Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/MPXYvmydJlf1lq7UH6iRSWHFMC4.roa
File: MPXYvmydJlf1lq7UH6iRSWHFMC4.roa (raw, json)
Hash identifier: cdIN6QEEB5LRipSyO1LsFkYgw0ee3aAN6Rl6C8UNieY=
Subject key identifier: 30:F5:D8:BE:6C:9D:26:57:F5:96:AE:D4:1F:A8:91:49:61:C5:30:2E
Certificate issuer: /CN=44c0f2a2a56007e4c45ccc71e7da092861305b20
Certificate serial: 018CC64B66E0E6917977E0FAF93CEC5B2810
Authority key identifier: 44:C0:F2:A2:A5:60:07:E4:C4:5C:CC:71:E7:DA:09:28:61:30:5B:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/MPXYvmydJlf1lq7UH6iRSWHFMC4.roa
Signing time: Mon 01 Jan 2024 18:31:19 +0000
ROA not before: Mon 01 Jan 2024 18:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42525
IP address blocks: 185.19.232.0/22 maxlen: 22
213.146.64.0/19 maxlen: 19
2a00:4960::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/RMDyoqVgB-TEXMxx59oJKGEwWyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/RMDyoqVgB-TEXMxx59oJKGEwWyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:66:e0:e6:91:79:77:e0:fa:f9:3c:ec:5b:28:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c0f2a2a56007e4c45ccc71e7da092861305b20
Validity
Not Before: Jan 1 18:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30f5d8be6c9d2657f596aed41fa8914961c5302e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:01:1d:b1:4f:2c:72:c1:36:7c:1b:46:0b:bd:
10:5a:5f:e0:cd:20:0f:72:2f:32:16:d8:f0:25:89:
ac:d1:30:b6:7e:2f:ba:e2:96:2e:a3:80:a8:0c:b0:
c4:9a:f3:ca:5a:db:d6:c6:2c:19:1b:89:89:e3:3d:
bd:4e:4f:59:fa:75:3b:81:1e:a2:46:dc:6d:50:2b:
d0:25:1d:68:6e:5f:c8:49:c1:48:dd:df:29:29:fa:
5b:27:02:1c:3b:0a:5a:58:30:4f:c4:a8:f4:e0:1a:
38:63:07:72:0c:2d:76:4d:b8:ba:87:a7:03:75:3b:
51:7a:ab:d2:6d:ae:41:3c:ba:6d:c8:7e:77:29:bb:
1f:48:a1:0c:9d:87:bb:1d:02:d1:b8:b4:bc:ec:8d:
0d:ae:c8:95:39:47:44:25:4f:05:c4:16:8d:b4:89:
13:d7:1b:33:c0:24:67:7b:be:3b:6f:c0:97:46:5a:
30:9e:0a:dd:ca:b7:b4:78:ac:fe:7f:05:3d:80:ba:
e1:1c:a6:3a:3b:7f:d1:9f:8d:56:7a:d2:32:e1:02:
95:50:85:4b:03:33:b4:69:3c:a1:bc:d0:0d:be:73:
36:68:9c:5e:41:a9:0b:11:b7:5f:6c:ad:47:8e:8a:
c5:35:e8:78:44:c1:b4:af:86:bd:34:ad:89:63:2f:
05:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F5:D8:BE:6C:9D:26:57:F5:96:AE:D4:1F:A8:91:49:61:C5:30:2E
X509v3 Authority Key Identifier:
keyid:44:C0:F2:A2:A5:60:07:E4:C4:5C:CC:71:E7:DA:09:28:61:30:5B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/MPXYvmydJlf1lq7UH6iRSWHFMC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/RMDyoqVgB-TEXMxx59oJKGEwWyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.232.0/22
213.146.64.0/19
IPv6:
2a00:4960::/32
Signature Algorithm: sha256WithRSAEncryption
54:4e:af:f2:f1:e0:00:ba:e4:80:e8:05:8b:0a:51:55:a4:c7:
36:da:12:9f:a9:e5:e3:88:44:d6:aa:84:05:d8:77:0d:1c:53:
77:d8:d3:84:47:16:5e:8a:ac:c8:86:3f:0a:f5:3a:75:2c:19:
80:4c:a6:23:1f:0f:f0:23:e5:5a:24:a7:c0:64:41:24:52:52:
96:4d:d1:fb:55:e5:b9:ff:0e:a5:0a:a7:de:51:1d:f8:a2:39:
c3:c6:09:27:27:84:dd:d4:ba:01:f2:fb:1b:31:bc:4b:36:33:
21:d4:49:35:00:5a:3c:c5:66:19:f3:ad:7b:70:37:f5:44:27:
de:3c:d0:55:89:64:03:5b:f9:88:7d:45:13:b1:a3:56:ae:d3:
55:12:08:e8:91:9e:bc:20:95:46:f7:67:d3:f5:93:08:6f:05:
d9:46:31:12:f0:84:9b:d9:ea:d8:48:09:40:23:7c:d1:a0:9b:
72:d3:d5:4a:81:f2:a8:61:71:48:04:e4:47:d6:ed:4f:d8:34:
4a:a9:dc:61:2c:c1:5f:7a:34:2b:3a:f2:27:7e:84:ec:47:66:
98:bd:01:23:6f:cc:6b:29:d6:07:aa:73:9c:9a:4d:95:72:fc:
1d:25:9c:c0:3d:08:4f:60:53:c5:3a:f2:7e:c0:f1:5f:d9:1d:
2d:94:ef:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:13:18 2024 by rpki-client on console-ams.rpki-client.org