Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f6b60b-5808-48a2-8203-1ca3fbbfba3f/1/nsJoeCcpOk0088WzClgVM-mqsbY.roa
File: nsJoeCcpOk0088WzClgVM-mqsbY.roa (raw, json)
Hash identifier: ONU6h8XKvGxsy8MfOGihmSMa7LVB2NBSPUODIztTwu8=
Subject key identifier: 9E:C2:68:78:27:29:3A:4D:34:F3:C5:B3:0A:58:15:33:E9:AA:B1:B6
Certificate issuer: /CN=96271b62d18e4ac77c6109690eaae4cc34d0e9b6
Certificate serial: 018CC3B688688C9600B4F3543935FE13198A
Authority key identifier: 96:27:1B:62:D1:8E:4A:C7:7C:61:09:69:0E:AA:E4:CC:34:D0:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/licbYtGOSsd8YQlpDqrkzDTQ6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f6b60b-5808-48a2-8203-1ca3fbbfba3f/1/nsJoeCcpOk0088WzClgVM-mqsbY.roa
Signing time: Mon 01 Jan 2024 06:29:28 +0000
ROA not before: Mon 01 Jan 2024 06:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213222
IP address blocks: 91.220.113.0/24 maxlen: 24
176.126.120.0/24 maxlen: 24
2a06:ef00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f6b60b-5808-48a2-8203-1ca3fbbfba3f/1/licbYtGOSsd8YQlpDqrkzDTQ6bY.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f6b60b-5808-48a2-8203-1ca3fbbfba3f/1/licbYtGOSsd8YQlpDqrkzDTQ6bY.mft
rsync://rpki.ripe.net/repository/DEFAULT/licbYtGOSsd8YQlpDqrkzDTQ6bY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:88:68:8c:96:00:b4:f3:54:39:35:fe:13:19:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96271b62d18e4ac77c6109690eaae4cc34d0e9b6
Validity
Not Before: Jan 1 06:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ec2687827293a4d34f3c5b30a581533e9aab1b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ae:c4:db:c0:89:21:da:be:79:78:c0:f0:af:
45:e3:13:d7:f4:41:86:3e:0a:56:81:3f:d1:be:46:
45:1a:84:ff:34:67:3b:59:b6:fc:a5:3d:17:fc:c5:
d3:6a:08:11:d8:b8:5f:60:09:ef:1a:44:cb:3e:0f:
9a:6f:53:0d:d6:35:c7:bc:6f:af:b7:f5:98:f4:09:
73:3e:c5:71:a7:09:93:d1:ea:75:75:24:ee:73:75:
9f:d0:9a:63:04:98:50:44:00:5e:3b:28:b0:52:22:
1a:ff:1c:bb:fa:ba:97:a5:d0:96:5a:4c:37:a6:b9:
39:81:79:08:eb:fe:bd:d4:8d:56:a2:5a:a4:9d:4c:
0d:b8:6b:65:6e:31:d9:29:0d:0d:14:a5:64:ce:34:
53:8b:98:d1:08:23:ba:ce:7f:eb:37:1a:ad:dd:93:
ad:1a:25:ab:41:de:1c:07:5f:06:9a:e4:83:c7:95:
70:b7:80:0c:f8:5b:7a:07:27:31:8d:79:31:a4:ab:
51:5c:17:8f:73:cf:3e:11:d3:f8:0a:7d:eb:7c:96:
88:af:6d:1f:f9:80:19:25:bd:a8:39:90:27:46:fe:
85:9f:9b:97:09:0b:95:5d:e5:55:0e:62:08:97:fc:
78:be:a4:eb:65:90:22:b7:78:25:db:00:ee:a4:bf:
54:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C2:68:78:27:29:3A:4D:34:F3:C5:B3:0A:58:15:33:E9:AA:B1:B6
X509v3 Authority Key Identifier:
keyid:96:27:1B:62:D1:8E:4A:C7:7C:61:09:69:0E:AA:E4:CC:34:D0:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/licbYtGOSsd8YQlpDqrkzDTQ6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f6b60b-5808-48a2-8203-1ca3fbbfba3f/1/nsJoeCcpOk0088WzClgVM-mqsbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f6b60b-5808-48a2-8203-1ca3fbbfba3f/1/licbYtGOSsd8YQlpDqrkzDTQ6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.113.0/24
176.126.120.0/24
IPv6:
2a06:ef00::/29
Signature Algorithm: sha256WithRSAEncryption
93:42:26:41:e3:53:d9:f1:fe:0a:0b:64:60:b3:7b:00:72:50:
a4:35:61:4c:6f:68:35:7c:6d:bb:6d:1e:80:23:5e:74:42:09:
a2:03:31:db:05:9f:9c:15:ea:45:3c:24:ea:5a:09:ef:30:ec:
3d:01:50:04:2a:aa:d1:2c:25:43:ac:a5:94:4e:ee:41:b8:b4:
05:ef:fe:8e:4e:98:0d:46:30:79:56:ae:40:9b:4a:4c:77:6d:
a4:92:cb:41:b0:95:ee:94:0f:f2:0e:e2:0a:14:6e:c3:b3:18:
c4:50:ac:2f:17:3b:7b:15:88:02:df:af:c1:31:34:66:9d:00:
98:7c:3f:71:29:ac:b4:1b:15:8b:44:e5:e3:4e:37:ad:1b:72:
ca:15:b5:19:07:4e:4b:7a:89:67:ea:e5:e3:87:7d:47:d2:40:
db:b3:40:2a:3c:f6:5b:62:b9:b1:1e:ac:54:46:01:ef:8f:9c:
35:c8:b7:c0:9a:84:14:e1:62:1b:13:c1:23:c4:75:d2:3f:71:
a0:13:41:d2:db:3e:7e:1d:1e:a0:8b:54:b8:04:82:98:39:77:
ac:3b:47:bc:92:6f:b3:14:ff:de:d0:12:de:a6:59:ab:fe:09:
15:0d:7e:c4:bb:95:70:07:4c:e8:0c:b4:92:76:c7:30:c1:5c:
4c:31:d3:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:32:50 2024 by rpki-client on console-ams.rpki-client.org