Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/25e38f-a091-4e5c-bf63-66dd2a91faca/1/N7XKsqB319qAAGzhQpZJ4PriCj0.roa
File: N7XKsqB319qAAGzhQpZJ4PriCj0.roa (raw, json)
Hash identifier: emgIPPjuHQLOPvcC5E3u/QnPz8g2Gepv2EwHAjpJCQ8=
Subject key identifier: 37:B5:CA:B2:A0:77:D7:DA:80:00:6C:E1:42:96:49:E0:FA:E2:0A:3D
Certificate issuer: /CN=39469af33611b79084f575e95b13e66550edb383
Certificate serial: 018CC500FA2CE96BD65C58716B8FC128C5B6
Authority key identifier: 39:46:9A:F3:36:11:B7:90:84:F5:75:E9:5B:13:E6:65:50:ED:B3:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUaa8zYRt5CE9XXpWxPmZVDts4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/25e38f-a091-4e5c-bf63-66dd2a91faca/1/N7XKsqB319qAAGzhQpZJ4PriCj0.roa
Signing time: Mon 01 Jan 2024 12:30:24 +0000
ROA not before: Mon 01 Jan 2024 12:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55081
IP address blocks: 185.83.68.0/24 maxlen: 24
185.83.69.0/24 maxlen: 24
185.83.70.0/24 maxlen: 24
185.83.68.0/22 maxlen: 22
185.83.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/25e38f-a091-4e5c-bf63-66dd2a91faca/1/OUaa8zYRt5CE9XXpWxPmZVDts4M.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/25e38f-a091-4e5c-bf63-66dd2a91faca/1/OUaa8zYRt5CE9XXpWxPmZVDts4M.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUaa8zYRt5CE9XXpWxPmZVDts4M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:fa:2c:e9:6b:d6:5c:58:71:6b:8f:c1:28:c5:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39469af33611b79084f575e95b13e66550edb383
Validity
Not Before: Jan 1 12:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37b5cab2a077d7da80006ce1429649e0fae20a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:43:92:00:75:99:07:18:a3:01:8e:98:68:be:
82:2f:6e:67:dc:ba:19:3e:e8:ec:47:6b:53:24:d6:
41:5e:4c:aa:b6:26:e3:ea:6b:b0:81:e9:88:0a:ba:
b6:6a:f1:8d:ec:ab:5f:70:e6:85:aa:67:7d:84:4b:
a2:78:af:10:f0:41:76:a4:e4:01:53:aa:82:f3:42:
12:34:7d:f7:56:ad:da:a0:de:28:55:58:0a:a4:7d:
1e:8b:ac:f1:63:e6:b0:20:7e:29:4d:f6:ac:5c:a5:
7b:9e:ee:5d:06:b8:24:44:71:04:11:93:b1:df:80:
ab:6d:8c:25:d3:fd:a4:fc:99:f8:8a:84:09:ab:0a:
f2:bb:da:3e:94:7b:11:1f:0f:7f:75:e9:88:0f:57:
79:2b:a8:e5:5b:af:23:22:a8:79:6a:b7:93:76:a0:
be:9c:9d:32:8d:fc:63:9c:22:80:b9:c7:24:eb:dd:
74:79:71:b3:56:ce:fb:41:ad:31:1f:62:ab:94:64:
d0:42:04:b1:ed:00:81:c2:c1:17:a0:9a:76:4f:d3:
99:ab:f7:e9:01:78:6e:7e:8c:62:d9:fa:d0:ab:38:
91:ce:2a:a5:1c:ae:06:2a:ce:6a:fe:60:71:75:f3:
82:4e:6d:af:2d:55:7c:90:f1:e0:35:7e:d4:2e:80:
39:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B5:CA:B2:A0:77:D7:DA:80:00:6C:E1:42:96:49:E0:FA:E2:0A:3D
X509v3 Authority Key Identifier:
keyid:39:46:9A:F3:36:11:B7:90:84:F5:75:E9:5B:13:E6:65:50:ED:B3:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUaa8zYRt5CE9XXpWxPmZVDts4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/25e38f-a091-4e5c-bf63-66dd2a91faca/1/N7XKsqB319qAAGzhQpZJ4PriCj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/25e38f-a091-4e5c-bf63-66dd2a91faca/1/OUaa8zYRt5CE9XXpWxPmZVDts4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.68.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:e7:f0:6d:c3:91:5f:a1:37:27:0e:78:9c:9e:13:17:7b:27:
e3:98:5e:16:17:25:b7:4e:89:0a:d1:d2:f1:26:15:b5:02:bf:
6c:86:2c:1b:84:9a:2e:69:0b:58:42:34:61:55:63:09:7e:65:
2f:86:88:fe:d9:5a:71:39:a9:a0:f4:cb:ce:07:dc:b2:6e:79:
08:c9:aa:3d:73:06:c1:2b:68:0f:7a:1f:3b:be:f2:65:18:34:
23:74:f3:b2:03:72:47:07:1e:7d:98:39:ef:4f:8b:c0:9c:a8:
ac:d8:08:1b:33:14:32:b7:69:13:69:39:7d:0c:79:f6:c2:39:
5a:18:d3:55:0d:63:ec:dc:57:53:ff:61:e5:a0:8a:ca:44:42:
76:86:62:25:1c:a7:bb:b6:dd:b6:19:ff:25:4f:5f:c9:24:db:
75:a0:31:17:08:51:30:60:42:b8:48:61:ab:d0:39:9c:7d:1c:
93:c9:c2:79:78:64:e9:a0:50:33:4e:b3:03:17:48:79:8a:8a:
53:4f:78:73:16:82:b7:b9:3e:28:70:92:f2:61:fe:3b:6f:01:
3c:6e:b4:74:3d:34:b1:80:00:03:25:bd:5d:ae:a5:31:df:c8:
49:0d:41:b7:65:80:50:04:b0:64:96:2a:6e:fb:b7:ab:1b:08:
cb:f9:99:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:59:58 2024 by rpki-client on console-ams.rpki-client.org