Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/995fbd-91fb-43bb-8f26-cd4bd44275c5/1/nn-DQ0Pa0M-iv2ATFZu1qJa-3bc.roa
File: nn-DQ0Pa0M-iv2ATFZu1qJa-3bc.roa (raw, json)
Hash identifier: 0f97AaB0v+25dWIKdpKNdgwD12TBcxAT6kK6bvZLOA4=
Subject key identifier: 9E:7F:83:43:43:DA:D0:CF:A2:BF:60:13:15:9B:B5:A8:96:BE:DD:B7
Certificate issuer: /CN=b53005619688efbaffd06e108a43bdf20643e0d6
Certificate serial: 018D890E0B031A3FFBD1FBBDAB87265D20E2
Authority key identifier: B5:30:05:61:96:88:EF:BA:FF:D0:6E:10:8A:43:BD:F2:06:43:E0:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTAFYZaI77r_0G4QikO98gZD4NY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/995fbd-91fb-43bb-8f26-cd4bd44275c5/1/nn-DQ0Pa0M-iv2ATFZu1qJa-3bc.roa
Signing time: Thu 08 Feb 2024 14:10:15 +0000
ROA not before: Thu 08 Feb 2024 14:10:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39759
IP address blocks: 89.186.32.0/19 maxlen: 19
89.186.32.0/20 maxlen: 20
89.186.42.0/24 maxlen: 24
89.186.43.0/24 maxlen: 24
89.186.48.0/20 maxlen: 20
89.186.48.0/24 maxlen: 24
89.186.49.0/24 maxlen: 24
89.186.50.0/24 maxlen: 24
89.186.53.0/24 maxlen: 24
89.186.54.0/24 maxlen: 24
89.186.55.0/24 maxlen: 24
89.186.56.0/24 maxlen: 24
89.186.57.0/24 maxlen: 24
89.186.58.0/24 maxlen: 24
89.186.59.0/24 maxlen: 24
89.186.60.0/24 maxlen: 24
89.186.61.0/24 maxlen: 24
89.186.62.0/24 maxlen: 24
89.186.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/995fbd-91fb-43bb-8f26-cd4bd44275c5/1/tTAFYZaI77r_0G4QikO98gZD4NY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/995fbd-91fb-43bb-8f26-cd4bd44275c5/1/tTAFYZaI77r_0G4QikO98gZD4NY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tTAFYZaI77r_0G4QikO98gZD4NY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 22:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:89:0e:0b:03:1a:3f:fb:d1:fb:bd:ab:87:26:5d:20:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53005619688efbaffd06e108a43bdf20643e0d6
Validity
Not Before: Feb 8 14:10:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e7f834343dad0cfa2bf6013159bb5a896beddb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f0:a2:86:99:0c:f3:fc:46:09:aa:d2:44:70:
33:63:4c:09:52:bf:cb:bd:e3:cf:df:33:92:22:88:
b8:1b:64:2c:be:e7:85:45:06:cd:fd:eb:ca:df:7b:
83:88:82:4b:af:19:e5:b0:b0:43:e8:83:ed:c6:7e:
de:07:82:98:22:5f:f9:08:36:2b:e8:b0:80:e0:cb:
55:df:3f:2b:55:aa:9f:cb:39:b9:93:7c:7f:4d:50:
3a:ae:41:54:00:7c:4c:a6:b0:ba:d7:f5:2c:35:67:
5d:05:f8:d5:0e:15:8d:aa:8d:7c:c6:9e:d4:bc:18:
84:66:36:0a:e8:33:78:27:6a:a8:f9:4e:63:6a:a6:
65:f4:46:07:dd:bd:47:7a:4b:0d:d7:24:54:52:ca:
7d:e7:3a:7d:88:ff:8e:b4:f8:da:c9:5a:bc:94:c5:
cf:be:71:65:26:a3:07:b5:5d:9f:b8:e4:b4:24:eb:
0e:6a:f6:fa:33:c5:65:e0:ae:70:1c:34:bb:0e:8f:
4c:e6:7f:39:74:8e:e0:02:cd:6f:5d:58:f4:4d:99:
ea:b0:02:3c:a9:ae:fd:d8:c9:fb:ff:0d:2a:bd:1c:
3f:00:67:26:c0:02:01:ac:1b:61:b8:17:12:49:47:
82:4a:93:c9:52:e8:1f:7b:59:cb:c2:36:93:83:11:
da:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:7F:83:43:43:DA:D0:CF:A2:BF:60:13:15:9B:B5:A8:96:BE:DD:B7
X509v3 Authority Key Identifier:
keyid:B5:30:05:61:96:88:EF:BA:FF:D0:6E:10:8A:43:BD:F2:06:43:E0:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTAFYZaI77r_0G4QikO98gZD4NY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/995fbd-91fb-43bb-8f26-cd4bd44275c5/1/nn-DQ0Pa0M-iv2ATFZu1qJa-3bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/995fbd-91fb-43bb-8f26-cd4bd44275c5/1/tTAFYZaI77r_0G4QikO98gZD4NY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.186.32.0/19
Signature Algorithm: sha256WithRSAEncryption
41:13:b6:54:b3:19:fc:e1:f7:98:b6:3a:d4:f3:bc:f3:7d:fc:
65:ac:38:5b:a4:0d:12:13:2d:6e:0c:55:e0:d4:1e:8e:ce:23:
41:d6:42:2b:c0:fe:2a:82:b0:9c:5f:37:d5:35:78:5e:e6:8a:
88:bb:9d:03:e6:b6:6b:54:2b:32:7a:2a:8e:12:30:91:a4:66:
97:c1:b2:0f:76:93:8d:bf:31:91:a4:1c:37:88:fc:c3:e2:a6:
b3:3a:b4:ef:e5:e8:45:48:0b:ed:6c:56:bb:97:45:15:5e:0c:
f1:f4:4a:aa:ca:be:56:dc:b3:19:1b:28:4b:d8:20:48:f1:79:
ef:96:5a:e7:52:fe:77:e4:04:00:7f:42:7f:fa:b2:3c:38:2c:
06:f7:1c:f4:21:8f:6d:6e:38:59:a6:16:ca:f5:14:6f:d5:6a:
f4:49:e9:36:53:60:bd:76:5b:d6:1a:6d:6b:9c:b3:cf:3b:a0:
1d:7f:53:96:58:89:bc:f3:cd:41:71:7b:a8:74:ff:74:1c:56:
52:68:c2:29:1d:74:e9:45:42:61:4d:3a:94:41:9e:e6:cb:1a:
ed:35:53:8c:da:f9:81:10:09:aa:72:ae:37:1e:d9:51:96:d4:
04:1d:6c:65:9d:71:59:f1:8a:fc:34:c0:bd:36:a4:19:2b:8b:
57:c7:43:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:23:53 2024 by rpki-client on console-fra.rpki-client.org