Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/239ec7-7d2c-42e5-b49a-2f9e93a65c08/1/NV6tUjau0TjgB8zkpVBPqIZyOAg.roa
File: NV6tUjau0TjgB8zkpVBPqIZyOAg.roa (raw, json)
Hash identifier: akxQUT+30KUuzA6/WFFeyMii2LHauOI9UWmiyiYtM+g=
Subject key identifier: 35:5E:AD:52:36:AE:D1:38:E0:07:CC:E4:A5:50:4F:A8:86:72:38:08
Certificate issuer: /CN=38180c074fbe598824c7003195b30aa4a366152c
Certificate serial: 018CC8DF2739530F7B2C98EE689546974809
Authority key identifier: 38:18:0C:07:4F:BE:59:88:24:C7:00:31:95:B3:0A:A4:A3:66:15:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBgMB0--WYgkxwAxlbMKpKNmFSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/239ec7-7d2c-42e5-b49a-2f9e93a65c08/1/NV6tUjau0TjgB8zkpVBPqIZyOAg.roa
Signing time: Tue 02 Jan 2024 06:31:56 +0000
ROA not before: Tue 02 Jan 2024 06:31:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20682
IP address blocks: 91.235.251.0/24 maxlen: 24
91.235.248.0/24 maxlen: 24
91.235.249.0/24 maxlen: 24
91.235.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/239ec7-7d2c-42e5-b49a-2f9e93a65c08/1/OBgMB0--WYgkxwAxlbMKpKNmFSw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/239ec7-7d2c-42e5-b49a-2f9e93a65c08/1/OBgMB0--WYgkxwAxlbMKpKNmFSw.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBgMB0--WYgkxwAxlbMKpKNmFSw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:27:39:53:0f:7b:2c:98:ee:68:95:46:97:48:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38180c074fbe598824c7003195b30aa4a366152c
Validity
Not Before: Jan 2 06:31:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=355ead5236aed138e007cce4a5504fa886723808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3f:02:94:73:a4:f7:91:fa:99:b0:20:19:a1:
0b:85:df:93:f0:16:68:9d:d7:e6:b6:32:33:68:aa:
7e:8c:1c:45:58:77:b3:dc:a3:be:d5:a5:33:aa:32:
cd:5a:94:a2:ff:e6:59:f9:c4:81:c1:8d:09:e1:92:
cd:fd:94:50:07:b0:e4:60:eb:a1:8c:a8:ca:10:0c:
c1:95:ea:9b:6b:af:8c:80:e7:fb:ea:29:46:86:44:
98:86:8f:eb:da:9c:9b:fe:9e:f2:b0:24:e1:1e:bd:
16:fb:1a:e4:93:a1:5c:a3:5d:e7:71:30:3e:fd:a1:
ac:25:6b:25:2e:eb:6f:90:20:8f:e0:58:a5:01:1a:
f3:07:09:5a:38:ca:c5:70:e7:f4:e9:7a:82:99:4f:
5d:ba:89:59:b4:98:60:58:21:7f:77:63:e5:6f:be:
cc:8e:fc:26:39:0d:74:1e:37:55:7b:d9:4b:a2:cc:
d7:3f:27:ab:52:14:80:5f:1c:d9:b8:16:0b:47:03:
43:8e:50:d9:bc:10:cb:7a:90:59:97:dc:02:38:58:
74:08:00:44:f4:91:08:6a:11:13:be:41:54:46:d2:
39:b7:e2:01:17:43:0a:00:95:50:60:33:53:f2:b4:
0a:fe:1d:14:2b:17:7b:12:15:ad:4f:b2:39:82:d7:
71:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5E:AD:52:36:AE:D1:38:E0:07:CC:E4:A5:50:4F:A8:86:72:38:08
X509v3 Authority Key Identifier:
keyid:38:18:0C:07:4F:BE:59:88:24:C7:00:31:95:B3:0A:A4:A3:66:15:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBgMB0--WYgkxwAxlbMKpKNmFSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/239ec7-7d2c-42e5-b49a-2f9e93a65c08/1/NV6tUjau0TjgB8zkpVBPqIZyOAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/239ec7-7d2c-42e5-b49a-2f9e93a65c08/1/OBgMB0--WYgkxwAxlbMKpKNmFSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.248.0/22
Signature Algorithm: sha256WithRSAEncryption
97:17:68:f5:04:30:19:fa:81:cf:48:02:fb:ee:6e:a1:10:ef:
9d:03:6b:ae:69:62:54:27:0e:68:20:66:84:e9:9d:e3:2e:53:
c9:35:dc:13:5f:42:cb:91:1c:aa:99:97:7e:b5:17:a5:78:ce:
c8:42:22:d2:21:ac:8d:de:f5:7e:d1:50:8d:eb:7f:cd:81:e5:
58:85:72:f0:12:c2:04:5c:c9:4e:3b:2e:da:69:1a:07:b8:46:
47:58:21:6a:01:46:f2:cb:9a:23:56:18:0e:92:16:f7:45:b8:
26:0f:7a:2d:33:4c:7f:79:b4:84:c2:96:d6:3c:e4:d2:d1:3c:
49:7f:8f:f4:79:88:ef:29:5c:d3:d9:25:a2:12:d4:56:cc:fb:
7b:44:a2:fb:64:e6:48:cc:cd:2b:25:5d:93:7d:1c:c6:63:0a:
ef:f1:57:78:c4:36:85:a3:58:22:75:26:93:fa:3c:6e:82:e0:
ed:fa:1a:73:d9:ba:5e:b1:ef:d4:0e:b2:06:22:9e:af:87:c9:
58:04:69:94:a9:70:7b:70:1f:1d:96:9d:0b:b1:82:b5:56:99:
ab:38:65:58:61:ea:7a:f3:97:37:92:ee:1a:eb:6e:25:d0:bc:
ba:4a:39:7a:c9:db:27:4d:9d:e0:00:a1:0b:d8:e2:af:9f:11:
3b:1a:d6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:46:21 2024 by rpki-client on console-ams.rpki-client.org