Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nCshdWF06kVLhglBsR2aUjQEadg.roa
File: nCshdWF06kVLhglBsR2aUjQEadg.roa (raw, json)
Hash identifier: im2huup0NwNcyJHNsPxUWJ+LjaGgGCRpSj9ruk3zg6k=
Subject key identifier: 9C:2B:21:75:61:74:EA:45:4B:86:09:41:B1:1D:9A:52:34:04:69:D8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D0C52AAE16CD40072F20EBFED10B2EB1C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nCshdWF06kVLhglBsR2aUjQEadg.roa
Signing time: Mon 15 Jan 2024 08:52:40 +0000
ROA not before: Mon 15 Jan 2024 08:52:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 92.114.93.0/24 maxlen: 24
89.37.195.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
93.114.244.0/24 maxlen: 24
213.134.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 01:57:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:52:aa:e1:6c:d4:00:72:f2:0e:bf:ed:10:b2:eb:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 15 08:52:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c2b21756174ea454b860941b11d9a52340469d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1f:99:29:2c:d9:29:8c:fa:60:9f:a3:8c:c9:
e8:e1:7f:31:f4:5b:d7:c4:25:e2:1e:25:1a:b2:b2:
b2:36:c8:5e:70:1e:d9:1a:f2:7b:99:cb:9b:6b:13:
1d:20:37:7a:93:77:c9:d2:8b:2e:6b:72:36:88:e3:
1e:99:99:36:08:bd:c3:c1:7b:bc:38:b9:4e:73:d2:
54:7a:19:73:29:0b:3e:48:e1:97:0b:6e:c4:2e:67:
0c:a1:9f:94:78:c3:65:b1:f8:f2:7d:ec:91:74:44:
b9:25:ed:40:9e:b3:f4:80:17:ed:23:cd:e9:ef:96:
ab:fb:1b:b3:c3:3c:3f:c5:7e:8a:3a:65:fa:d3:38:
01:f6:97:f7:da:50:ba:c8:aa:76:b0:c8:86:7e:4c:
02:89:af:8a:a8:db:65:e1:d5:2b:12:2e:be:06:c0:
be:85:60:34:e0:54:4f:28:af:72:c3:ba:fe:a3:96:
4e:b7:96:c5:6c:a5:05:59:8c:d1:70:88:24:b3:3c:
fe:db:1e:86:62:ea:b3:86:d4:58:d8:92:58:68:dc:
13:cb:1b:ed:c9:5f:4d:1b:64:7b:5c:57:e3:9a:34:
df:70:35:44:f1:32:ea:26:b8:3b:75:e5:ae:35:14:
6c:50:19:be:f9:87:9b:a8:96:ca:54:d8:9e:2f:ce:
9f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:2B:21:75:61:74:EA:45:4B:86:09:41:B1:1D:9A:52:34:04:69:D8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nCshdWF06kVLhglBsR2aUjQEadg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.195.0/24
92.114.93.0/24
93.114.244.0/24
94.177.150.0/24
195.88.89.0/24
213.134.11.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ad:76:20:b6:c5:0e:a4:da:31:8b:0d:28:c4:52:79:a5:02:
2b:a4:e1:c1:98:d2:b2:6d:aa:ff:9a:fe:11:f9:2d:d1:de:6f:
a6:bf:43:1a:78:9a:cd:78:08:79:63:35:c5:ef:2f:6b:db:87:
da:b1:07:30:19:49:5f:24:33:39:9a:a7:b2:13:10:71:34:d0:
90:5b:86:60:7c:a9:88:98:77:af:88:a1:4f:5b:6a:92:c5:d7:
33:15:c0:9d:86:bf:3a:8c:85:f2:87:ca:e7:b0:f6:0e:6a:7b:
39:71:6a:13:d1:d7:df:33:78:09:c3:bf:a8:90:9e:15:1a:ed:
46:d2:2e:3c:c0:90:5c:54:4c:37:3c:1d:0f:c5:51:c7:ee:8b:
4b:a9:7b:2c:94:7d:29:de:ed:83:3b:11:34:65:5e:c1:83:90:
df:84:3a:27:55:c1:b1:a8:74:2b:17:73:46:aa:39:11:62:1e:
05:3a:e0:e5:9d:56:9f:c3:28:45:91:f8:c7:69:f2:57:42:11:
26:df:8f:17:7c:c2:48:1b:17:3e:f9:90:30:39:4d:74:b0:74:
af:12:ef:c1:ca:ff:f1:4a:bf:d3:7f:17:41:f3:d4:66:66:a9:
b8:cc:5c:c2:2d:3d:4e:86:b8:5e:b7:b4:14:27:a3:a2:66:1e:
68:10:50:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 09:06:43 2024 by rpki-client on console-ams.rpki-client.org