Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MwMAUUbpRR6KqOSEKTTvfleSL00.roa
File: MwMAUUbpRR6KqOSEKTTvfleSL00.roa (raw, json)
Hash identifier: QRoKZ9F35NuACmU6Bfqui1eUZCCHxvlr1Y6BQHTu7HM=
Subject key identifier: 33:03:00:51:46:E9:45:1E:8A:A8:E4:84:29:34:EF:7E:57:92:2F:4D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192DEFFD7B40FA6BA6FF830CB800AD0EDCD
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MwMAUUbpRR6KqOSEKTTvfleSL00.roa
Signing time: Wed 30 Oct 2024 19:56:01 +0000
ROA not before: Wed 30 Oct 2024 19:56:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22418
IP address blocks: 31.58.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 07:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:de:ff:d7:b4:0f:a6:ba:6f:f8:30:cb:80:0a:d0:ed:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 30 19:56:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3303005146e9451e8aa8e4842934ef7e57922f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:07:d7:6d:04:16:59:7d:61:fa:80:29:40:7a:
53:48:e9:d2:ff:3f:ef:71:c6:33:9f:a6:dd:ae:65:
a3:d8:0e:3b:78:e0:cc:b9:ce:21:69:96:be:52:e4:
5b:27:eb:6d:c2:74:de:b6:9d:5d:17:d1:74:86:63:
1d:d7:fe:ae:73:28:41:a4:f6:cd:04:5e:7f:6c:f4:
e7:2b:07:a0:ec:85:bf:c0:58:fb:4c:25:9d:76:be:
d0:f2:84:bf:dd:d8:47:1f:d9:2f:3c:5e:95:3b:2e:
c2:65:f0:00:b4:52:6b:14:23:50:c2:18:55:6b:45:
25:e2:33:b0:5e:64:0e:c3:69:69:fb:f1:1b:18:f0:
2d:f9:ee:1b:bb:05:46:e3:b8:b1:16:69:9e:10:21:
6f:55:41:2d:5b:ae:7c:c0:4c:24:d0:fd:16:a0:73:
b2:86:be:20:8b:f1:d4:7e:ca:70:ab:e3:6b:61:4a:
74:17:26:39:90:8b:5c:0d:e6:2c:84:99:5c:4e:0b:
46:f3:93:b2:52:f3:8f:0a:7a:9c:02:ac:7b:5e:71:
31:8b:e5:c2:1b:b0:7e:8b:9e:29:a5:cb:74:2c:a8:
d5:d4:f6:df:d2:ed:98:e2:ca:a8:39:04:0b:2e:f9:
7f:84:b5:fe:42:bf:7c:b3:ca:56:e6:40:23:93:f0:
06:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:03:00:51:46:E9:45:1E:8A:A8:E4:84:29:34:EF:7E:57:92:2F:4D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MwMAUUbpRR6KqOSEKTTvfleSL00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.135.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:eb:50:04:cb:60:73:91:a7:0b:5c:66:9f:5c:0c:aa:ae:72:
51:18:17:ed:33:7d:f6:6a:dd:17:73:32:5e:48:b0:72:8a:5a:
ed:fe:b4:10:23:20:05:70:90:75:28:f4:68:ef:23:2e:e2:ec:
fa:ce:8c:0c:11:53:7d:75:4d:be:9d:34:07:51:1c:6e:50:e6:
ee:0e:94:9a:eb:6f:45:f7:59:6e:31:66:ac:d9:08:7e:d9:cb:
55:c8:2e:f2:dd:5b:0e:03:58:90:0a:32:14:31:43:a6:da:6d:
a2:ec:ca:69:eb:38:ef:9f:be:e5:73:12:c0:8a:4a:55:8c:c9:
d9:fc:13:e2:ff:c4:e1:bd:00:e8:9b:83:a1:55:2f:9b:b2:ba:
2f:ea:bd:51:19:e1:82:6e:3e:65:92:d4:0a:4b:c7:ff:44:d5:
97:ec:be:fb:3d:2d:45:7b:7f:eb:89:ef:5c:8b:aa:be:37:b9:
4a:65:fd:1c:80:7a:24:24:a7:71:52:c1:0c:5a:95:31:cb:eb:
9a:92:c8:bb:22:df:2a:aa:79:ed:cf:e0:7b:89:2b:d5:94:bf:
eb:0c:12:b4:ce:6a:3a:6a:3c:50:54:e9:a7:a6:ed:77:9f:ab:
41:08:45:5c:60:f3:4e:1b:c9:8c:f4:cd:9b:18:d4:00:ef:ff:
8c:a0:13:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:51:30 2024 by rpki-client on console-ams.rpki-client.org