Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/NOLDDkTwYaOTNsHLb2vYPJs2AdY.roa
File: NOLDDkTwYaOTNsHLb2vYPJs2AdY.roa (raw, json)
Hash identifier: DAA+XiG1P6rHHWEZNwWbgcG6rwBKPoO7JPG7nIwoLQA=
Subject key identifier: 34:E2:C3:0E:44:F0:61:A3:93:36:C1:CB:6F:6B:D8:3C:9B:36:01:D6
Certificate issuer: /CN=07033a910fcf2c1b15977a18ace7d857ba58b9aa
Certificate serial: 018CC72755574DB23D72CA93632BAF999DB3
Authority key identifier: 07:03:3A:91:0F:CF:2C:1B:15:97:7A:18:AC:E7:D8:57:BA:58:B9:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/NOLDDkTwYaOTNsHLb2vYPJs2AdY.roa
Signing time: Mon 01 Jan 2024 22:31:32 +0000
ROA not before: Mon 01 Jan 2024 22:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42982
IP address blocks: 193.200.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:55:57:4d:b2:3d:72:ca:93:63:2b:af:99:9d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07033a910fcf2c1b15977a18ace7d857ba58b9aa
Validity
Not Before: Jan 1 22:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34e2c30e44f061a39336c1cb6f6bd83c9b3601d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:51:6c:cd:4b:28:e7:68:e1:e1:82:22:21:f3:
23:c2:11:d4:92:ff:1a:1d:7d:da:33:b1:b6:ee:0d:
fd:27:47:bf:e0:d7:2a:69:11:f3:20:29:64:c3:d9:
1d:dd:36:08:8b:41:67:f2:3d:ac:c4:7f:99:f1:8c:
f1:65:03:97:4a:13:d7:42:b4:cd:44:d0:8b:31:99:
0e:27:51:a3:67:65:95:d7:32:67:ea:19:29:70:f7:
f8:aa:9d:a5:65:4a:f5:23:a2:e8:95:70:c8:43:13:
ec:56:e0:87:71:bc:9f:2d:4c:e1:48:2c:9f:9d:80:
e1:e4:ea:e7:3e:2a:9f:e4:9f:65:fa:99:da:18:2e:
09:47:35:58:d5:12:00:f2:33:da:ea:05:7f:d5:2c:
3c:27:ed:d9:71:cb:cd:80:8b:f6:1e:f4:e0:37:4b:
bc:c1:b4:27:12:2f:45:15:d1:40:52:d5:67:60:78:
1c:45:02:ac:53:f1:f3:6e:49:7c:c4:e6:dd:dc:63:
46:cc:4f:62:e7:c8:bf:22:4f:44:4f:1a:9f:6b:20:
58:97:9c:6f:96:65:df:4c:30:ee:e2:6a:6b:a3:9e:
23:0e:45:8a:22:12:76:88:f2:82:36:58:5a:b4:78:
37:f9:b7:ac:48:2f:28:08:28:6a:bb:9e:dc:9e:4d:
45:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E2:C3:0E:44:F0:61:A3:93:36:C1:CB:6F:6B:D8:3C:9B:36:01:D6
X509v3 Authority Key Identifier:
keyid:07:03:3A:91:0F:CF:2C:1B:15:97:7A:18:AC:E7:D8:57:BA:58:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/NOLDDkTwYaOTNsHLb2vYPJs2AdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.179.0/24
Signature Algorithm: sha256WithRSAEncryption
30:b7:2f:38:37:cb:f0:8d:9b:8c:9b:4f:b8:8c:e5:00:85:e0:
da:8d:2d:53:5c:c4:ac:2c:f9:e9:72:45:c8:f4:c5:9b:1a:48:
48:86:9f:5c:33:7c:62:7a:ec:98:8f:d4:0d:63:3e:b1:ea:79:
7b:ca:ef:1c:3e:16:a7:75:71:01:6c:48:6c:08:75:5c:b2:4d:
f0:12:14:a0:e8:0d:4e:b8:06:ec:9b:e6:49:f1:a4:c8:fb:0d:
c0:a4:61:2a:a5:f7:6f:b3:a2:61:49:29:c1:24:1a:a3:01:49:
86:d5:ea:3a:22:7f:25:e7:29:f3:b3:0c:07:49:ff:3b:3c:84:
24:39:87:6f:34:28:01:c6:c7:5a:52:0a:05:6b:df:2d:20:ff:
95:0f:07:ce:51:7f:59:51:2a:99:5c:a5:c0:7d:89:90:0d:d8:
54:a1:4e:be:8b:74:04:bc:89:46:9b:2f:eb:2f:aa:2d:50:c7:
da:cd:8d:a9:8e:c4:db:db:7d:2a:1f:98:c5:5d:ac:68:a1:87:
be:04:8b:2d:f9:08:34:c9:97:5d:48:42:a6:49:f7:56:09:50:
c3:00:5a:18:99:2d:57:eb:75:4b:16:df:4d:7b:23:2c:93:ae:
3b:ab:c3:71:a3:d7:a1:76:e8:67:06:8a:cf:3f:be:bd:d3:7a:
f1:24:cc:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:19 2024 by rpki-client on console-fra.rpki-client.org