Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/2pPua6K9sS9aAnXqhFLzhg_oL3w.roa
File: 2pPua6K9sS9aAnXqhFLzhg_oL3w.roa (raw, json)
Hash identifier: GdlElWaOxfh4Y2TlRbjypj1853xkez9KkpPxQV8xyR0=
Subject key identifier: DA:93:EE:6B:A2:BD:B1:2F:5A:02:75:EA:84:52:F3:86:0F:E8:2F:7C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192ED8D1EE7483BF45BC2C5759043E7438A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/2pPua6K9sS9aAnXqhFLzhg_oL3w.roa
Signing time: Sat 02 Nov 2024 15:45:01 +0000
ROA not before: Sat 02 Nov 2024 15:45:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 270564
IP address blocks: 31.56.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ed:8d:1e:e7:48:3b:f4:5b:c2:c5:75:90:43:e7:43:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 2 15:45:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da93ee6ba2bdb12f5a0275ea8452f3860fe82f7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a0:aa:72:ed:78:a2:f5:a4:1f:78:c7:9c:90:
97:7a:55:e0:f6:65:54:60:21:e2:8e:0b:49:85:f9:
51:2d:93:fd:60:0d:71:be:30:c4:ac:8e:3b:17:a1:
59:58:04:22:e8:64:64:6a:9e:42:25:09:94:e9:49:
28:11:b7:3f:d7:1f:49:33:a7:9d:38:95:ba:82:87:
ca:dc:b5:51:6b:be:fd:f4:05:0a:be:e0:49:e8:19:
30:58:51:3f:bc:61:aa:d6:48:36:06:ca:96:38:d9:
ea:1c:ce:3f:8f:39:6a:79:27:9e:bc:14:9e:b1:ef:
07:5d:53:30:3b:6e:ad:94:b9:68:22:ff:f0:9c:9a:
a4:0e:c7:07:d9:97:04:de:07:c2:0a:59:05:ea:db:
86:29:7a:03:2a:15:5f:96:82:d9:71:a4:f9:be:3c:
1d:f4:a1:ac:c4:88:2c:47:20:ac:7b:0b:4f:f5:d1:
e4:64:56:36:b8:2d:ef:6b:c4:c9:1c:90:18:22:42:
0a:09:5f:0c:5a:49:5b:75:48:2c:46:14:da:c1:1c:
53:cd:21:7d:85:df:c9:a1:c4:52:31:38:4b:b8:09:
94:09:ee:93:be:e1:a6:99:e5:71:4b:aa:6b:da:25:
5c:e6:e5:91:f0:38:d3:c5:1e:71:09:11:23:71:92:
02:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:93:EE:6B:A2:BD:B1:2F:5A:02:75:EA:84:52:F3:86:0F:E8:2F:7C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/2pPua6K9sS9aAnXqhFLzhg_oL3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.6.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:3d:89:82:0a:ff:a1:5a:7a:91:fc:a7:fa:6b:92:b3:66:ec:
0d:73:fc:b3:d6:1b:c4:27:94:4c:f7:21:c2:e0:2e:de:0b:9b:
68:c4:cf:19:d6:48:dd:37:da:71:6b:35:86:39:c2:fc:b3:ad:
e1:42:28:36:ee:b9:18:12:fe:7e:87:fb:e1:a3:9e:14:f7:09:
02:ee:d1:6e:f5:de:d3:08:8f:33:c8:ef:55:33:1e:e6:9b:c9:
29:53:95:2b:d8:2b:51:89:88:db:1d:ba:92:c7:29:77:e0:4d:
a5:57:57:c1:52:02:7c:54:cd:6f:f5:0e:ab:fa:26:ca:f3:6d:
65:eb:ff:87:ab:eb:22:ab:8f:2c:91:b5:11:6e:b8:c7:d8:d7:
b6:e6:11:5e:10:81:02:10:5f:9e:a2:47:43:e2:77:73:54:c4:
8c:32:09:0a:66:31:77:c8:81:82:54:89:eb:a3:fb:d0:e3:3e:
a4:9d:4e:c4:cd:21:7e:83:31:26:e4:d0:64:93:2d:19:ab:64:
1b:92:f8:ff:d9:3e:c0:2d:a4:b8:1b:cc:2f:ad:1b:0a:a1:5b:
5a:64:d2:98:10:05:7d:75:69:59:a8:4b:8f:d0:cf:e9:6b:a9:
67:fe:d9:21:59:8c:e8:0c:cc:62:5b:da:4e:9b:aa:6c:6f:39:
a3:d4:f0:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:38:12 2024 by rpki-client on console-fra.rpki-client.org