Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/ahJ7lD1mOSxzgP-IOOvpwlgnpVw.roa
File: ahJ7lD1mOSxzgP-IOOvpwlgnpVw.roa (raw, json)
Hash identifier: NYX1OxcWL4t7l9/TWvlt0g1EMgq3YT1bx5z+SBIgdqE=
Subject key identifier: 6A:12:7B:94:3D:66:39:2C:73:80:FF:88:38:EB:E9:C2:58:27:A5:5C
Certificate issuer: /CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Certificate serial: 018CC501118FAC8226BBA3550728A3B0E355
Authority key identifier: F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/ahJ7lD1mOSxzgP-IOOvpwlgnpVw.roa
Signing time: Mon 01 Jan 2024 12:30:30 +0000
ROA not before: Mon 01 Jan 2024 12:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 185.76.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:11:8f:ac:82:26:bb:a3:55:07:28:a3:b0:e3:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Validity
Not Before: Jan 1 12:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a127b943d66392c7380ff8838ebe9c25827a55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e3:5c:2f:02:bb:06:99:af:08:0f:16:2c:94:
49:50:04:44:61:1c:64:21:9f:f9:84:1e:72:7b:3d:
4c:f2:f9:ea:53:7a:bf:74:d5:3c:7b:c5:18:41:af:
e1:bd:0e:79:3a:5d:85:39:3b:86:60:f4:a8:46:ef:
83:84:f9:48:f9:67:e4:0d:54:8a:72:e1:62:b6:35:
c2:6a:08:9f:64:93:b5:bf:a8:7f:01:93:ef:1e:8a:
96:f8:b9:0a:ab:73:79:e8:c9:a9:4c:ff:29:b8:18:
79:81:61:4a:98:f5:b6:25:08:8a:02:84:ed:b2:8e:
48:3c:dc:7c:27:66:6a:8c:9d:bc:48:59:ad:a6:d1:
88:a5:7c:93:2d:c7:7a:c9:63:33:61:ad:56:cc:77:
f8:e5:91:cf:98:c4:f8:d4:70:81:e3:2e:47:52:df:
27:0d:eb:a4:13:d7:f1:8a:ab:6e:dc:f1:c9:c4:8f:
02:e6:aa:2b:52:d0:3a:69:f6:79:5c:68:9b:b6:9a:
5a:9a:48:a6:cc:88:bb:58:d6:91:5e:c6:00:70:05:
b7:0e:4d:47:8e:2c:c9:03:df:33:46:8b:f8:ef:93:
04:d6:0e:a8:f5:82:5a:7c:1f:3a:ce:40:27:b4:8d:
f7:89:51:f6:f0:0a:86:98:76:b9:94:a9:1f:2f:e8:
b3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:12:7B:94:3D:66:39:2C:73:80:FF:88:38:EB:E9:C2:58:27:A5:5C
X509v3 Authority Key Identifier:
keyid:F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/ahJ7lD1mOSxzgP-IOOvpwlgnpVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.37.0/24
Signature Algorithm: sha256WithRSAEncryption
91:0b:52:b9:5a:15:d8:d4:52:9b:2f:e5:5b:e6:46:9d:c0:fd:
24:1f:ae:95:73:52:f9:5d:ee:66:e8:7c:44:b4:29:76:c1:fd:
e4:fb:bb:62:64:0b:c7:85:f3:a1:41:3e:31:d5:95:5d:07:af:
56:c9:c7:19:a8:38:11:7c:40:61:3d:c5:9b:02:69:11:0c:e8:
36:b3:3d:83:ad:e8:3b:d7:d6:30:ea:73:53:a2:db:0e:7d:82:
32:8b:58:9d:5a:09:a7:0c:b0:3a:24:39:68:af:ed:a7:06:dd:
7c:0e:2e:17:ed:17:7f:06:03:53:07:62:29:fe:e2:39:99:3e:
fb:9b:12:29:f1:01:ed:2f:ad:97:5a:6a:7a:58:49:94:10:59:
77:7e:91:60:25:72:bd:54:1d:bc:c2:d7:64:ff:a3:16:39:92:
3a:39:c2:28:db:9e:00:0f:39:c3:f4:61:da:55:e6:c6:68:10:
d7:53:7d:99:6f:16:e6:b9:14:4d:c6:02:2d:e2:5e:66:4c:bf:
6a:be:c0:5c:84:f9:27:57:6f:2b:3f:a6:df:c8:5f:45:99:61:
00:5c:94:90:f4:c9:5f:d2:41:99:d7:99:43:ad:cb:5a:b3:18:
71:e7:b9:83:e9:47:89:a8:30:20:0d:df:40:74:db:17:54:86:
21:14:f9:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:54 2024 by rpki-client on console-ams.rpki-client.org