Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/MHFqc5hOXZgc8Gwa-dwhantJktg.roa
File: MHFqc5hOXZgc8Gwa-dwhantJktg.roa (raw, json)
Hash identifier: rZx7Rqln7MDoIolBKkuyg8gIKiRDfz9np0xXbIsXOVw=
Subject key identifier: 30:71:6A:73:98:4E:5D:98:1C:F0:6C:1A:F9:DC:21:6A:7B:49:92:D8
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 01907499DBFCA3B2B05DBB1E9DC54F199769
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/MHFqc5hOXZgc8Gwa-dwhantJktg.roa
Signing time: Tue 02 Jul 2024 17:59:18 +0000
ROA not before: Tue 02 Jul 2024 17:59:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 81.31.198.0/24 maxlen: 24
91.188.253.0/24 maxlen: 24
91.188.254.0/24 maxlen: 24
91.188.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:74:99:db:fc:a3:b2:b0:5d:bb:1e:9d:c5:4f:19:97:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Jul 2 17:59:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30716a73984e5d981cf06c1af9dc216a7b4992d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c4:a2:ef:5a:83:cf:04:2d:46:69:62:09:02:
23:2f:4b:d4:da:41:dc:b7:0c:06:ea:16:bf:86:81:
16:72:48:f4:d1:ba:cb:52:c1:24:02:05:b1:62:f5:
21:b4:5f:ab:4a:a8:83:24:21:64:c8:53:b6:4c:bd:
8a:12:f9:9a:12:c7:80:ef:60:21:35:7c:a6:21:4d:
8c:c6:0b:ba:c3:a9:43:bb:aa:ce:30:8e:09:cb:e9:
6b:a4:b7:5b:16:fc:85:86:e6:ba:c6:61:c8:b2:f3:
18:71:e3:41:ae:07:49:fd:1a:be:1d:8a:79:75:20:
ee:10:29:bb:14:8b:d1:12:86:e2:54:99:65:ff:b5:
c3:8f:d7:5d:22:ba:5c:46:af:77:31:27:be:5c:c4:
28:28:f9:ba:72:db:56:11:ac:cd:07:64:93:db:08:
bc:17:d3:c5:fe:fc:83:50:29:83:ed:02:1d:cc:27:
d5:43:7a:18:84:b4:26:77:4f:d0:e1:ac:34:6f:e0:
1c:b4:95:33:83:d9:40:26:50:05:40:3f:da:ff:7e:
9e:38:f2:bc:d8:1e:d4:ec:a9:ba:91:11:22:cb:64:
56:ec:8c:54:98:ec:ae:8c:71:28:21:d3:94:7b:2c:
c2:68:32:0c:0d:83:db:35:25:ad:c2:91:35:8e:d7:
63:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:71:6A:73:98:4E:5D:98:1C:F0:6C:1A:F9:DC:21:6A:7B:49:92:D8
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/MHFqc5hOXZgc8Gwa-dwhantJktg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.198.0/24
91.188.253.0-91.188.255.255
Signature Algorithm: sha256WithRSAEncryption
59:c4:53:ed:df:a2:35:b8:99:ef:3b:bd:34:b9:c9:33:cd:c5:
6b:76:1e:e0:35:73:2d:43:22:b8:6b:de:8b:35:c6:13:97:4e:
58:47:ac:b3:c8:e0:60:3a:db:5a:41:b1:f0:69:75:b5:b6:4c:
22:c2:7d:9f:62:dc:dc:7b:d7:54:17:05:f2:ff:e7:3d:a9:cd:
95:79:02:c6:c1:f9:84:b5:9d:e3:16:ec:98:1d:26:c4:2c:4e:
d6:56:c7:2b:e0:89:64:89:59:fa:02:22:2a:2e:1e:ed:5e:0a:
15:c7:5d:10:b9:18:a6:f0:f7:49:63:e5:15:01:88:d9:6b:16:
88:0b:40:01:35:60:01:aa:d1:74:70:1f:ab:29:55:34:e0:06:
55:15:3b:53:bf:b8:26:ed:5a:4e:06:49:13:c4:d8:f1:2a:6b:
d2:50:94:31:c3:88:a2:ef:65:0f:4a:5e:4b:8a:36:ce:99:dd:
e3:0c:b0:40:bd:af:3e:e1:81:2c:d0:48:65:11:41:f7:b2:96:
00:47:a7:71:9b:07:0d:63:9b:0b:89:8c:f3:9e:1a:11:1b:69:
9c:6d:67:b9:f4:3c:3f:36:c8:2b:b9:88:e8:a0:a1:c5:8d:4e:
69:9f:1b:8d:da:81:b5:e9:96:c9:5b:89:47:3b:65:e1:ef:db:
68:9e:38:c0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:39:12 2024 by rpki-client on console-fra.rpki-client.org