Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/Mud7A56MxhkhGsBlDn8nqqyNwbI.roa
File: Mud7A56MxhkhGsBlDn8nqqyNwbI.roa (raw, json)
Hash identifier: z6kHC1trTPxqaCswIrFWt1gg3lrIf8jCVLvIVvFoAtA=
Subject key identifier: 32:E7:7B:03:9E:8C:C6:19:21:1A:C0:65:0E:7F:27:AA:AC:8D:C1:B2
Certificate issuer: /CN=3072cd5df7323957ab87c07f5cdd15c91effc8d5
Certificate serial: 0192B4673A76817DEB4CB397A5E03D13AA0A
Authority key identifier: 30:72:CD:5D:F7:32:39:57:AB:87:C0:7F:5C:DD:15:C9:1E:FF:C8:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHLNXfcyOVerh8B_XN0VyR7_yNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/Mud7A56MxhkhGsBlDn8nqqyNwbI.roa
Signing time: Tue 22 Oct 2024 13:25:16 +0000
ROA not before: Tue 22 Oct 2024 13:25:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57935
IP address blocks: 5.61.27.0/24 maxlen: 24
92.119.56.0/24 maxlen: 24
92.119.59.0/24 maxlen: 24
185.73.113.0/24 maxlen: 24
185.73.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/MHLNXfcyOVerh8B_XN0VyR7_yNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/MHLNXfcyOVerh8B_XN0VyR7_yNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHLNXfcyOVerh8B_XN0VyR7_yNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b4:67:3a:76:81:7d:eb:4c:b3:97:a5:e0:3d:13:aa:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3072cd5df7323957ab87c07f5cdd15c91effc8d5
Validity
Not Before: Oct 22 13:25:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32e77b039e8cc619211ac0650e7f27aaac8dc1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8d:5b:8a:ba:9f:b5:9c:03:6b:3e:75:96:37:
28:8b:89:49:d1:2d:6f:1d:04:d4:a3:dd:39:b5:18:
2b:5a:04:94:da:a0:42:b9:10:68:e7:71:82:ec:1d:
ca:1d:02:cd:d0:24:05:cb:56:a9:ca:59:61:8b:c6:
d6:78:e9:db:35:51:4b:39:34:6c:3d:35:aa:a8:15:
e3:11:98:43:f0:76:dd:84:7d:bb:81:a6:06:f8:a0:
e6:b9:a4:0f:ae:19:6c:c6:68:59:ac:85:5e:cc:3a:
b8:4a:bd:dd:ed:fd:b9:3d:99:5c:51:cd:fa:33:fb:
45:23:3a:d7:3b:83:21:cd:aa:d2:58:9c:20:89:01:
04:ca:27:bd:f8:78:9b:fe:2f:fa:08:b0:87:9e:d4:
9f:6c:c5:e5:85:40:9e:29:4e:f0:43:fd:5c:45:56:
05:24:40:ee:51:47:84:3e:6c:01:49:63:3d:4f:b5:
50:73:81:c9:08:93:ce:33:8d:de:c8:bb:df:5a:e9:
76:36:34:06:94:02:4b:ca:ef:7d:12:83:9b:8a:30:
d2:e6:c2:d3:cf:1c:d9:81:73:14:2c:e5:94:57:51:
c0:32:6b:6b:70:5e:ac:42:e8:69:3c:a4:6f:39:a1:
cd:f6:05:b1:29:40:53:22:29:91:07:e2:70:bd:cf:
9f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E7:7B:03:9E:8C:C6:19:21:1A:C0:65:0E:7F:27:AA:AC:8D:C1:B2
X509v3 Authority Key Identifier:
keyid:30:72:CD:5D:F7:32:39:57:AB:87:C0:7F:5C:DD:15:C9:1E:FF:C8:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHLNXfcyOVerh8B_XN0VyR7_yNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/Mud7A56MxhkhGsBlDn8nqqyNwbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/33b186-ef42-4517-b32f-5e974377600c/1/MHLNXfcyOVerh8B_XN0VyR7_yNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.27.0/24
92.119.56.0/24
92.119.59.0/24
185.73.113.0/24
185.73.115.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:7a:9a:1b:89:72:45:10:17:43:12:aa:14:50:6e:07:23:88:
0d:f2:a2:a1:e4:ea:a2:0c:c0:b4:29:4d:a1:1f:83:ee:c9:1e:
ab:0e:66:32:19:f6:7b:d3:ed:18:f7:07:ba:bb:0d:6f:7a:33:
9c:7f:af:78:3a:8b:e2:d1:c6:10:02:a9:40:cc:c4:27:dd:77:
c8:ef:eb:f6:80:0b:d1:99:ce:41:30:96:ec:21:5b:74:1f:2e:
65:40:22:31:82:e2:3d:e0:af:09:35:6a:d5:96:19:63:da:03:
81:e7:b8:72:39:21:cd:03:c4:7b:92:25:c1:cb:be:5a:75:5d:
c8:5f:13:95:18:30:8d:90:63:8b:b6:ae:7d:f6:74:0f:c6:c5:
42:7b:34:47:bb:8f:3c:d9:76:63:52:1a:4a:03:e9:3b:fa:ff:
84:df:02:ef:8e:44:6f:9c:40:70:8a:d0:56:a6:e3:fb:34:df:
3c:ed:9b:3d:58:d5:d3:10:97:3e:fb:ea:78:20:4a:d5:20:75:
67:52:2d:b0:4f:6b:10:e7:20:4a:a2:55:70:68:10:8f:c6:ab:
6b:8b:9a:11:b9:b4:c2:86:31:e3:19:a0:35:f3:ce:55:57:80:
e5:11:da:69:e3:98:24:e2:88:28:75:d0:9f:1a:b0:68:b4:d0:
94:c6:bb:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:28:53 2024 by rpki-client on console-ams.rpki-client.org