Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/n7tReWNZ9epaX3dp35dWooTVWdc.roa
File: n7tReWNZ9epaX3dp35dWooTVWdc.roa (raw, json)
Hash identifier: uNbg62yPbAItzx+QlXPSdeiy13+eKFUT8/CRJFZSVlw=
Subject key identifier: 9F:BB:51:79:63:59:F5:EA:5A:5F:77:69:DF:97:56:A2:84:D5:59:D7
Certificate issuer: /CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Certificate serial: 0190A8AFD6419730A84D6B349C679D61D892
Authority key identifier: 10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/n7tReWNZ9epaX3dp35dWooTVWdc.roa
Signing time: Fri 12 Jul 2024 20:43:34 +0000
ROA not before: Fri 12 Jul 2024 20:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 185.70.45.0/24 maxlen: 24
185.70.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a8:af:d6:41:97:30:a8:4d:6b:34:9c:67:9d:61:d8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Validity
Not Before: Jul 12 20:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fbb51796359f5ea5a5f7769df9756a284d559d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:31:a6:da:d7:93:1d:27:89:48:01:29:4e:88:
be:5a:f5:9e:69:39:2b:60:75:11:ad:1f:54:f4:ac:
6b:c6:87:3a:65:9f:85:4c:0f:3a:31:5c:29:a3:b2:
42:f4:62:97:18:9e:59:60:d4:b8:cc:8d:0c:17:23:
55:4c:18:76:a8:3b:0a:56:3d:95:36:7d:99:7c:a1:
fd:c5:76:ee:ae:58:ef:2d:f2:50:ef:e2:d3:23:64:
c0:8e:6a:b2:85:7c:64:0e:45:cd:2b:11:8c:50:0d:
c7:b1:d1:af:c8:3c:16:fe:b9:af:d6:55:7c:3b:dc:
6c:36:80:e1:63:a3:38:65:09:fc:55:29:5f:a1:88:
16:7a:67:75:9b:ce:2b:d0:09:e8:a3:ed:00:9a:ef:
af:7a:8f:e6:84:e9:ce:61:35:ba:0d:7c:69:77:21:
bb:c6:b8:13:68:3a:bb:84:40:b3:e9:94:15:22:50:
fe:f8:19:b5:8a:8c:dd:f6:d1:b6:71:83:cc:11:bf:
43:b5:52:fc:dd:26:e8:56:69:c5:33:8e:81:27:67:
82:12:79:f0:9d:b8:18:53:68:da:fc:98:86:b5:7a:
76:82:d7:50:2c:d5:49:85:a8:bf:c1:30:c5:d6:d9:
64:15:60:4c:da:55:ef:33:ce:9d:7c:c6:4d:c4:a7:
0c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BB:51:79:63:59:F5:EA:5A:5F:77:69:DF:97:56:A2:84:D5:59:D7
X509v3 Authority Key Identifier:
keyid:10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/n7tReWNZ9epaX3dp35dWooTVWdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.45.0-185.70.46.255
Signature Algorithm: sha256WithRSAEncryption
68:3b:af:54:c7:8b:b0:7d:f6:c2:76:b2:74:dd:0c:6b:fa:08:
e2:44:ac:d2:08:63:30:4b:c2:6f:62:8a:42:db:e9:2a:b4:ab:
64:03:73:d3:78:88:6e:42:bb:86:39:16:e6:69:e8:ac:08:d7:
48:87:69:8d:7b:70:57:f0:36:f9:ce:e7:7b:a9:7c:e2:af:c9:
40:bf:35:cf:cb:0b:64:95:f8:6c:bd:ab:93:c3:8f:02:27:24:
da:ef:b0:1c:0b:9d:60:12:13:73:d9:05:58:49:1b:ac:83:dc:
d6:16:ae:4f:08:48:b1:d0:35:16:d6:88:72:06:53:f2:9d:93:
8d:fb:92:71:eb:c0:dc:bf:a7:a3:ac:17:b3:0b:5c:86:0f:c0:
11:78:d8:d3:1e:91:f2:e6:7d:86:58:23:68:11:11:18:5d:4a:
e1:05:b9:24:49:63:fb:30:bd:fe:e1:67:47:88:b7:70:7d:1d:
ce:6c:44:ee:4e:f2:91:01:60:6d:b3:e1:36:99:67:5f:b8:c4:
a0:3b:60:b7:da:e8:9d:7e:d3:55:14:54:ff:9e:2a:84:15:bf:
50:70:d5:50:1e:d3:05:1e:d4:9d:d0:8a:e5:48:68:43:ed:40:
43:00:a3:b5:ba:7c:ce:a4:c6:2d:89:69:38:ff:d5:24:4d:09:
11:db:38:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:41:01 2024 by rpki-client on console-fra.rpki-client.org