Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/V7-YTRKJRALqpFUqDidbvbrLbXI.roa
File: V7-YTRKJRALqpFUqDidbvbrLbXI.roa (raw, json)
Hash identifier: BONvHtGZIJJ0/dUeupg9dLcOF9iD3W6krxZ/rbX0kPE=
Subject key identifier: 57:BF:98:4D:12:89:44:02:EA:A4:55:2A:0E:27:5B:BD:BA:CB:6D:72
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018CC50111F20DDEC76EAD08B3C00189D7BC
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/V7-YTRKJRALqpFUqDidbvbrLbXI.roa
Signing time: Mon 01 Jan 2024 12:30:30 +0000
ROA not before: Mon 01 Jan 2024 12:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400810
IP address blocks: 31.43.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 May 2024 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:11:f2:0d:de:c7:6e:ad:08:b3:c0:01:89:d7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 1 12:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57bf984d12894402eaa4552a0e275bbdbacb6d72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:de:65:d0:92:7f:eb:74:89:d9:90:d1:30:03:
a8:ad:7d:39:69:f3:f2:dd:80:bb:46:2a:ba:5c:2d:
c8:b4:6d:a2:a9:cb:2e:a8:06:62:e2:83:23:22:70:
63:9c:48:91:e6:a8:dc:34:8b:7c:13:32:57:f1:a2:
dc:bb:51:bc:87:82:bd:6a:04:70:3d:c7:79:77:08:
40:3e:40:a1:32:5c:84:1f:3b:50:bf:eb:4d:4d:05:
31:d0:61:96:2b:c9:ce:eb:9f:95:62:12:f0:29:09:
78:62:1f:47:03:6b:3a:9f:e3:9b:b7:e4:f0:0d:ac:
20:8b:ff:de:e1:1e:3e:2c:40:22:69:5f:20:8b:b3:
04:f7:51:87:d5:a7:9d:32:a4:c1:c0:87:c3:50:f5:
f9:fa:de:b1:ce:e6:78:bc:d4:ba:fa:34:92:e8:c8:
f4:6e:84:13:da:16:dd:7c:9f:9a:41:5c:0a:fd:e3:
d9:4e:8e:00:f9:8c:83:c0:10:04:29:1a:f7:5a:78:
7d:8e:ab:f9:66:f0:ed:f9:6b:32:ee:fd:61:34:25:
5a:d5:7a:3e:ab:84:01:8e:13:e0:12:60:4c:3b:ce:
df:5b:96:cd:a8:48:24:02:49:fe:2a:10:c3:44:2b:
45:89:e0:30:ae:88:1f:0b:eb:7e:b1:b5:f0:1c:b9:
3a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:BF:98:4D:12:89:44:02:EA:A4:55:2A:0E:27:5B:BD:BA:CB:6D:72
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/V7-YTRKJRALqpFUqDidbvbrLbXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/24
Signature Algorithm: sha256WithRSAEncryption
59:dc:38:72:cc:20:fd:ae:57:84:9e:23:e8:ec:57:97:34:88:
74:53:d1:c9:f2:20:d6:8f:9b:58:80:03:3a:9b:94:f4:6f:d0:
4a:ac:22:80:cd:55:89:d5:fe:04:21:79:18:d8:93:46:cf:a6:
45:2f:02:23:09:35:d4:e7:d6:89:3d:b2:7b:a2:8b:e6:70:d0:
8e:c6:8a:c5:6d:70:a1:a9:4b:be:c9:18:ef:b0:19:e4:b2:f2:
a9:46:07:47:17:ee:6e:9d:d9:e6:48:e1:8b:f4:b9:8d:7d:d2:
3f:78:88:84:f2:69:46:c0:3a:f1:f6:1b:8c:db:0e:17:04:ea:
f5:d1:1e:53:c9:c9:96:8c:57:0e:2c:db:40:25:87:56:45:7e:
e0:28:38:84:a6:be:c8:33:ce:de:03:12:24:1e:00:f9:b9:2c:
10:7c:17:9c:42:4e:3c:49:14:f3:c7:0f:93:5f:fe:a9:01:69:
fe:97:af:d4:a9:8d:7c:0b:16:85:05:1c:7f:d9:93:7e:b6:75:
9b:99:ea:c5:d2:22:b0:14:ee:8b:31:14:74:50:37:07:21:a3:
1b:4c:1d:5b:6b:88:1c:b0:4f:d4:8b:51:00:c9:55:ee:14:62:
84:8d:9b:8d:74:71:9a:30:27:aa:9c:62:c9:42:1e:e0:45:e1:
0c:93:a9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 22:24:38 2024 by rpki-client on console-fra.rpki-client.org