Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/MVT7ziLr6Du6O85dMFj4gvBgBvk.roa
File: MVT7ziLr6Du6O85dMFj4gvBgBvk.roa (raw, json)
Hash identifier: uUBcWWw63ocYP/y7iF7gfOBkoTsXTa/9FMnFeSL4PHc=
Subject key identifier: 31:54:FB:CE:22:EB:E8:3B:BA:3B:CE:5D:30:58:F8:82:F0:60:06:F9
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 018CC793694852241344231734C702002205
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/MVT7ziLr6Du6O85dMFj4gvBgBvk.roa
Signing time: Tue 02 Jan 2024 00:29:35 +0000
ROA not before: Tue 02 Jan 2024 00:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202623
IP address blocks: 141.101.91.0/24 maxlen: 24
141.101.64.0/24 maxlen: 24
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:360e::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3612::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:1400::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3616::/48 maxlen: 48
2a06:98c0:1401::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.mft
rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:69:48:52:24:13:44:23:17:34:c7:02:00:22:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jan 2 00:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3154fbce22ebe83bba3bce5d3058f882f06006f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:84:28:8f:06:fd:5e:48:b3:1e:b2:e2:0a:ba:
14:e9:32:20:13:57:f6:04:39:e3:85:ae:58:09:84:
4a:76:73:c3:aa:34:bd:96:bf:6a:6e:50:0e:91:7a:
e3:a4:e7:31:6c:1c:aa:bf:25:e3:17:28:df:ef:e7:
83:2e:20:d9:d7:f2:6f:87:a2:8f:00:e0:13:31:31:
89:06:94:7f:b7:14:d6:65:27:e0:51:42:a8:93:ca:
ad:93:36:03:a6:ee:c9:35:6c:cb:37:75:5b:45:6c:
3a:84:c3:73:f3:9c:2f:e5:73:11:e1:52:f2:19:19:
12:2f:8b:dd:51:b4:f9:f0:11:ed:c3:35:47:74:e2:
37:65:9d:b0:1a:30:07:7c:46:91:67:13:9e:8d:27:
80:50:f1:ac:87:63:b7:1d:9b:ef:ed:b8:05:62:d5:
58:d7:77:23:80:83:f3:91:11:1b:6c:b7:3a:2f:f3:
31:25:14:17:08:0c:7e:ec:b6:4f:9c:9c:f6:5b:eb:
b0:38:26:fe:7c:7a:bf:a1:05:c0:24:7a:e5:be:92:
af:c6:c5:54:37:b5:7a:61:d8:f8:e7:5b:74:e8:1c:
87:b1:ca:7d:e1:af:4a:e3:4c:0e:ae:d7:db:8d:55:
4e:c0:82:61:f6:2c:a3:93:6f:e0:9f:52:e2:c6:0e:
a7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:54:FB:CE:22:EB:E8:3B:BA:3B:CE:5D:30:58:F8:82:F0:60:06:F9
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/MVT7ziLr6Du6O85dMFj4gvBgBvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0/24
141.101.91.0/24
IPv6:
2a06:98c0:1400::/47
2a06:98c0:3602::-2a06:98c0:3607:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360e::/48
2a06:98c0:3612::/48
2a06:98c0:3616::/48
Signature Algorithm: sha256WithRSAEncryption
4b:72:77:39:6d:5b:2b:b8:2e:63:e2:9d:9d:9e:63:b1:cd:e7:
7c:b5:08:ff:41:08:08:b7:14:12:e9:51:ca:2c:68:b4:1d:2a:
59:78:9c:40:56:73:bb:7c:33:2a:f7:e3:64:4c:c4:50:d8:09:
76:dd:47:0d:6a:26:18:cf:47:38:ac:9a:9d:69:51:e9:fd:12:
e7:e0:73:89:17:4d:76:0c:a4:9f:d5:24:28:3f:33:70:4a:79:
ec:c1:9a:5a:c2:ec:fc:3f:62:42:10:20:99:a3:37:26:91:64:
85:e4:9f:b1:36:c1:c4:87:a5:b9:e9:a0:49:fe:c3:4d:a6:2d:
92:6e:f0:23:82:b7:32:63:e5:c9:1d:a6:8e:fa:6a:d7:03:17:
4e:07:00:34:d9:57:56:bc:d7:04:25:39:b6:2c:21:00:ee:af:
1a:48:8c:4b:d6:3f:a5:de:94:6d:c2:49:d9:b5:45:af:91:3c:
4f:2d:19:7b:a5:92:1a:8b:4d:9c:04:d7:85:51:46:4b:5a:ae:
21:39:90:57:72:1e:27:ec:22:df:26:71:27:7f:24:be:93:90:
28:3d:f2:47:85:e5:88:7d:62:eb:b4:b0:b5:d1:ad:0c:83:e3:
f5:bf:22:86:eb:09:b6:a4:a4:1f:4a:47:44:86:c0:27:45:26:
20:24:a7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:21 2024 by rpki-client on console-ams.rpki-client.org