Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/nGlePDdXDY1GGRX7u9Eo1re403M.roa
File: nGlePDdXDY1GGRX7u9Eo1re403M.roa (raw, json)
Hash identifier: wgyoxF28dfq6WydSjdFpjoJoR5UtmwCtZlOYVSOk7nc=
Subject key identifier: 9C:69:5E:3C:37:57:0D:8D:46:19:15:FB:BB:D1:28:D6:B7:B8:D3:73
Certificate issuer: /CN=274cc4109b34d144cbeb4e20a6bd3c07591821b5
Certificate serial: 018CC424B8DDFA0DBA3355073A437E1DD92C
Authority key identifier: 27:4C:C4:10:9B:34:D1:44:CB:EB:4E:20:A6:BD:3C:07:59:18:21:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/nGlePDdXDY1GGRX7u9Eo1re403M.roa
Signing time: Mon 01 Jan 2024 08:29:50 +0000
ROA not before: Mon 01 Jan 2024 08:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50474
IP address blocks: 185.246.44.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:b8:dd:fa:0d:ba:33:55:07:3a:43:7e:1d:d9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274cc4109b34d144cbeb4e20a6bd3c07591821b5
Validity
Not Before: Jan 1 08:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c695e3c37570d8d461915fbbbd128d6b7b8d373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:7a:a9:4d:72:69:a5:25:e1:ae:01:02:6a:
22:50:b3:1f:41:91:ad:2e:be:4b:18:3d:37:10:b5:
e0:6b:f0:9b:8f:80:eb:ef:89:16:b0:48:d1:50:d0:
87:76:51:e7:f6:54:f4:c6:62:f0:56:83:69:d8:cd:
f9:15:20:72:9e:04:66:0c:d5:27:43:39:cb:4c:7f:
d9:87:3f:79:71:5c:13:cb:5e:f4:4a:8b:1c:19:73:
80:b4:cc:7a:94:6d:19:0f:b4:e4:d2:85:db:0d:3d:
98:50:58:ee:c1:53:f1:7f:aa:f8:b4:1e:48:e0:d6:
d1:64:d7:e3:3e:eb:0a:6d:2f:8e:89:f5:56:17:e1:
e2:56:8b:d4:51:64:79:9a:7d:3e:5d:de:e8:3d:af:
c6:e2:00:4a:6c:6a:af:e2:9d:6d:b8:10:d3:96:a3:
13:65:1c:c9:f2:a1:43:0d:50:65:70:8c:f3:cc:d0:
b9:84:ba:92:22:bf:9a:89:6f:ee:a7:88:be:de:6d:
be:36:dd:cb:97:5b:f5:96:53:41:7f:fa:dd:7c:e8:
b8:cb:0d:36:60:7f:e3:be:04:52:7f:20:0b:77:44:
45:56:26:02:ca:14:fa:57:2b:8a:34:e6:33:91:38:
6f:79:34:99:72:44:dc:79:f7:07:74:83:e7:dd:95:
3c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:69:5E:3C:37:57:0D:8D:46:19:15:FB:BB:D1:28:D6:B7:B8:D3:73
X509v3 Authority Key Identifier:
keyid:27:4C:C4:10:9B:34:D1:44:CB:EB:4E:20:A6:BD:3C:07:59:18:21:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/nGlePDdXDY1GGRX7u9Eo1re403M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.44.0/22
Signature Algorithm: sha256WithRSAEncryption
35:44:16:02:cd:6a:15:aa:2a:d5:c1:63:33:38:05:f1:cd:8e:
8c:11:a8:b3:f4:46:69:e1:94:0b:2d:fa:5e:54:83:8a:ab:dd:
f7:8b:72:b7:74:dc:ac:b5:7d:cb:a9:9d:23:82:30:16:48:b5:
8e:57:a8:ea:28:63:85:85:98:7c:45:e0:79:4f:88:44:fd:39:
02:7d:a0:c1:e3:16:65:2f:31:6f:0f:6f:97:a0:e4:54:f2:d4:
1c:d9:b6:05:c4:89:6e:bb:0f:14:51:ec:a7:83:e2:ec:6f:d0:
88:67:d7:cc:47:2f:4e:69:e6:47:21:6d:55:75:5d:08:6e:b6:
38:d7:00:de:c3:62:4e:b3:19:19:f5:c7:f8:f3:44:7c:b8:1e:
e6:1e:d2:43:9e:db:ba:6d:47:7b:1d:eb:63:a9:6d:45:10:6f:
7f:6c:0b:15:1a:11:95:5f:67:a3:6d:bc:49:b1:8c:35:55:12:
10:c1:9a:2d:a1:d3:25:ac:62:71:7b:50:cf:71:70:56:a8:b3:
79:44:b4:98:8d:af:f3:93:46:cb:6e:1e:77:93:60:67:32:36:
28:bc:a4:74:b4:3a:5f:a7:97:87:e8:63:9a:31:a0:2a:28:61:
ed:bd:95:c9:85:69:2c:c1:85:c2:09:e2:45:99:72:19:07:10:
e1:52:df:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:02:31 2024 by rpki-client on console-fra.rpki-client.org