:75:20:33:80:58:C3:3F:26:9D:A2:50:BD:C1:E7:19:51:93:24
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/fHt1IDOAWMM_Jp2iUL3B5xlRkyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.98.0/23
45.10.89.0/24
185.175.94.0/23
194.31.244.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:00:48:d6:fc:5b:16:45:28:fe:6d:81:37:06:66:63:67:d5:
65:6c:18:52:07:e2:58:6c:d9:51:9d:cc:5a:69:a0:43:12:63:
23:38:50:e2:13:dd:b5:fc:eb:84:55:f1:e4:66:5a:69:79:c3:
cc:00:39:73:b6:8e:b3:37:cf:6b:54:c9:31:c4:ca:b9:16:92:
3e:bf:70:12:a3:d6:d1:59:77:0b:ad:8a:4a:94:7d:81:a2:19:
2a:aa:0d:45:4c:74:7d:ee:55:7f:ee:e0:1f:75:50:01:b4:b4:
a5:e0:74:98:cd:a7:3e:4b:69:6c:83:61:14:28:a5:99:29:62:
66:4d:32:73:67:11:ff:d4:09:8a:7e:db:51:36:71:1a:e9:42:
65:ff:51:85:42:5a:46:36:77:e4:04:4f:b8:6a:d7:88:d0:77:
91:1d:15:93:9f:5a:7d:1f:d8:68:59:9c:40:c2:fc:00:75:2b:
79:3e:c0:98:8b:ce:31:43:b8:77:1c:94:b4:f4:fd:31:6a:13:
b1:14:9f:74:fa:ac:73:ab:0d:96:87:fa:be:fc:17:9b:cb:cc:
d8:9d:a7:38:bb:b9:ef:6f:63:3f:cc:47:19:58:32:f3:61:bc:
b8:5d:1f:0c:e6:e4:76:cb:ce:93:7f:a0:c0:84:c9:fd:31:9e:
3c:77:8e:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 03:39:09 2024 by rpki-client on console-ams.rpki-client.org