Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/mlqReunX9_KtE1M8h_0wBQms1Ek.roa
File: mlqReunX9_KtE1M8h_0wBQms1Ek.roa (raw, json)
Hash identifier: 2Ys74bmsIISzZZpg3vGKGwZYQWooJUT0e8Nkf6lCAJ4=
Subject key identifier: 9A:5A:91:7A:E9:D7:F7:F2:AD:13:53:3C:87:FD:30:05:09:AC:D4:49
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 0190BF71C6B7A0D2D6D6BCF847A27AB26E0C
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/mlqReunX9_KtE1M8h_0wBQms1Ek.roa
Signing time: Wed 17 Jul 2024 06:47:03 +0000
ROA not before: Wed 17 Jul 2024 06:47:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 185.233.184.0/24 maxlen: 24
185.244.48.0/24 maxlen: 24
185.244.49.0/24 maxlen: 24
185.250.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:71:c6:b7:a0:d2:d6:d6:bc:f8:47:a2:7a:b2:6e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: Jul 17 06:47:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a5a917ae9d7f7f2ad13533c87fd300509acd449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d2:ec:87:3f:16:6a:7a:84:b4:57:90:c3:3d:
bb:e8:9e:1e:5a:1e:96:c4:89:a8:39:58:5d:2c:57:
cc:73:34:d6:53:94:b3:36:d9:b8:43:8f:64:ff:fb:
3d:ab:53:e5:18:37:c2:cc:a9:0e:5d:91:79:b5:90:
82:9b:0d:06:cb:5f:a0:33:dc:e2:e1:48:d1:35:c6:
59:5e:a3:87:7e:18:bb:73:7c:34:97:58:7c:12:c5:
90:2d:f8:b7:b7:4a:7e:2e:81:41:10:c2:5d:5b:9d:
e2:6e:1a:47:84:d3:fa:1f:2d:98:1b:66:32:20:35:
43:f5:e0:b3:4d:a4:f9:34:16:b4:0a:a0:62:09:b2:
c6:46:9f:06:46:bd:e8:5f:e9:c8:bb:33:dd:16:fe:
49:b6:09:8b:69:76:68:ac:73:d4:36:7b:53:b2:28:
85:3d:8f:f6:f6:23:4c:c7:d6:ab:bc:3d:40:12:2e:
52:3f:10:4a:cd:27:02:b4:56:44:7d:a1:87:13:f7:
43:4e:7b:b1:9e:0d:6b:26:9a:18:b8:a0:f7:b1:83:
c7:7f:7a:be:47:03:8f:1f:e6:e3:e7:04:d7:22:d2:
29:79:77:8b:d3:3a:a3:58:d8:eb:de:73:85:fb:84:
4d:21:32:8e:63:d4:1f:7b:6b:37:2c:70:c7:9d:78:
1e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:5A:91:7A:E9:D7:F7:F2:AD:13:53:3C:87:FD:30:05:09:AC:D4:49
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/mlqReunX9_KtE1M8h_0wBQms1Ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.184.0/24
185.244.48.0/23
185.250.45.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:df:5d:63:b7:ee:33:24:97:ae:7d:4d:c5:f9:ec:f8:a1:61:
9f:e4:86:47:36:32:74:de:83:68:b0:06:27:e6:76:b3:4c:72:
8b:00:fd:87:13:a1:27:fc:e3:31:41:53:b2:76:4c:44:e1:5b:
c8:c0:d7:ad:be:ef:49:66:88:ff:0a:4a:95:52:72:69:dd:5a:
dc:4c:25:b7:fb:62:2f:7e:ea:93:48:e7:ef:36:d9:1f:05:e7:
23:57:ac:f5:1f:1a:78:2d:0f:18:9b:1c:ec:bd:c9:89:bd:54:
74:83:cb:d0:d9:36:9b:16:f7:65:36:22:9d:ff:19:c9:21:79:
c5:5c:ab:a2:ee:be:89:26:5e:07:f5:09:98:42:83:e3:d4:96:
c1:0d:79:6f:a3:be:9a:c0:07:61:5b:94:ae:5d:4c:33:1f:4a:
94:eb:db:c6:08:ea:a0:46:1d:c1:f3:f9:13:48:db:1f:13:3e:
68:a2:ff:e7:dc:7a:bd:1a:16:18:e8:66:fb:8e:65:b5:9f:a0:
0e:cc:c8:aa:95:e7:60:32:6c:90:61:63:8e:7b:e1:27:31:25:
ec:29:d5:1f:68:7a:77:32:16:dc:90:71:50:c0:0e:de:c9:ea:
3e:3e:c2:61:2f:b0:10:59:2c:43:61:26:fb:1d:e5:a8:ad:85:
0e:ae:10:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:05:53 2024 by rpki-client on console-fra.rpki-client.org