Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/NMyMULnm8lLR0ytHTnGjR5yhBp8.roa
File: NMyMULnm8lLR0ytHTnGjR5yhBp8.roa (raw, json)
Hash identifier: go97krpCnpUWuxaRUoPj2+skUjq8vqan8d5z+JiKE0Q=
Subject key identifier: 34:CC:8C:50:B9:E6:F2:52:D1:D3:2B:47:4E:71:A3:47:9C:A1:06:9F
Certificate issuer: /CN=b8f4be41054eaf787eaa3833ffcae8f1ed7faa80
Certificate serial: 018CC3B70D3E7A2FED5890129B6F26C3CC06
Authority key identifier: B8:F4:BE:41:05:4E:AF:78:7E:AA:38:33:FF:CA:E8:F1:ED:7F:AA:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPS-QQVOr3h-qjgz_8ro8e1_qoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/NMyMULnm8lLR0ytHTnGjR5yhBp8.roa
Signing time: Mon 01 Jan 2024 06:30:02 +0000
ROA not before: Mon 01 Jan 2024 06:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3292
IP address blocks: 185.73.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/uPS-QQVOr3h-qjgz_8ro8e1_qoA.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/uPS-QQVOr3h-qjgz_8ro8e1_qoA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uPS-QQVOr3h-qjgz_8ro8e1_qoA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:0d:3e:7a:2f:ed:58:90:12:9b:6f:26:c3:cc:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8f4be41054eaf787eaa3833ffcae8f1ed7faa80
Validity
Not Before: Jan 1 06:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34cc8c50b9e6f252d1d32b474e71a3479ca1069f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:64:a2:88:b9:d2:7a:8b:ef:71:27:15:b2:67:
df:cf:8d:9d:4e:da:a0:38:25:93:98:2a:14:b1:16:
bf:f1:90:c0:5b:3f:d5:1a:47:ed:6c:12:ca:44:26:
fc:c8:c1:bf:58:18:3c:43:bd:b6:b5:b5:13:26:6d:
95:2f:af:42:ab:1b:fa:36:c1:eb:a0:a5:1a:b5:f1:
45:1d:0a:4a:6f:52:31:09:48:cf:5d:fd:a1:e7:5e:
4a:49:47:f7:fe:5c:c5:09:93:ee:89:c1:f6:80:e3:
bd:6a:f2:e2:12:f2:86:ab:65:ca:91:57:a2:b4:d2:
a9:91:9f:b6:e7:7e:0d:fa:ad:92:14:c1:d4:d1:c2:
e4:9d:4d:66:20:44:e1:02:69:86:fe:b9:52:01:d0:
d3:6a:f1:ae:23:e8:3e:8f:1e:1a:d4:fb:b0:e4:c9:
89:09:36:9b:1a:92:1e:d1:c1:b6:6a:32:50:6a:54:
d6:d7:08:c7:2e:fd:70:c4:ac:16:44:02:2b:01:d9:
0a:c2:a2:ac:c5:5e:3f:2f:51:46:84:e3:41:d9:ab:
bf:89:7d:73:e6:09:0f:d1:71:6a:0f:64:7c:78:fc:
ff:45:5b:ec:62:24:2c:46:51:15:60:05:a6:6e:fe:
62:d4:af:c0:c5:45:5e:9e:10:14:1a:0c:e1:94:6d:
be:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CC:8C:50:B9:E6:F2:52:D1:D3:2B:47:4E:71:A3:47:9C:A1:06:9F
X509v3 Authority Key Identifier:
keyid:B8:F4:BE:41:05:4E:AF:78:7E:AA:38:33:FF:CA:E8:F1:ED:7F:AA:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPS-QQVOr3h-qjgz_8ro8e1_qoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/NMyMULnm8lLR0ytHTnGjR5yhBp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/uPS-QQVOr3h-qjgz_8ro8e1_qoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.73.0/24
Signature Algorithm: sha256WithRSAEncryption
62:05:da:ad:9b:4b:9a:fe:19:40:78:e2:58:aa:ca:7d:0e:44:
6b:d2:eb:c4:ac:9a:ad:bc:26:12:9e:da:5f:cb:ce:71:09:40:
5b:4c:04:39:1d:c7:ee:00:f8:64:c3:2d:12:9c:3d:9a:fa:8f:
45:cd:db:ee:ad:e6:af:79:2a:2e:0d:8f:21:e3:ac:4d:ec:c1:
f0:79:92:10:86:71:db:39:18:6e:2c:00:8a:30:ef:d2:bf:2f:
11:ec:a4:5a:8e:51:84:45:c6:46:c5:8a:35:40:ff:69:5f:ee:
5a:b8:68:af:07:76:d2:a4:c7:80:0e:4f:7e:ce:39:3b:4c:ba:
ac:b0:34:8b:d3:d9:d3:04:ab:b7:bc:60:69:3a:4f:32:36:b8:
da:9c:0b:89:82:e5:57:25:b8:14:01:57:88:79:42:cb:52:aa:
68:ce:f4:08:7c:07:6d:e7:81:e8:b1:20:c7:fa:39:5e:e6:23:
49:4d:f3:9a:57:f7:77:12:ca:00:1e:5e:2f:9c:92:b5:7a:9d:
bb:cb:92:87:bb:c9:1b:a5:2b:1d:e0:ef:24:db:d1:9c:78:f1:
73:09:83:20:4b:ca:ca:36:8f:5b:ed:b2:5d:9f:60:e9:34:9d:
f6:c2:62:b1:c8:dd:1e:3a:8a:5a:c8:b8:54:5a:a0:1a:66:ba:
9c:0c:d4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:32:22 2024 by rpki-client on console-fra.rpki-client.org