Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/jApm3EafQrJZOcLBComBpXL9i8A.roa
File: jApm3EafQrJZOcLBComBpXL9i8A.roa (raw, json)
Hash identifier: h+wHzpg83PHSiOLeE+CC4OWT/EiYT5G66mbJoRW+ujY=
Subject key identifier: 8C:0A:66:DC:46:9F:42:B2:59:39:C2:C1:0A:89:81:A5:72:FD:8B:C0
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F623D8F8E8EF55DD4987D98374203B8
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/jApm3EafQrJZOcLBComBpXL9i8A.roa
Signing time: Tue 25 Jun 2024 12:32:36 +0000
ROA not before: Tue 25 Jun 2024 12:32:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36627
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:3d:8f:8e:8e:f5:5d:d4:98:7d:98:37:42:03:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c0a66dc469f42b25939c2c10a8981a572fd8bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:f1:43:9c:1f:4c:79:40:f2:74:38:6d:a1:
95:c8:87:f1:40:f0:ee:ff:5e:e9:17:80:f9:e8:ae:
86:fc:7a:67:da:46:82:1a:06:71:f7:0f:ae:98:68:
1f:60:44:dc:9f:90:de:c1:a6:47:dd:7e:b0:ae:6d:
ce:63:85:96:09:9b:1d:e2:42:3c:a3:b3:66:a5:9a:
4e:7e:18:32:00:f0:15:22:4b:50:46:19:ac:74:34:
34:40:4a:76:7f:90:e2:61:f0:bd:93:da:25:a3:95:
57:ac:b1:47:96:96:7e:8e:27:fc:46:4b:92:e9:c6:
79:e6:f3:15:d3:a1:e4:d1:bb:e7:7e:d9:cf:02:d4:
68:0a:3a:0f:4a:2c:7a:3a:c8:f1:22:2e:34:f9:b7:
32:91:3d:32:d0:09:39:27:73:45:d6:b1:dc:35:be:
dd:78:cd:76:cd:f7:a8:50:3f:8d:9e:02:73:2c:10:
9c:23:32:5c:44:e8:f5:ec:94:56:ff:89:47:fa:7f:
c0:ee:c6:f3:eb:e9:ed:ac:7b:57:51:67:1a:2b:b7:
81:e7:c6:be:ae:9d:98:94:67:d6:d5:81:93:a9:d6:
99:af:aa:6e:b2:dd:a5:31:15:7a:e8:65:ca:02:c1:
c2:50:6f:29:d4:ac:38:5c:a9:53:30:6d:61:66:c5:
9b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0A:66:DC:46:9F:42:B2:59:39:C2:C1:0A:89:81:A5:72:FD:8B:C0
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/jApm3EafQrJZOcLBComBpXL9i8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
24:26:14:61:06:26:69:4a:7d:40:22:7e:2a:25:9d:85:a8:36:
89:0f:b2:9b:bd:d8:f2:28:4e:9c:7d:93:04:f7:35:47:08:e9:
9d:b5:06:89:ae:84:ef:60:e3:9d:f5:f3:37:34:9c:a1:d7:e0:
72:89:fa:d4:02:3c:f6:3a:3d:5a:31:cb:7d:f1:fd:d8:cf:74:
28:03:30:3e:61:1a:81:d8:3c:fc:3d:50:f4:48:ca:92:64:a9:
62:dc:c7:45:6a:43:f6:b4:67:bc:d1:e6:a0:ff:8a:2d:21:4f:
ca:a5:8f:80:db:e1:35:8b:79:54:60:b0:33:ab:e1:66:b4:23:
6c:2e:68:c4:6f:ad:4d:7a:83:d3:a4:be:6e:53:6a:19:6a:a3:
2e:3f:f9:e7:6a:60:e6:32:32:7f:04:67:09:ac:80:bd:d1:b3:
49:29:a0:78:fe:ad:07:5e:9a:7d:29:0d:d7:92:a1:d7:43:dc:
18:48:cb:46:5a:c2:9a:a4:16:d8:d6:5d:f5:5e:84:10:d2:fd:
54:77:46:3e:6f:53:de:de:ed:50:7e:8c:8f:0d:be:01:6b:15:
21:58:62:dc:fe:4a:f1:cd:ba:d2:a1:8f:4a:ce:fc:76:f9:5e:
97:d4:74:3a:94:26:ef:27:ea:52:94:f7:99:49:15:ff:3b:d1:
d5:51:c1:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:47:18 2024 by rpki-client on console-ams.rpki-client.org