Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Nysa5tAHfy6oxzkX__35wTpDOsw.roa
File: Nysa5tAHfy6oxzkX__35wTpDOsw.roa (raw, json)
Hash identifier: M4AdM7J9MqMyIbPEYC1020PKQzPHWLpHyX5OY/0PW7M=
Subject key identifier: 37:2B:1A:E6:D0:07:7F:2E:A8:C7:39:17:FF:FD:F9:C1:3A:43:3A:CC
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018CC2DACC40DB9864FF0E494A39BDFC92F3
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Nysa5tAHfy6oxzkX__35wTpDOsw.roa
Signing time: Mon 01 Jan 2024 02:29:28 +0000
ROA not before: Mon 01 Jan 2024 02:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25552
IP address blocks: 82.177.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:cc:40:db:98:64:ff:0e:49:4a:39:bd:fc:92:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 02:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=372b1ae6d0077f2ea8c73917fffdf9c13a433acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:f7:4e:7f:0f:e2:b1:1e:78:d4:9a:95:84:08:
fa:87:38:51:58:5e:94:cd:31:a9:27:2f:68:5c:b9:
a7:5f:b8:f3:1b:7b:a0:14:f3:e6:d8:e6:15:f7:b2:
07:84:96:de:81:34:72:33:6d:15:3d:04:3c:0e:75:
fd:6e:0f:2d:5b:79:7d:48:49:35:2c:a2:4c:e9:d0:
26:4a:9b:49:99:01:c5:1b:5e:8d:dc:c9:21:a4:e3:
28:19:0a:30:cb:6d:e8:4f:34:c2:2a:db:9b:60:4c:
a7:f1:07:0b:98:16:81:0f:3b:78:63:77:c7:2e:56:
da:8f:cf:20:cc:24:16:16:78:42:7f:b7:2e:18:2a:
14:3e:1b:5b:64:98:33:b2:f9:99:a9:d4:5c:9c:f5:
44:07:73:e4:e2:6e:35:7a:dc:7e:44:2d:35:ad:1c:
ba:30:1b:07:a3:aa:f3:15:71:30:3b:e5:e4:26:19:
43:7c:ec:fb:83:85:16:22:5c:b5:4a:b3:13:b2:85:
10:2d:94:64:19:d1:71:f2:8e:2d:38:69:00:3d:3e:
3b:8c:1e:fb:9b:5d:02:67:1d:09:da:52:e1:1e:32:
ac:68:41:54:da:1e:fa:1d:7b:24:35:29:87:0c:56:
8e:87:3e:1e:b3:6e:c9:6b:45:b7:8a:fa:c5:17:3a:
cc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2B:1A:E6:D0:07:7F:2E:A8:C7:39:17:FF:FD:F9:C1:3A:43:3A:CC
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Nysa5tAHfy6oxzkX__35wTpDOsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.246.0/24
Signature Algorithm: sha256WithRSAEncryption
77:d8:a6:99:f7:d2:84:b4:2c:5d:cf:fe:70:09:56:01:ab:ca:
8b:0d:14:5a:ea:05:1e:6c:4e:59:fd:38:e2:ae:cc:91:39:c1:
97:c8:ed:f6:ec:b8:09:b8:0d:5b:be:c3:a7:68:ec:ea:90:34:
f7:c9:db:3a:8c:b8:80:c8:28:51:80:b5:d1:62:76:da:db:ba:
29:2c:3d:d0:46:2f:fc:f0:f7:23:12:2b:1b:5f:20:00:78:40:
5c:c0:4a:63:99:65:88:9c:0a:74:55:b5:c9:ea:b0:e3:f6:d2:
62:73:86:d2:f0:20:85:ad:76:45:fc:cb:a0:3c:d7:17:86:5f:
4c:79:55:ee:ac:34:d2:18:28:ea:13:5d:80:6f:e9:d6:c3:33:
de:d0:75:7e:cb:0b:43:c5:ce:6a:7f:c6:0b:32:58:41:64:23:
b2:7d:7a:b7:0d:ca:c2:e3:d9:ac:8d:6e:19:64:c3:a5:a5:b1:
a1:2b:24:05:f3:29:69:51:ed:6d:09:22:2c:dd:a6:d4:ee:16:
ae:11:78:2a:8c:b2:44:67:d9:17:df:cf:46:61:15:14:c8:f8:
42:05:e0:79:b0:d7:8f:78:08:c3:cc:fd:42:5f:cf:27:ea:e1:
00:00:da:77:8f:91:d7:9c:ad:fb:5c:6d:ab:e6:19:54:a2:fe:
51:41:54:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:44:17 2024 by rpki-client on console-ams.rpki-client.org