Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/umtffh81wVCZe70mgfvSYY0T6sU.roa
File: umtffh81wVCZe70mgfvSYY0T6sU.roa (raw, json)
Hash identifier: sOVm6sL0424croNjBKACvUEEOdhXOVel+Eer2C5HHJw=
Subject key identifier: BA:6B:5F:7E:1F:35:C1:50:99:7B:BD:26:81:FB:D2:61:8D:13:EA:C5
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CC500B0C94BBFE134D09A39102B1AD512
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/umtffh81wVCZe70mgfvSYY0T6sU.roa
Signing time: Mon 01 Jan 2024 12:30:05 +0000
ROA not before: Mon 01 Jan 2024 12:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 91.239.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 13:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:b0:c9:4b:bf:e1:34:d0:9a:39:10:2b:1a:d5:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 12:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba6b5f7e1f35c150997bbd2681fbd2618d13eac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c5:ba:0d:76:e0:0b:93:b3:86:3e:69:14:a8:
3a:c4:34:b2:34:3b:5c:ac:56:ff:98:6d:0d:24:e9:
02:53:a6:da:07:3d:f0:32:3a:d2:26:87:1b:b8:f9:
f2:34:81:9b:b8:40:a8:88:09:53:13:9a:3e:ba:82:
e4:cc:25:c6:f8:2d:76:85:ae:ef:ca:d5:dc:cc:e7:
c6:08:47:45:b2:27:c0:5b:ba:56:a6:ef:0f:0c:50:
b4:83:8e:03:8d:3a:4f:16:66:1d:db:2b:ac:a3:17:
f7:4f:50:5e:fd:3b:6d:7f:9b:79:a0:7b:01:88:51:
76:f4:29:2c:22:83:c6:9a:26:14:46:60:2e:d1:c1:
3a:59:e5:e1:0f:18:eb:04:60:26:d5:bc:03:b9:6d:
4b:77:aa:85:7f:34:f4:21:82:e4:09:dd:4a:28:4b:
8d:75:34:ff:5e:8b:c4:33:49:21:4d:80:8a:c0:eb:
7f:98:97:39:64:6c:4d:91:d6:c5:17:ea:85:e5:0c:
c2:d3:07:0b:20:53:34:2f:f1:6e:0c:46:a1:49:a0:
f7:e2:f4:c7:7a:e7:fa:e9:6d:8c:91:a6:d0:fa:c1:
25:6a:8a:b8:c6:e9:a2:7c:d8:9a:bd:86:55:9f:52:
2f:f3:09:fc:5f:10:cb:4a:e4:21:a1:6e:7f:ac:35:
88:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6B:5F:7E:1F:35:C1:50:99:7B:BD:26:81:FB:D2:61:8D:13:EA:C5
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/umtffh81wVCZe70mgfvSYY0T6sU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.149.0/24
Signature Algorithm: sha256WithRSAEncryption
05:32:a3:39:a0:76:22:f6:90:60:1f:dc:f0:b1:0e:ef:ae:9b:
60:b0:17:19:30:05:53:34:8a:e4:00:2f:55:2a:62:7c:f9:eb:
e4:dc:fa:f0:32:30:5f:4e:26:29:e0:25:e3:59:8d:51:07:50:
eb:89:28:c6:1f:fc:aa:c2:a1:f0:4b:98:7f:44:95:0d:ea:a5:
72:eb:5e:21:d7:29:d1:95:59:1a:ac:39:ac:90:65:52:12:c4:
32:1c:96:23:78:b8:51:ae:4a:4e:ba:14:b2:5b:91:4a:2a:5e:
61:ab:9c:9f:32:76:28:07:f7:1a:e4:ba:03:f9:39:dd:50:6e:
aa:41:15:9a:93:f3:9f:0f:3e:47:58:b8:1b:e0:50:88:76:76:
b7:a1:49:77:5f:b9:82:a0:2e:7a:c1:7a:fe:74:db:0f:33:d8:
d4:40:26:ff:e1:5e:c9:cf:b1:60:d5:a4:10:9c:b5:49:55:9d:
c0:da:78:e0:5d:28:ea:72:26:4d:c5:fb:fd:c4:b6:82:39:48:
57:a2:29:eb:c7:dd:d8:bf:40:f7:f6:3a:0b:9f:8b:88:3c:75:
d1:1b:e2:4a:67:a3:cc:3c:2a:63:94:bb:09:99:29:b6:2f:2a:
2a:f5:13:8d:4e:3f:59:ac:b2:e7:1b:d0:84:0c:d8:fe:89:9e:
08:91:b4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 20:15:55 2024 by rpki-client on console-fra.rpki-client.org