Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/b10e06-257c-4995-879d-6d07d7f1a701/1/muLarefMzCPrAoXlTMaFwHkohv0.roa
File: muLarefMzCPrAoXlTMaFwHkohv0.roa (raw, json)
Hash identifier: 5FIf4R+XmGwvvt5hsipWaZ0Tgh6at7R8VmPm06tqVd4=
Subject key identifier: 9A:E2:DA:AD:E7:CC:CC:23:EB:02:85:E5:4C:C6:85:C0:79:28:86:FD
Certificate issuer: /CN=c17cc37f1ed81ac37b20faf0f42c41ab808f13c1
Certificate serial: 018CC94CB716BD65813B6BABD65FA81E1091
Authority key identifier: C1:7C:C3:7F:1E:D8:1A:C3:7B:20:FA:F0:F4:2C:41:AB:80:8F:13:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wXzDfx7YGsN7IPrw9CxBq4CPE8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/b10e06-257c-4995-879d-6d07d7f1a701/1/muLarefMzCPrAoXlTMaFwHkohv0.roa
Signing time: Tue 02 Jan 2024 08:31:37 +0000
ROA not before: Tue 02 Jan 2024 08:31:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 185.7.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/b10e06-257c-4995-879d-6d07d7f1a701/1/wXzDfx7YGsN7IPrw9CxBq4CPE8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/b10e06-257c-4995-879d-6d07d7f1a701/1/wXzDfx7YGsN7IPrw9CxBq4CPE8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/wXzDfx7YGsN7IPrw9CxBq4CPE8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:b7:16:bd:65:81:3b:6b:ab:d6:5f:a8:1e:10:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c17cc37f1ed81ac37b20faf0f42c41ab808f13c1
Validity
Not Before: Jan 2 08:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ae2daade7cccc23eb0285e54cc685c0792886fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a5:cf:a4:66:3b:04:00:8f:ae:86:30:97:6a:
3d:c7:fe:3d:38:88:7d:8f:4f:5f:f7:d9:d5:5a:ec:
30:9b:28:9c:88:e1:29:3f:d4:29:f3:fe:dd:66:b0:
5f:71:55:36:3a:eb:cf:c3:72:31:47:38:45:cb:fb:
44:b6:97:14:30:5d:76:2d:7c:e3:3c:3c:1b:57:59:
40:3e:a9:9e:98:ce:a0:60:fe:1e:95:00:5b:8b:41:
f1:64:37:64:e5:30:49:1d:ec:8a:95:78:b3:ba:ad:
16:1b:34:ef:1a:7e:f3:6c:64:eb:2f:62:ad:4d:2b:
a6:a3:4d:8b:15:80:08:00:7f:f9:af:7e:16:18:c5:
31:80:f8:f8:84:cc:52:bc:a8:bb:03:07:f1:7c:a7:
5b:54:55:56:be:cc:7c:3c:41:02:14:5c:ad:e6:ad:
e6:29:d9:55:2e:b4:62:58:d2:51:7d:95:16:16:bd:
cd:81:4b:84:47:5d:5e:3f:df:b3:bf:c2:99:cc:23:
0a:db:68:f7:d7:16:b1:4f:f7:b9:16:66:57:91:e3:
67:07:5b:80:f7:27:d4:22:b7:bd:67:60:94:da:4b:
5f:e2:11:e0:8d:1a:12:f4:c1:af:aa:0e:a7:55:39:
9c:f8:7e:47:9e:60:09:89:06:1a:c3:ce:91:9f:8c:
63:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E2:DA:AD:E7:CC:CC:23:EB:02:85:E5:4C:C6:85:C0:79:28:86:FD
X509v3 Authority Key Identifier:
keyid:C1:7C:C3:7F:1E:D8:1A:C3:7B:20:FA:F0:F4:2C:41:AB:80:8F:13:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wXzDfx7YGsN7IPrw9CxBq4CPE8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b10e06-257c-4995-879d-6d07d7f1a701/1/muLarefMzCPrAoXlTMaFwHkohv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b10e06-257c-4995-879d-6d07d7f1a701/1/wXzDfx7YGsN7IPrw9CxBq4CPE8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.128.0/24
Signature Algorithm: sha256WithRSAEncryption
16:6e:d8:c4:bd:18:f1:6e:86:f4:79:20:54:01:d3:e0:d4:ec:
db:8e:ac:bc:0f:da:99:51:44:d6:5b:94:52:42:a0:c8:01:0f:
61:66:8d:a7:bd:5a:4e:39:51:c7:8f:06:42:d9:c2:35:fa:18:
b1:90:85:b1:3c:5a:f2:b0:23:94:ac:b6:d3:08:1a:a7:7f:78:
22:52:f0:3a:51:ad:76:aa:4e:3d:a0:f4:ef:36:d9:e7:37:d7:
95:bc:06:f6:31:81:4a:5e:47:bd:5d:79:8f:f0:db:bb:23:bd:
97:50:c6:9d:8e:90:75:8e:25:13:c1:58:90:be:af:ef:ca:b9:
4e:3b:d6:67:03:df:c1:ac:8d:08:db:1b:57:30:39:58:26:21:
aa:b6:8d:2a:31:6e:7d:1f:b7:a1:48:66:27:f4:4d:ad:3f:be:
e1:fc:27:af:50:52:e0:f5:c2:3b:de:c1:d7:47:26:1f:79:71:
c3:88:e5:d6:18:b6:1b:93:1f:d0:4e:10:d8:dc:55:c7:b0:f9:
22:a0:80:41:8e:b5:d6:b6:ef:b4:69:63:9b:1c:52:4f:18:2e:
88:8b:7f:bd:e3:61:e1:85:bf:56:87:6c:86:9c:cc:b5:05:77:
e0:58:f5:c3:aa:4f:a5:ae:38:64:b8:d7:23:fa:c4:5e:ae:2b:
cb:d1:3a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:52:52 2024 by rpki-client on console-ams.rpki-client.org