Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Nnc3ctppUO9LxS0WhHsIXCSa8m4.roa
File: Nnc3ctppUO9LxS0WhHsIXCSa8m4.roa (raw, json)
Hash identifier: Zf8pz/BGahH8dfOLIaPlqi6X3KGfpswYeLYoej+XNaE=
Subject key identifier: 36:77:37:72:DA:69:50:EF:4B:C5:2D:16:84:7B:08:5C:24:9A:F2:6E
Certificate issuer: /CN=0f0f9f044e2b929878d747c5ffbb80ad10e3d6bd
Certificate serial: 01904AAE497B3CE197E2F12A47E63A94CE64
Authority key identifier: 0F:0F:9F:04:4E:2B:92:98:78:D7:47:C5:FF:BB:80:AD:10:E3:D6:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dw-fBE4rkph410fF_7uArRDj1r0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Nnc3ctppUO9LxS0WhHsIXCSa8m4.roa
Signing time: Mon 24 Jun 2024 14:37:34 +0000
ROA not before: Mon 24 Jun 2024 14:37:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201589
IP address blocks: 5.101.36.0/24 maxlen: 24
5.101.37.0/24 maxlen: 24
5.101.38.0/24 maxlen: 24
5.101.39.0/24 maxlen: 24
5.101.71.0/24 maxlen: 24
31.184.232.0/24 maxlen: 24
31.184.233.0/24 maxlen: 24
31.184.234.0/24 maxlen: 24
31.184.235.0/24 maxlen: 24
91.108.187.0/24 maxlen: 24
185.238.152.0/24 maxlen: 24
185.238.153.0/24 maxlen: 24
185.238.154.0/24 maxlen: 24
185.238.155.0/24 maxlen: 24
2a13:1ec0::/44 maxlen: 44
2a13:1ec0:100::/44 maxlen: 44
2a13:1ec0:200::/44 maxlen: 44
2a13:1ec0:1000::/44 maxlen: 44
2a13:1ec0:1010::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Dw-fBE4rkph410fF_7uArRDj1r0.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Dw-fBE4rkph410fF_7uArRDj1r0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dw-fBE4rkph410fF_7uArRDj1r0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 02:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:ae:49:7b:3c:e1:97:e2:f1:2a:47:e6:3a:94:ce:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f0f9f044e2b929878d747c5ffbb80ad10e3d6bd
Validity
Not Before: Jun 24 14:37:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36773772da6950ef4bc52d16847b085c249af26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cb:d4:4b:37:b0:78:df:03:d5:1d:11:55:d5:
8e:3c:ed:15:4a:d6:17:43:05:c6:16:df:bd:d7:eb:
2e:63:f2:52:a9:ef:16:98:89:1c:3a:82:a5:87:8b:
28:34:b1:7b:4c:8c:de:71:50:63:f0:a7:b7:d3:e1:
4f:e5:e5:b5:ef:71:c2:f6:c8:a8:ae:c3:05:78:9b:
ca:b0:18:35:a1:c0:70:23:3d:83:47:24:28:90:74:
f6:af:7f:86:b2:61:54:af:e5:5f:4e:b4:32:fd:74:
3d:41:4f:52:8d:c1:f7:f8:36:cd:8c:7d:63:56:ed:
2b:69:77:c4:7f:b1:49:a1:7e:46:d4:31:3e:97:90:
08:c1:39:5c:ec:ee:b7:26:fb:cb:9a:ac:74:c1:20:
b7:23:18:dd:e4:32:20:bd:4b:fb:c3:73:69:9b:3b:
69:c4:c0:68:da:a7:bf:2d:87:27:af:76:2a:65:22:
b8:f9:63:56:21:a7:f4:87:5b:e5:55:64:e9:b3:c2:
3f:f2:5f:4f:39:05:b5:05:08:32:4d:79:42:8c:2e:
34:2c:f2:37:31:93:d7:36:95:da:46:e4:1c:0a:7d:
6f:19:2d:e3:45:1b:04:ba:99:47:bb:05:94:4f:b8:
cc:2e:23:c2:29:74:fa:b6:b8:ea:1b:11:1c:b9:53:
cf:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:77:37:72:DA:69:50:EF:4B:C5:2D:16:84:7B:08:5C:24:9A:F2:6E
X509v3 Authority Key Identifier:
keyid:0F:0F:9F:04:4E:2B:92:98:78:D7:47:C5:FF:BB:80:AD:10:E3:D6:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dw-fBE4rkph410fF_7uArRDj1r0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Nnc3ctppUO9LxS0WhHsIXCSa8m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Dw-fBE4rkph410fF_7uArRDj1r0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.36.0/22
5.101.71.0/24
31.184.232.0/22
91.108.187.0/24
185.238.152.0/22
IPv6:
2a13:1ec0::/44
2a13:1ec0:100::/44
2a13:1ec0:200::/44
2a13:1ec0:1000::/43
Signature Algorithm: sha256WithRSAEncryption
6a:9f:97:47:e1:fe:dd:5f:bc:7c:e3:d5:f8:30:3f:c4:fc:6e:
16:4f:06:0a:ec:11:c5:57:4b:4b:ee:70:55:d4:12:e0:72:25:
5b:2f:d8:47:7d:43:c1:70:b2:7e:49:9f:89:ed:bf:7f:06:48:
89:a2:af:77:d7:13:75:9f:9b:91:bd:db:cb:b1:62:cb:dc:fd:
66:a5:ba:99:24:c4:c2:31:14:15:41:0b:14:09:b3:62:26:1e:
2b:d0:4d:d8:7b:4b:8b:c7:90:d8:e9:83:04:e1:96:51:b0:02:
4a:25:d7:38:a6:a8:d3:74:83:16:d0:f9:74:8c:ee:25:5e:72:
60:48:0b:27:11:43:95:da:5a:63:0b:3e:df:69:d6:79:97:39:
8b:31:da:5c:a7:0c:53:13:53:2b:ab:7b:44:e4:0e:5e:0c:67:
cb:55:62:50:32:fb:a5:e5:f3:9b:b5:5f:1b:f1:2c:60:56:29:
23:f8:10:e8:1a:e3:8b:26:b9:11:9e:b6:ff:22:1e:6f:10:c3:
69:50:0e:ee:5d:cd:f9:4c:8e:e8:35:73:53:8a:f7:7f:50:52:
6e:2f:2a:54:a3:3c:7a:b5:e8:e1:15:dc:9b:ba:2c:d0:8e:ca:
3a:81:7d:ff:ce:ae:31:92:43:2e:ea:ba:14:fb:18:cf:16:90:
bd:8f:ee:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:13 2024 by rpki-client on console-ams.rpki-client.org