Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/nhpAl7Ct9qhXu0VVJ5aBd_Vjtfc.roa
File: nhpAl7Ct9qhXu0VVJ5aBd_Vjtfc.roa (raw, json)
Hash identifier: LU07v3RsZjEUmS3f0wxEx4q2XOeGkrD+0mWrFTMimwM=
Subject key identifier: 9E:1A:40:97:B0:AD:F6:A8:57:BB:45:55:27:96:81:77:F5:63:B5:F7
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 018CF398B5CEF89FC26E0BC71C48DA5DA1AA
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/nhpAl7Ct9qhXu0VVJ5aBd_Vjtfc.roa
Signing time: Wed 10 Jan 2024 13:38:40 +0000
ROA not before: Wed 10 Jan 2024 13:38:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48806
IP address blocks: 193.39.215.0/24 maxlen: 24
91.212.38.0/24 maxlen: 24
45.93.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:98:b5:ce:f8:9f:c2:6e:0b:c7:1c:48:da:5d:a1:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 10 13:38:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e1a4097b0adf6a857bb455527968177f563b5f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:36:cd:d2:99:c4:aa:6d:ab:f5:18:67:6a:a7:
1d:c5:2d:6d:b7:82:e3:07:a6:26:ec:25:5e:2b:65:
79:e1:d8:23:f6:3e:40:56:2c:ae:dc:13:1b:f1:89:
89:38:47:02:57:f7:f7:5a:c9:94:63:2f:ef:35:e0:
98:04:57:ff:fe:9a:6b:fb:e5:8d:0d:5a:e0:73:a3:
5b:a6:b0:ce:cb:02:fb:eb:18:c1:b3:2e:66:b7:04:
22:59:e5:cc:1f:b7:b7:87:3e:0a:20:7d:fb:18:d7:
02:26:48:fd:72:d9:d8:a6:71:fc:b8:46:e5:40:11:
2b:39:37:3f:b0:77:58:cd:c7:ac:3d:9d:60:b4:8a:
dc:16:46:a9:3a:f6:86:b7:b6:de:bb:b4:b3:af:f8:
64:e7:05:fe:9a:63:ab:4d:e2:11:0e:6a:84:74:b5:
9e:e4:9b:c7:ab:3c:2f:e6:1f:d2:9a:92:55:94:0b:
76:b6:18:e4:84:48:fa:78:59:89:de:9b:d9:ea:da:
8f:a5:1d:6a:86:fc:04:66:12:2c:c9:bf:f9:95:17:
d2:15:95:56:73:e5:8a:c6:57:62:e7:a8:40:7b:d2:
8e:f7:4e:05:2d:48:6a:2c:91:e7:a8:76:24:20:dc:
e3:e4:6a:b4:6a:bd:27:53:8c:f4:37:f2:d4:80:d5:
05:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:1A:40:97:B0:AD:F6:A8:57:BB:45:55:27:96:81:77:F5:63:B5:F7
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/nhpAl7Ct9qhXu0VVJ5aBd_Vjtfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.149.0/24
91.212.38.0/24
193.39.215.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d6:89:7e:81:a3:3b:97:f3:25:99:b4:02:03:0b:68:7d:36:
22:83:1f:62:82:41:77:dc:5d:e4:50:0d:f5:77:89:5f:4d:86:
ce:37:e6:e1:27:08:a7:45:23:08:cf:8c:66:14:62:1f:99:ee:
12:5a:69:2c:3d:76:af:8a:9d:b0:e9:ef:36:2e:e7:60:94:fa:
51:4b:49:aa:df:b8:a6:ea:08:f3:8f:b2:93:31:72:de:f4:70:
96:54:08:11:ca:03:a5:06:80:4d:b5:f9:53:a4:3b:e3:3f:96:
14:cb:b6:68:e9:8a:3a:ea:5f:bc:21:ab:41:92:8c:06:4b:5d:
63:b3:d7:e5:15:e1:a9:3b:55:8c:e8:f1:d0:a7:e0:0a:2c:11:
c0:4e:ff:be:7b:e3:5d:28:a7:cd:f5:56:8b:2b:6b:b4:c1:c1:
ee:31:0f:2b:79:0d:e5:e2:f0:f6:0f:4e:c7:9b:5f:93:68:13:
8a:51:07:d7:bd:bd:6d:b3:94:d5:f8:c7:af:d3:34:63:71:b4:
7c:ac:8a:76:f6:5b:ef:e4:87:14:8a:c4:f5:d0:50:21:0d:2c:
9a:2c:81:fa:c6:87:c3:9c:6d:9a:19:37:c3:d2:12:b2:f7:9b:
7d:50:0c:18:2b:1e:f5:59:fc:71:37:67:f5:4e:63:f6:6e:f4:
03:79:f7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:29:24 2024 by rpki-client on console-ams.rpki-client.org