Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/nnV1b2bZpqq6dwQ0VSISuUkY7Hk.roa
File: nnV1b2bZpqq6dwQ0VSISuUkY7Hk.roa (raw, json)
Hash identifier: I8bHpgIbE6LOVbKTvBFMC8RfB7ScSUSW4gYC+2SU6yg=
Subject key identifier: 9E:75:75:6F:66:D9:A6:AA:BA:77:04:34:55:22:12:B9:49:18:EC:79
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018CC649D4C0FB015DBF5933F14F0BD07CA4
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/nnV1b2bZpqq6dwQ0VSISuUkY7Hk.roa
Signing time: Mon 01 Jan 2024 18:29:36 +0000
ROA not before: Mon 01 Jan 2024 18:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20911
IP address blocks: 95.111.125.0/24 maxlen: 24
95.111.122.0/24 maxlen: 24
95.111.124.0/24 maxlen: 24
95.111.120.0/21 maxlen: 21
95.111.121.0/24 maxlen: 24
95.111.123.0/24 maxlen: 24
95.111.120.0/24 maxlen: 24
95.111.127.0/24 maxlen: 24
95.111.126.0/24 maxlen: 24
78.90.252.0/24 maxlen: 24
78.90.250.0/24 maxlen: 24
78.90.253.0/24 maxlen: 24
78.90.248.0/24 maxlen: 24
78.90.251.0/24 maxlen: 24
78.90.249.0/24 maxlen: 24
78.90.248.0/21 maxlen: 21
78.90.255.0/24 maxlen: 24
78.90.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:d4:c0:fb:01:5d:bf:59:33:f1:4f:0b:d0:7c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 1 18:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e75756f66d9a6aaba770434552212b94918ec79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6a:a6:26:68:be:d6:91:b1:7b:ba:64:0d:9f:
60:1d:4e:07:9a:b5:36:38:d9:d1:26:69:ba:a4:1e:
15:27:c4:12:34:ff:c0:e4:ff:ea:1c:c5:6b:bc:39:
df:45:69:b5:bb:a0:22:d0:50:29:47:8b:30:4b:de:
31:8e:c1:e3:ba:62:90:d9:17:49:e8:b6:d6:d3:7c:
84:03:20:b9:16:a8:ef:fa:1b:b8:57:09:b4:95:59:
21:c9:9b:65:05:ff:0e:dc:2f:0c:01:0e:32:a4:5d:
28:14:fd:1b:41:a9:96:2b:a4:a1:33:af:bc:1b:de:
b7:1d:b2:fd:6a:1e:bb:f2:3f:a3:2b:4c:7e:be:98:
b9:75:f6:fb:e5:a0:cb:f7:61:18:6e:a5:6c:fa:33:
45:ec:5c:c7:e0:9a:8a:dd:87:83:bc:4c:d3:f5:19:
ec:20:8f:8b:c5:17:46:27:70:9e:0c:79:fc:15:4d:
f2:ca:c9:55:43:00:55:02:9b:2d:30:e7:e6:a5:06:
eb:23:79:dd:8c:8d:36:0b:ad:48:3e:58:d5:13:4f:
7b:8f:10:cc:09:af:85:8a:7f:7a:3c:2e:bf:bb:95:
16:e3:4b:6b:1e:eb:cb:3b:f3:d5:72:d8:76:c2:da:
5c:df:62:99:25:ad:d5:5e:f1:d3:02:f6:75:cf:ac:
6a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:75:75:6F:66:D9:A6:AA:BA:77:04:34:55:22:12:B9:49:18:EC:79
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/nnV1b2bZpqq6dwQ0VSISuUkY7Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.90.248.0/21
95.111.120.0/21
Signature Algorithm: sha256WithRSAEncryption
21:5e:44:4c:10:3a:6c:f5:7e:25:f2:1e:6c:b7:08:7d:86:d7:
d7:3b:73:48:64:68:60:5e:cc:b3:61:de:34:f7:e3:77:42:bb:
21:ac:1a:31:75:d7:8e:fd:0f:04:6d:98:e4:c9:c2:77:8e:e4:
40:df:ec:07:8d:25:ac:59:14:6d:b3:e9:cb:70:f7:fe:10:5b:
26:cb:dd:12:2a:93:37:b9:61:d9:ce:43:da:cc:30:0b:fd:ba:
c4:33:51:d9:c6:2f:18:ea:cb:0f:8b:5c:2b:af:04:76:ca:cb:
0f:a8:46:c6:b6:3e:66:69:3b:57:59:b8:3b:d8:4f:9c:73:1b:
49:b4:2a:c6:3d:de:c1:89:19:92:e4:05:3b:eb:f4:5a:ca:a2:
4b:2b:e8:eb:98:df:a0:82:d4:e7:cd:9c:cf:e5:27:53:31:8d:
5d:d8:d6:a6:61:79:7b:a9:2d:ef:eb:9f:e4:38:23:99:38:c1:
98:ee:32:f9:c2:ed:54:ad:88:12:13:a5:c1:ca:f9:b7:18:e8:
d0:e1:d6:a0:a4:7a:38:13:96:e4:81:0e:8c:5b:b5:cd:6c:8a:
c1:bb:9e:08:c3:1e:9d:db:aa:7f:28:41:54:5f:08:29:8b:37:
30:58:b6:eb:c3:5e:58:d1:11:cf:1c:bf:d1:5d:59:f2:b2:ef:
4f:8b:f3:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 17:49:05 2024 by rpki-client on console-ams.rpki-client.org