Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/NyujHB8hR4JkDmCO79bJfYI756k.roa
File: NyujHB8hR4JkDmCO79bJfYI756k.roa (raw, json)
Hash identifier: mEnYXrk08mIK4gw+jurtn2kV0Yxk+2b0ia6BYl77+ZA=
Subject key identifier: 37:2B:A3:1C:1F:21:47:82:64:0E:60:8E:EF:D6:C9:7D:82:3B:E7:A9
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01917622E89C5A3A2593C0539E58E4375A0E
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/NyujHB8hR4JkDmCO79bJfYI756k.roa
Signing time: Wed 21 Aug 2024 18:11:24 +0000
ROA not before: Wed 21 Aug 2024 18:11:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 196695
IP address blocks: 77.83.150.0/24 maxlen: 24
217.28.132.0/24 maxlen: 24
217.28.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:76:22:e8:9c:5a:3a:25:93:c0:53:9e:58:e4:37:5a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 21 18:11:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=372ba31c1f214782640e608eefd6c97d823be7a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5d:29:30:8e:9c:dd:5c:18:96:01:d9:79:13:
ca:9e:b5:aa:6e:4d:b9:3a:2e:cb:07:94:67:b8:a0:
77:eb:2c:8e:a8:47:c6:34:98:6e:6c:9c:9a:57:56:
76:d5:cb:00:e2:c1:95:90:ed:2c:f3:41:05:f6:6e:
ee:f0:7c:6d:c7:73:41:f7:9d:25:f4:d7:ec:09:a6:
3a:b1:b2:a9:7e:7d:8c:e3:1d:95:60:f2:8c:07:db:
ac:cd:44:a4:9f:ed:ab:9b:57:0d:c3:f3:59:6d:0c:
a8:e7:be:96:c9:ed:00:9e:cd:94:81:39:e1:6a:e7:
67:15:de:69:51:4f:9e:e8:76:3d:87:e2:b0:18:6a:
97:fe:6a:18:10:1e:66:83:59:85:b9:c8:60:f6:ba:
88:43:00:d9:c6:78:0e:fb:95:5d:39:b9:dd:db:73:
df:8b:5d:80:fd:35:37:b8:03:00:97:08:ae:99:3c:
b2:d7:d7:a0:b2:71:61:c6:ba:24:f7:ed:04:8b:e7:
9f:30:a4:14:20:15:b2:2c:c5:c2:28:ad:30:a9:92:
a5:23:dc:6b:19:7c:ea:d7:45:c2:26:22:1f:07:eb:
94:e6:6e:84:e3:44:d4:a6:80:b1:b6:a4:1e:58:df:
ae:b9:a3:6b:ff:98:3c:3c:a9:87:96:a9:da:da:ef:
94:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2B:A3:1C:1F:21:47:82:64:0E:60:8E:EF:D6:C9:7D:82:3B:E7:A9
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/NyujHB8hR4JkDmCO79bJfYI756k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.150.0/24
217.28.132.0/24
217.28.141.0/24
Signature Algorithm: sha256WithRSAEncryption
45:e7:5c:9e:38:ad:f1:e6:f0:fb:10:f2:7f:b3:2a:f7:27:61:
c7:e9:98:74:15:ea:7c:5a:c3:aa:f4:f3:cc:96:15:03:4f:43:
a2:c0:45:f3:d6:06:03:7d:d1:5d:24:88:b4:c4:73:b3:4e:d1:
8c:92:d1:2f:3e:99:4d:85:0f:0a:19:27:0f:28:c9:84:37:3d:
16:da:36:6c:4a:a4:e5:85:a7:ea:6d:7a:64:f7:52:72:3b:cd:
26:3c:ba:7d:c7:6c:cf:2c:71:f3:fd:7a:33:ca:08:d9:56:a8:
48:3d:ca:25:84:74:8f:da:c2:7f:ba:a3:54:9c:00:e7:8b:44:
16:b3:9f:6b:d5:6a:72:7a:a0:4c:e1:04:09:ec:4a:78:58:cb:
8f:12:e7:c1:94:1f:b9:fe:27:2d:9b:08:de:99:28:07:c8:0b:
04:fd:1e:de:6a:10:66:e3:2b:26:d1:d2:be:ac:36:51:5e:05:
0c:d4:05:5e:3a:92:7a:98:84:34:d6:15:64:d2:e3:1f:b3:90:
b1:ae:15:2e:0f:0f:40:51:24:26:49:e4:89:91:12:70:09:5e:
1a:4d:24:e6:f3:af:51:18:a0:a3:ea:4e:cc:24:d5:b2:f4:f6:
9e:c8:bc:1b:f6:79:3d:42:e6:02:8b:5e:e9:e9:ed:71:31:75:
c4:17:ee:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:26:03 2024 by rpki-client on console-ams.rpki-client.org