Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/ATEVAD9TkTPbnIDh60QoFXD3Z2E.roa
File: ATEVAD9TkTPbnIDh60QoFXD3Z2E.roa (raw, json)
Hash identifier: Tg5ycWVV63qWB/wuF+RMIcjeafIGxuXJiD7K+SO0VsA=
Subject key identifier: 01:31:15:00:3F:53:91:33:DB:9C:80:E1:EB:44:28:15:70:F7:67:61
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 018CC9BCAECDD321991339A09752A327D359
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/ATEVAD9TkTPbnIDh60QoFXD3Z2E.roa
Signing time: Tue 02 Jan 2024 10:33:55 +0000
ROA not before: Tue 02 Jan 2024 10:33:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47595
IP address blocks: 31.177.86.0/23 maxlen: 24
31.177.92.0/24 maxlen: 24
2a02:2090:a800::/48 maxlen: 48
2a02:2090:9800::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ae:cd:d3:21:99:13:39:a0:97:52:a3:27:d3:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jan 2 10:33:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=013115003f539133db9c80e1eb44281570f76761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3b:2f:b4:b0:4d:26:6a:dc:1e:5b:54:46:7c:
46:a9:04:80:ba:13:49:83:62:05:2e:33:a8:33:f9:
6f:08:75:21:7d:12:a4:eb:b1:e8:71:40:3f:8e:97:
4e:68:64:6e:f0:d1:cb:81:63:e9:22:c7:c6:ef:a7:
17:14:5a:fe:90:e8:5d:c5:4c:88:e5:73:77:e8:62:
35:35:ec:6b:c8:0f:9e:ce:ea:35:03:42:32:df:55:
eb:4c:22:05:30:ee:c1:8f:91:18:8a:23:60:0d:96:
88:d7:fc:e8:fa:79:9b:65:57:98:29:93:18:f4:5f:
88:57:bc:ec:fd:8f:4c:4a:0a:12:72:9a:40:57:0f:
85:4c:e3:e3:b9:9a:ed:b1:9b:aa:da:0c:b1:91:80:
6a:f9:f9:d8:6d:e1:26:e3:e4:b3:2e:d8:b1:ee:9e:
31:35:65:d8:c8:66:38:3b:34:4c:1f:e5:fc:aa:23:
c1:00:77:8f:b2:6f:55:00:e5:a8:3f:ac:3b:c9:55:
13:04:a1:a7:21:a6:45:f3:6f:04:c1:35:36:9f:04:
35:d0:52:78:64:2d:68:79:f2:79:89:5b:c1:0f:95:
21:a6:88:76:7a:98:67:7b:7b:80:42:88:c9:10:43:
bc:06:cf:54:4f:02:d0:91:36:45:49:d5:a2:ab:74:
d7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:31:15:00:3F:53:91:33:DB:9C:80:E1:EB:44:28:15:70:F7:67:61
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/ATEVAD9TkTPbnIDh60QoFXD3Z2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.86.0/23
31.177.92.0/24
IPv6:
2a02:2090:9800::/48
2a02:2090:a800::/48
Signature Algorithm: sha256WithRSAEncryption
9a:64:f0:48:ae:ad:b8:c7:14:ec:88:6a:ff:41:d3:d5:2c:bc:
b3:a1:a3:70:eb:12:77:97:51:28:96:ad:08:07:a9:72:50:7a:
36:a5:f1:a3:ee:a1:ab:66:b8:2c:ee:ef:15:f2:39:9b:9e:8c:
ae:0f:6e:72:fc:77:0d:ad:21:d6:24:d6:e2:18:27:15:2a:50:
2a:86:97:ae:35:c5:24:d7:74:43:ec:7e:4d:c2:3f:69:e1:17:
15:05:af:59:75:ba:65:5f:80:40:ff:4a:eb:04:5c:2b:12:1c:
da:5d:84:81:e1:26:12:03:09:a4:84:4d:81:d8:8f:5e:bf:85:
37:b6:8b:4b:9c:18:b5:1c:2f:56:a0:5c:85:3b:a8:f8:27:54:
9b:cb:c2:03:b5:64:bd:3f:13:24:61:88:07:54:38:fc:af:14:
c2:d9:ce:be:95:40:5c:83:b6:50:86:fe:f2:78:5d:cc:3e:84:
ab:89:ed:67:2c:13:7f:b3:ec:a0:9c:5e:99:6a:42:ca:7c:d1:
f1:ff:b2:15:b6:ef:c4:6a:35:a3:b4:6e:e1:6c:ba:78:97:16:
33:05:02:5e:31:52:6f:0b:8a:02:eb:ab:84:22:80:f8:36:1f:
5e:d0:05:3a:71:ed:23:5c:6b:4f:d6:73:6e:22:97:10:1e:82:
b6:21:35:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:55:54 2024 by rpki-client on console-ams.rpki-client.org