Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/NmrQqPuer3S4LF0tMufyuyrSB3A.roa
File: NmrQqPuer3S4LF0tMufyuyrSB3A.roa (raw, json)
Hash identifier: q3optztmuXHBVsrrP+6z56vwj3sJUhMU0gVZVjwK3bg=
Subject key identifier: 36:6A:D0:A8:FB:9E:AF:74:B8:2C:5D:2D:32:E7:F2:BB:2A:D2:07:70
Certificate issuer: /CN=be49fb190f4bd0f5815a8e579f366ad58d5d41f9
Certificate serial: 018CC86F04A04730AD465BD72CBFEED38C2E
Authority key identifier: BE:49:FB:19:0F:4B:D0:F5:81:5A:8E:57:9F:36:6A:D5:8D:5D:41:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/NmrQqPuer3S4LF0tMufyuyrSB3A.roa
Signing time: Tue 02 Jan 2024 04:29:27 +0000
ROA not before: Tue 02 Jan 2024 04:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209605
IP address blocks: 91.224.92.0/24 maxlen: 24
185.36.81.0/24 maxlen: 24
185.169.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:04:a0:47:30:ad:46:5b:d7:2c:bf:ee:d3:8c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be49fb190f4bd0f5815a8e579f366ad58d5d41f9
Validity
Not Before: Jan 2 04:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=366ad0a8fb9eaf74b82c5d2d32e7f2bb2ad20770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f0:16:c6:d8:d0:ad:ee:57:02:fb:76:b5:a8:
c1:fc:9a:1f:db:9b:ae:d9:82:ab:52:cb:b1:50:f0:
ab:4d:56:39:2c:48:cf:ed:c4:1a:03:3a:d7:ed:e6:
1e:7d:ff:3c:a0:f6:4b:17:e5:ff:a4:bc:a6:cd:76:
20:f2:d0:02:c9:ed:02:a4:76:47:53:33:c7:77:84:
aa:a5:94:d3:3c:fb:78:e1:11:41:2e:66:d6:80:a8:
a6:11:09:f8:fa:32:e5:e8:cb:af:d6:0d:6f:17:c7:
05:b7:e4:14:3f:62:f9:70:20:b7:b5:d4:9e:f0:66:
69:53:ca:1f:d9:4b:04:5d:b8:78:6b:1c:b5:8b:6a:
8b:3b:5c:12:48:df:48:0c:cf:2e:84:3c:62:3c:29:
65:a1:77:38:b2:e9:00:14:98:db:23:1d:1e:b0:24:
17:ce:cf:c5:eb:17:10:c6:31:62:09:a5:5e:6e:11:
12:ca:32:67:fb:07:05:5a:b2:fe:99:65:bf:84:b9:
66:c1:39:ee:53:14:a5:d9:e1:9e:83:ba:d2:f5:a1:
43:56:14:ce:97:5b:51:4b:ab:c5:7d:fd:bb:19:25:
33:27:3c:80:9a:ae:ab:81:c1:19:12:21:47:a0:bd:
44:4e:01:54:4e:43:e0:95:84:09:0c:b9:16:64:84:
df:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6A:D0:A8:FB:9E:AF:74:B8:2C:5D:2D:32:E7:F2:BB:2A:D2:07:70
X509v3 Authority Key Identifier:
keyid:BE:49:FB:19:0F:4B:D0:F5:81:5A:8E:57:9F:36:6A:D5:8D:5D:41:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/NmrQqPuer3S4LF0tMufyuyrSB3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.92.0/24
185.36.81.0/24
185.169.4.0/24
Signature Algorithm: sha256WithRSAEncryption
00:1a:b6:04:82:35:6e:b3:7d:ec:c4:d9:50:ec:65:97:dd:5b:
e9:11:ac:f5:c0:ff:04:8f:86:2c:e3:ee:ed:51:e0:7f:d4:bb:
df:c3:40:2c:73:0f:3a:2f:2c:26:d3:d5:cc:e4:ce:9a:0f:87:
40:cc:c6:94:14:33:12:15:28:ed:ff:d8:d2:db:16:96:6c:5a:
9b:47:10:4b:02:93:42:c1:ca:d6:11:1b:6b:a6:d0:1d:b4:6e:
db:cb:5f:6a:8f:29:12:f6:f1:66:7f:eb:5f:62:6e:d0:62:65:
f5:01:9d:8a:b2:b8:dc:f9:00:60:3d:74:76:6d:e6:d0:e5:69:
f8:14:2d:4b:6b:02:c3:9c:21:61:90:53:28:59:d9:09:f1:2e:
af:93:fd:6c:b4:1a:45:00:36:7d:53:f7:93:33:b1:f5:a6:56:
15:4e:c7:02:eb:db:3a:31:ba:5c:62:06:c4:a0:01:0e:d6:d6:
23:80:36:1e:97:73:39:63:df:93:c0:f7:aa:e2:84:fb:02:ec:
91:47:0d:65:38:5f:fe:04:bb:15:49:70:e0:d0:3c:7a:96:54:
c8:93:48:87:2b:3e:bb:b5:98:e5:61:bd:3b:2a:cf:32:d5:ca:
8f:bd:09:83:4b:f6:05:fb:37:3a:91:79:b9:70:b5:5e:dd:ed:
1d:05:01:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:53:56 2024 by rpki-client on console-ams.rpki-client.org