Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/MtreVIJpTKL3k2IjW3B7coof1js.roa
File: MtreVIJpTKL3k2IjW3B7coof1js.roa (raw, json)
Hash identifier: MzlMBMN6eTcQuDcYgaM5JA+Ne5aoD9BWvppsJPlOVd0=
Subject key identifier: 32:DA:DE:54:82:69:4C:A2:F7:93:62:23:5B:70:7B:72:8A:1F:D6:3B
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 018CC64A734927F8023107E8AB31563919DF
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/MtreVIJpTKL3k2IjW3B7coof1js.roa
Signing time: Mon 01 Jan 2024 18:30:17 +0000
ROA not before: Mon 01 Jan 2024 18:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 188.72.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:73:49:27:f8:02:31:07:e8:ab:31:56:39:19:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 18:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32dade5482694ca2f79362235b707b728a1fd63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0b:41:df:bc:d5:ce:29:3b:26:eb:cc:6e:8e:
1c:5a:42:54:0e:c7:9f:e0:80:71:6b:2d:1e:13:28:
b5:52:b7:e5:59:61:7d:3e:b4:ff:63:be:c3:11:fa:
0d:f3:19:31:b8:70:ab:da:d7:98:66:0f:ca:48:9c:
51:fc:4f:40:cc:80:73:e5:d4:a2:99:8e:84:10:cc:
e0:1a:5f:29:b5:b1:5c:83:e6:93:75:84:0f:94:e0:
73:b3:42:17:b5:7a:72:a8:0f:41:5c:0b:f3:22:3c:
83:7d:3d:77:42:a7:8c:87:31:54:fe:c6:d7:60:69:
10:ee:ac:7a:2c:31:3a:7a:6f:bd:dc:48:7d:fe:64:
97:67:f5:bc:a1:a7:56:b8:19:a4:7e:5f:92:70:6d:
1d:95:c1:9d:e9:b1:8a:50:ee:e9:cf:43:fa:42:50:
14:6e:61:5a:90:56:3f:a9:fe:da:95:22:1b:96:5c:
35:2e:e4:63:db:5a:e8:ae:93:ed:b5:37:3c:ab:d4:
4d:31:4d:3d:8c:d7:d2:39:61:8d:e0:52:78:1f:4c:
e4:43:48:e8:41:4a:63:ab:e1:60:40:cc:1a:e2:63:
61:7c:c0:6d:b5:b5:a3:94:a9:01:83:17:47:98:09:
df:3e:0c:cf:54:f9:bd:e9:aa:ad:73:c7:a0:19:e3:
9a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DA:DE:54:82:69:4C:A2:F7:93:62:23:5B:70:7B:72:8A:1F:D6:3B
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/MtreVIJpTKL3k2IjW3B7coof1js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.93.0/24
Signature Algorithm: sha256WithRSAEncryption
05:4e:b6:ee:ab:bf:61:55:8b:3b:e6:2c:42:6d:03:fa:0b:bc:
78:85:91:fe:74:3a:7b:f3:16:ae:f5:55:24:ca:be:92:21:74:
06:a8:e3:f9:5a:6e:27:99:15:a6:5b:0d:f2:ba:63:f1:49:72:
e3:6b:f4:e7:50:72:85:a0:6d:66:e3:98:d2:47:ae:7c:49:65:
f7:04:d1:f4:1f:7e:39:b2:3b:51:b3:8e:51:e6:97:73:d3:82:
10:b1:7a:27:62:40:e8:18:23:ff:cf:ae:66:9a:12:3b:ae:fe:
1b:3a:08:bd:c7:5e:77:10:ad:92:0c:0f:06:0c:8e:30:18:dd:
46:cf:6e:47:6b:ca:6c:98:08:4d:b1:70:1a:5e:3e:71:d5:ea:
77:0d:ce:0c:ee:7a:ca:f3:ef:90:f4:40:b1:ec:d9:6f:bd:d3:
38:75:1b:a2:46:7e:19:55:9f:8d:5e:67:b9:4a:54:43:b0:f5:
55:51:ae:cb:25:0b:6b:39:56:7b:0c:e8:e6:0f:9e:b0:8a:f3:
66:3c:56:f0:42:6d:6f:e9:f6:8a:51:a3:1e:c8:0f:dc:89:cc:
ea:b4:d6:91:2c:fe:67:8f:13:92:3d:ea:12:50:74:f6:01:c0:
43:0e:c2:a2:25:c9:4d:c6:03:7d:db:20:34:33:98:e4:73:04:
a9:46:11:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:17:03 2024 by rpki-client on console-ams.rpki-client.org