Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6ntbeeApKG5fB_GEy85py_mSek0.roa
File: 6ntbeeApKG5fB_GEy85py_mSek0.roa (raw, json)
Hash identifier: 3zo6v+dIU99qPOEELXmAiYHdL4xHysO6W4TmvR9Ut9s=
Subject key identifier: EA:7B:5B:79:E0:29:28:6E:5F:07:F1:84:CB:CE:69:CB:F9:92:7A:4D
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0193490E39618F27EF0376E066DAE96F6E91
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6ntbeeApKG5fB_GEy85py_mSek0.roa
Signing time: Wed 20 Nov 2024 10:11:29 +0000
ROA not before: Wed 20 Nov 2024 10:11:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50939
IP address blocks: 80.96.32.0/22 maxlen: 22
194.153.236.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:49:0e:39:61:8f:27:ef:03:76:e0:66:da:e9:6f:6e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Nov 20 10:11:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea7b5b79e029286e5f07f184cbce69cbf9927a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5c:7e:f0:7a:da:5a:3b:4a:7a:a1:d8:3c:cd:
a0:9a:17:59:55:df:55:60:59:91:88:81:5f:4f:4d:
1b:8f:42:f5:cd:5c:1c:f7:98:e1:8e:a9:ee:31:b7:
a3:eb:07:d3:98:39:72:cb:bc:4a:bf:73:01:8a:be:
b7:33:c8:26:d6:84:9b:92:bf:b8:78:9c:1b:17:3c:
b2:8e:c2:e8:66:eb:32:56:09:d1:a0:85:ed:c2:a8:
cd:08:a3:29:8f:95:e1:e6:4a:9b:7e:7c:0d:c1:b0:
6f:a9:60:33:4b:8f:f3:e1:46:9b:ed:fb:4e:f9:70:
ec:b4:51:ba:38:78:0e:be:9b:95:df:3a:77:be:f3:
51:2d:ea:a4:d7:32:08:b2:05:08:74:ac:5c:f7:e7:
d9:30:3a:71:5a:36:47:1b:5c:f9:19:01:21:63:64:
76:d5:f2:f7:25:7d:2f:54:5b:26:bb:27:ec:92:bb:
b6:d5:1c:9d:c9:00:4c:89:25:cd:d7:50:f8:5a:cc:
0f:02:61:68:10:a5:95:33:b0:e2:95:42:d9:48:99:
4e:51:c4:40:45:71:ea:2d:ce:66:99:b4:f7:42:e7:
e7:29:25:38:df:14:2c:fb:af:df:e3:dc:c5:ba:0d:
5a:cc:63:e4:49:8b:f4:28:af:d4:b4:bc:48:2b:f5:
55:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7B:5B:79:E0:29:28:6E:5F:07:F1:84:CB:CE:69:CB:F9:92:7A:4D
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6ntbeeApKG5fB_GEy85py_mSek0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.32.0/22
194.153.236.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:3a:79:bf:4e:6a:f5:6c:2a:77:56:ea:5f:1e:b0:bd:ec:62:
70:b1:3e:1e:4d:eb:fb:7d:05:4c:52:d0:b0:37:fc:cb:6f:8b:
5f:d1:0a:6d:b8:bd:c6:e0:c0:ac:b4:cd:17:25:08:d2:78:fb:
a7:6d:8a:4a:08:ec:85:38:e1:16:7e:08:83:f2:a4:23:8b:b0:
7f:56:d9:57:09:38:20:3f:90:66:b6:b1:52:38:fd:31:8d:1d:
96:6b:3b:75:88:fd:0e:28:ac:d1:af:a1:15:7e:2b:51:97:79:
2b:dc:fa:18:3d:3f:30:5b:69:01:50:be:a9:64:c7:7c:fc:8a:
47:7a:8e:4e:0d:3c:39:8c:0c:67:8a:8a:a4:22:0e:44:7f:cf:
69:6e:15:b5:43:ab:a5:fd:96:7f:39:4c:ff:05:1a:8c:d0:47:
8d:45:14:f6:54:c0:8f:43:24:57:d2:3e:4e:7e:e8:b4:ae:6d:
23:80:83:81:fc:31:bd:b8:6b:a0:82:2b:b4:fd:9d:52:d7:34:
8d:14:26:80:df:f7:9f:6d:11:91:cc:c4:32:08:ed:34:47:68:
15:7f:3f:7b:fa:fa:3b:ce:9c:fb:ab:98:2f:e1:e2:49:ca:06:
bc:dd:6b:d2:82:36:05:ee:eb:7f:a5:ab:71:88:f7:c1:3d:6c:
b4:43:a8:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:24:03 2024 by rpki-client on console-ams.rpki-client.org