Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/MYAo1fV_F-MtPJECr9lQv4qZ3Dw.roa
File: MYAo1fV_F-MtPJECr9lQv4qZ3Dw.roa (raw, json)
Hash identifier: UB2vRA0ad6lxICESdI41+FpsTuuI9PcA7KNZwQpj9FI=
Subject key identifier: 31:80:28:D5:F5:7F:17:E3:2D:3C:91:02:AF:D9:50:BF:8A:99:DC:3C
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 018CC56E41D006F5AD911E575E5218CB74F8
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/MYAo1fV_F-MtPJECr9lQv4qZ3Dw.roa
Signing time: Mon 01 Jan 2024 14:29:46 +0000
ROA not before: Mon 01 Jan 2024 14:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20943
IP address blocks: 194.58.206.0/24 maxlen: 24
2a01:3f7:6::/48 maxlen: 48
2001:67c:2558::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:41:d0:06:f5:ad:91:1e:57:5e:52:18:cb:74:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 14:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=318028d5f57f17e32d3c9102afd950bf8a99dc3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6d:00:bb:c8:97:1c:e4:1a:23:91:a8:d0:6c:
23:9b:b2:fc:6b:a3:51:66:41:32:44:a2:72:f5:5e:
77:ee:44:cd:71:d4:bf:ab:b0:f6:f5:89:9b:74:70:
bc:41:db:4b:77:22:b6:6a:69:2d:e3:e2:7a:0b:84:
13:cf:6a:03:13:cf:de:fe:88:a3:b4:8c:e3:f8:2a:
d9:41:e6:f8:8a:ed:9f:d6:da:ed:d2:6b:ff:22:b3:
85:72:fb:6d:eb:34:f6:bd:91:59:ef:03:ac:70:61:
99:c8:dc:a4:e1:fb:e4:a1:89:79:39:ef:7f:70:d6:
72:67:a5:a5:27:77:f3:3c:9a:95:36:70:89:cf:cd:
1d:ee:78:75:4a:47:49:01:57:96:82:d8:8c:70:f1:
cb:a2:74:0e:bd:95:b0:a4:b1:cc:49:0a:31:86:9b:
7a:fc:0b:a9:be:29:bc:d4:b9:af:e8:99:45:ea:60:
22:a0:d3:50:5c:e6:e4:c8:50:3c:c0:37:83:ff:99:
5d:75:5c:67:5a:6d:ca:dc:7a:a9:7b:2c:5f:f5:28:
5f:bd:cc:17:a3:dd:16:98:06:d2:9e:94:02:76:a7:
e8:eb:d4:0d:87:1b:a3:9d:6e:87:00:5d:ae:07:4f:
8a:c0:43:2a:bb:7d:cb:5d:10:e2:e5:4c:a2:96:ee:
cb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:80:28:D5:F5:7F:17:E3:2D:3C:91:02:AF:D9:50:BF:8A:99:DC:3C
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/MYAo1fV_F-MtPJECr9lQv4qZ3Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.206.0/24
IPv6:
2001:67c:2558::/48
2a01:3f7:6::/48
Signature Algorithm: sha256WithRSAEncryption
b2:25:4d:74:30:67:d0:be:be:6c:95:69:2c:d9:e3:4c:15:a7:
01:8f:db:23:79:cd:7f:6e:15:1e:ec:dd:ad:db:4f:63:43:f5:
db:9e:ae:b3:c7:f9:07:9a:cc:82:0a:d3:27:9f:63:04:78:72:
e0:1b:77:84:05:f6:45:dc:12:6c:8d:1d:5a:75:80:5f:f3:aa:
5e:5a:2b:b3:dc:11:52:73:b1:17:f1:d4:ac:38:9f:67:95:bb:
a0:ae:97:e6:dd:db:4d:f0:09:24:9e:30:8c:bd:8b:64:7c:e6:
1f:09:f9:97:3a:ba:14:54:ae:2a:27:26:c5:8f:01:39:a4:d5:
25:31:9c:45:0e:fc:8e:58:a6:00:2c:63:05:d0:d0:a8:23:f3:
d7:5c:75:e7:44:63:f4:f3:cc:62:7b:c7:ef:f3:88:c7:f2:67:
a3:d0:34:77:bd:a0:43:ef:a2:60:bf:3a:6f:31:fc:6d:4f:19:
65:a5:a0:eb:5e:12:65:27:05:46:45:bd:9f:04:51:93:c9:a4:
77:59:4b:be:ee:51:b9:32:ef:5c:11:c3:e5:a9:71:a7:cb:1a:
ba:2e:42:06:23:74:98:25:1f:77:cd:5f:af:c0:e6:51:90:3b:
7d:90:7f:81:4a:46:4d:0e:35:dd:3d:23:72:fb:79:4a:0f:e9:
03:41:e1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 20:49:31 2024 by rpki-client on console-fra.rpki-client.org