Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/nu-IiIFelUf656scMVPt37iaJjE.roa
File: nu-IiIFelUf656scMVPt37iaJjE.roa (raw, json)
Hash identifier: DLl48j5eiYDO7h+s4ymPor5tMA9qKg5BJkU7NVqt0ds=
Subject key identifier: 9E:EF:88:88:81:5E:95:47:FA:E7:AB:1C:31:53:ED:DF:B8:9A:26:31
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018DCBE88151281AB6ECB5D9EE7F76A96F76
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/nu-IiIFelUf656scMVPt37iaJjE.roa
Signing time: Wed 21 Feb 2024 13:43:48 +0000
ROA not before: Wed 21 Feb 2024 13:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 62.72.168.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
176.57.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 15:42:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:e8:81:51:28:1a:b6:ec:b5:d9:ee:7f:76:a9:6f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Feb 21 13:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9eef8888815e9547fae7ab1c3153eddfb89a2631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:68:84:62:61:04:ef:7f:69:bb:db:f6:bf:d6:
76:65:bf:41:77:4a:41:db:9c:92:e4:60:9b:a3:ff:
30:37:0c:08:39:b0:fc:25:76:b4:23:4a:34:3e:69:
bf:19:11:3d:66:75:e6:c0:7b:92:88:06:93:c9:1f:
77:cc:33:47:93:9f:29:8d:c7:95:0e:c9:fb:97:19:
33:7a:2b:ca:f8:6e:88:6e:db:87:63:89:74:59:f2:
26:20:d3:fa:01:2a:2d:96:5d:07:9e:6d:92:55:0e:
e4:e4:70:0d:35:55:3f:82:73:e8:1a:f8:f8:fe:d0:
ac:98:72:05:e7:82:b9:d1:37:22:3d:91:09:72:8f:
3b:28:a3:e2:79:4e:60:d2:0c:c3:5d:74:79:ee:22:
7b:8a:2b:df:ef:88:ac:60:b3:6d:0a:cd:49:c4:7e:
e4:20:17:6c:75:25:9d:76:ac:40:75:98:8c:0a:db:
64:29:5f:3a:36:c2:10:d6:81:24:b1:7b:f9:e6:9a:
bf:36:55:6e:df:49:6f:e4:d1:dc:68:d9:a1:d2:01:
fc:5a:5b:84:0b:9b:6b:ed:19:a9:51:f6:73:19:a9:
03:58:68:af:21:09:c9:f4:d6:d1:94:78:ad:b3:15:
fc:7c:bb:6b:9a:3d:32:eb:c1:ce:20:dc:ce:83:26:
3b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EF:88:88:81:5E:95:47:FA:E7:AB:1C:31:53:ED:DF:B8:9A:26:31
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/nu-IiIFelUf656scMVPt37iaJjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.168.0/24
81.21.14.0/24
176.57.55.0/24
Signature Algorithm: sha256WithRSAEncryption
94:42:28:ee:9e:7a:a6:cc:48:3e:93:c0:eb:4e:c0:23:0a:03:
35:01:19:60:c0:24:2b:f1:47:86:4c:d9:7f:6c:81:86:19:7a:
03:dd:de:33:3a:53:d6:78:62:4c:e8:93:3d:60:c3:8e:ba:1b:
f1:ba:43:79:e9:95:5a:e2:11:9b:87:e8:92:77:d4:cc:73:bf:
af:4b:28:ed:25:4a:1e:a6:a8:0a:06:62:b6:17:1b:ac:4d:17:
53:61:37:9d:2b:62:a3:36:75:da:87:6f:05:f0:cb:fc:b1:af:
ed:e5:13:45:8e:d2:06:76:f4:70:4a:05:5b:28:51:6b:57:24:
4f:1a:d3:7f:4a:65:cf:17:9c:81:96:b6:c9:de:74:91:a3:b2:
79:2b:a9:b8:04:45:14:31:2d:9b:b9:12:3d:12:5e:02:5d:02:
54:44:3b:db:47:a5:03:28:9e:49:f5:e0:2e:a2:91:57:92:57:
51:83:d4:eb:f3:42:3d:9a:34:e9:6d:c7:83:4d:c1:21:c0:26:
e4:cc:44:6f:5d:1e:18:ef:07:aa:7f:4c:f2:6d:b5:d8:5d:76:
75:ee:be:ea:c2:cc:37:bc:06:b8:3f:8d:df:c7:ce:38:7e:47:
04:4b:5d:51:90:ac:5a:10:49:ef:ad:5b:eb:e9:ac:47:fd:b5:
d3:d5:35:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 22:34:13 2024 by rpki-client on console-ams.rpki-client.org