Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MmXuj15CMWGK8D1hKo5noaRoLAw.roa
File: MmXuj15CMWGK8D1hKo5noaRoLAw.roa (raw, json)
Hash identifier: zpPQc7w1ZZvcBgiQIImczIDlNNoAZNEF9gMMb+SsZ3E=
Subject key identifier: 32:65:EE:8F:5E:42:31:61:8A:F0:3D:61:2A:8E:67:A1:A4:68:2C:0C
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018E99FAF72DDD77A2E0D16CF839DE1A5C2E
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MmXuj15CMWGK8D1hKo5noaRoLAw.roa
Signing time: Mon 01 Apr 2024 14:05:45 +0000
ROA not before: Mon 01 Apr 2024 14:05:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215360
IP address blocks: 90.156.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:99:fa:f7:2d:dd:77:a2:e0:d1:6c:f8:39:de:1a:5c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Apr 1 14:05:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3265ee8f5e4231618af03d612a8e67a1a4682c0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:88:ca:1b:8a:37:b1:7e:2f:ae:81:3f:76:e2:
9a:a5:04:89:d8:71:c9:cd:1a:c9:65:02:c9:f8:cf:
d6:ac:dd:66:87:26:0e:f3:cc:3b:53:22:c0:4d:58:
ae:93:31:cb:fa:ee:d6:35:21:dc:96:7c:19:3c:ba:
cc:64:95:7b:61:83:96:ca:01:7b:85:fc:0c:91:2f:
33:f5:f1:f0:de:b0:79:14:5f:76:47:4b:33:0d:f7:
1c:29:26:66:fc:a2:2d:02:a0:4e:5d:a8:04:3b:43:
d2:12:35:fd:ee:28:34:17:a6:2f:94:0a:a9:b3:b2:
1a:25:74:8d:96:ee:cc:09:48:b7:13:eb:b9:c2:27:
a3:3f:50:7d:37:a8:e6:f9:76:45:aa:d0:08:b4:36:
f1:17:65:6d:18:f9:40:91:c7:d0:c2:12:0b:be:19:
27:bc:c0:f8:7e:94:ea:af:9b:aa:e5:e1:58:79:7a:
49:86:13:6b:3c:8e:ea:65:b9:93:2c:0b:6c:c3:e7:
a1:10:2a:74:06:a9:02:02:18:87:8d:c2:6c:43:fa:
07:43:cb:1e:cc:a0:38:11:4a:bb:f5:02:1c:a1:2e:
cd:7f:a0:7c:7b:da:f1:1e:22:41:6d:24:2b:07:8b:
76:38:ef:20:48:a4:7b:63:f9:37:5c:81:e6:fc:cf:
04:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:65:EE:8F:5E:42:31:61:8A:F0:3D:61:2A:8E:67:A1:A4:68:2C:0C
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MmXuj15CMWGK8D1hKo5noaRoLAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.156.147.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:be:aa:a8:6c:0c:16:fd:5f:88:5e:67:13:ef:91:db:97:d6:
fd:89:c0:6d:62:2a:39:5a:75:ce:41:46:a4:76:07:de:17:d1:
b3:b5:69:09:01:b9:83:8e:1b:23:49:81:04:df:fb:46:01:bb:
ba:c9:b4:da:64:50:53:23:6c:7a:1f:82:d4:89:22:6c:b0:eb:
21:be:5c:e5:92:db:6d:c5:b0:b4:f4:5e:ad:64:21:b2:69:b6:
01:2a:65:f4:c0:0d:73:62:6e:e2:28:dd:bb:9d:1f:59:cb:e6:
0f:bd:c9:f5:10:0e:ce:d3:eb:f0:54:5d:50:36:b5:5d:d8:7b:
76:dd:84:91:c3:d7:fd:02:0e:86:43:fe:29:15:11:42:a9:d8:
79:8c:4e:a6:88:a5:58:6b:be:f0:23:df:54:96:56:b5:35:51:
71:22:c9:84:4b:58:74:82:4b:69:ad:53:ea:96:15:77:33:ae:
e8:a0:41:81:87:41:ab:05:38:01:13:5f:ae:18:5c:b7:82:6a:
0d:e6:0f:66:3d:88:8f:5f:0f:86:9c:1d:d8:f6:09:5d:3d:65:
18:62:96:8f:7e:95:ab:39:8a:9c:25:bc:39:d6:15:0d:92:57:
a4:2e:62:e6:64:0b:d4:e2:2f:d4:6b:4a:f5:6d:78:d5:8e:9e:
5e:01:3a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 07:21:59 2024 by rpki-client on console-ams.rpki-client.org