Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ksdkqfqYQf26dQP2MxRbwODA_MY.roa
File: ksdkqfqYQf26dQP2MxRbwODA_MY.roa (raw, json)
Hash identifier: Q7HFCbIXiya6IIAbPR4u3Du8uBwxoTi2klk5g8CkJrc=
Subject key identifier: 92:C7:64:A9:FA:98:41:FD:BA:75:03:F6:33:14:5B:C0:E0:C0:FC:C6
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F62467AA412A800BFD2D0ECD67CEAE0
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ksdkqfqYQf26dQP2MxRbwODA_MY.roa
Signing time: Tue 25 Jun 2024 12:32:38 +0000
ROA not before: Tue 25 Jun 2024 12:32:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396547
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:46:7a:a4:12:a8:00:bf:d2:d0:ec:d6:7c:ea:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92c764a9fa9841fdba7503f633145bc0e0c0fcc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a5:42:84:83:f0:5b:d9:60:0c:1e:c0:83:d0:
1a:51:ad:f1:78:79:f6:85:0a:4f:a9:7c:d8:fe:b2:
91:88:ae:2a:56:79:6b:f7:29:34:ab:ba:78:d6:2c:
d1:df:70:11:11:77:2f:9f:14:c4:99:38:4f:82:7b:
17:8a:3d:01:34:84:3d:c6:f9:a1:40:af:b9:ff:57:
98:f0:b4:01:82:2d:dd:ba:65:cd:a9:ab:89:cb:60:
66:f8:50:16:67:0f:c9:1c:4c:d0:53:d8:e9:b9:a5:
09:c5:b4:8a:be:dd:11:cf:6a:2e:4c:e5:d5:b4:51:
b9:9f:42:ed:f8:54:50:77:a4:5e:74:4a:75:fd:58:
20:80:05:c9:b7:9a:cb:df:1f:46:31:50:5e:95:3d:
98:74:7d:db:cd:94:dd:5f:35:aa:2f:46:b6:ab:2c:
34:51:bb:30:1c:f7:f9:64:3b:0a:44:e0:40:25:e9:
b4:ba:e9:b8:f3:f6:3b:8f:cc:d2:c2:88:b6:13:80:
0e:c0:7c:12:6f:84:d0:c1:95:25:e4:54:0d:a7:42:
6d:f6:05:16:75:a6:98:6d:bd:08:19:3a:46:87:6b:
83:b6:03:e1:b6:0d:92:4f:c8:78:98:1f:81:6c:22:
7d:a8:23:14:2b:31:2b:20:b9:52:5f:06:ee:7a:2a:
05:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C7:64:A9:FA:98:41:FD:BA:75:03:F6:33:14:5B:C0:E0:C0:FC:C6
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ksdkqfqYQf26dQP2MxRbwODA_MY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
4a:6f:d1:7a:33:74:cb:21:ff:4d:d5:89:a1:9d:69:af:ec:f4:
6c:36:63:47:33:1d:a9:72:4f:87:37:69:54:d9:6b:d7:65:b5:
62:8e:fd:8a:4b:7b:09:d2:07:6b:d1:40:30:42:9c:51:43:42:
11:85:01:f2:e9:17:89:71:16:8e:58:2c:0f:d9:ac:4d:94:2b:
59:c8:c2:9c:8a:db:94:06:f8:62:e8:f7:8d:48:06:5e:01:57:
55:50:b8:c8:a3:90:3b:81:18:46:b7:fa:aa:8c:4a:e0:90:e7:
ae:f9:6d:2c:60:e9:a1:ea:64:22:47:04:30:9b:df:59:5d:aa:
9f:e1:a5:21:fb:d1:02:10:cc:f7:06:af:04:76:e1:4f:0f:7c:
1f:21:a5:16:c5:10:9c:21:47:5c:19:83:b6:4b:b0:c1:7c:8d:
5b:fe:dd:56:89:4f:2b:6c:44:d6:a6:f8:55:20:d6:c2:cb:c4:
74:c9:6a:07:cc:68:bb:6d:19:4a:b3:00:b9:4e:e5:86:bc:6d:
b9:e4:3b:40:ba:18:7c:6c:af:1c:f4:bb:8c:fb:f4:5b:0a:c7:
39:19:76:6c:2d:ff:65:ff:4f:05:eb:ec:b9:57:67:ed:e1:cd:
72:de:fd:d0:a0:44:9d:ed:30:72:bb:4d:db:56:ca:1d:02:36:
b0:5f:b0:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:34:19 2024 by rpki-client on console-fra.rpki-client.org