Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/Nw7dodNAbGnVfoF8andWd7kjG04.roa
File: Nw7dodNAbGnVfoF8andWd7kjG04.roa (raw, json)
Hash identifier: 76OlZx7XJ+PxwMmRZOkBsmCUCjTsEChccfoEEeFWI5E=
Subject key identifier: 37:0E:DD:A1:D3:40:6C:69:D5:7E:81:7C:6A:77:56:77:B9:23:1B:4E
Certificate issuer: /CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Certificate serial: 0192B82A5E3BDA091679CB3F5D525514F859
Authority key identifier: 74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/Nw7dodNAbGnVfoF8andWd7kjG04.roa
Signing time: Wed 23 Oct 2024 06:57:17 +0000
ROA not before: Wed 23 Oct 2024 06:57:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41152
IP address blocks: 91.227.246.0/23 maxlen: 23
91.228.22.0/23 maxlen: 23
193.148.64.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/dLTNPt9SHfjsChURESctP7kbmcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/dLTNPt9SHfjsChURESctP7kbmcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b8:2a:5e:3b:da:09:16:79:cb:3f:5d:52:55:14:f8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Validity
Not Before: Oct 23 06:57:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=370edda1d3406c69d57e817c6a775677b9231b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:64:2e:ff:65:01:54:3a:bc:0b:64:40:a2:51:
a4:96:4b:5c:ff:21:5d:c0:62:31:35:2c:6d:2b:80:
96:72:99:25:27:4f:8e:0d:38:a3:72:2f:b4:20:c4:
5e:8d:3a:68:08:99:a7:ae:5f:7a:47:de:50:a5:7b:
e3:fc:41:69:84:10:eb:58:61:07:b4:1c:c8:e9:1c:
18:ca:ee:88:76:ef:ad:4d:62:84:16:c8:2b:ea:1e:
57:05:e7:08:1c:81:67:88:48:33:7e:56:85:cf:fd:
46:59:7a:87:42:1e:13:6c:1d:0b:c7:56:9c:4e:c8:
a4:f5:58:1d:d2:3e:06:96:d8:bb:90:5b:fd:df:0b:
9d:5b:03:b8:35:81:1b:61:60:7b:ca:47:ec:e0:de:
47:0d:47:5f:5d:1a:9d:71:7b:39:f2:67:bb:06:36:
bf:44:e5:d3:92:67:99:50:07:8d:50:db:11:6d:f3:
91:ca:25:1f:fc:da:46:da:39:63:9e:38:19:b2:c2:
f9:f0:59:ac:34:e5:79:62:1b:aa:1e:52:d2:7d:02:
16:1b:c3:6e:64:83:0d:a8:f9:cd:ac:c8:9f:b1:72:
7b:4e:e7:8c:d6:ff:aa:08:ff:4d:f4:b7:03:ef:a5:
2b:a2:9a:0f:c5:33:42:9b:aa:66:05:b7:e1:74:ea:
b1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0E:DD:A1:D3:40:6C:69:D5:7E:81:7C:6A:77:56:77:B9:23:1B:4E
X509v3 Authority Key Identifier:
keyid:74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/Nw7dodNAbGnVfoF8andWd7kjG04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/dLTNPt9SHfjsChURESctP7kbmcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.246.0/23
91.228.22.0/23
193.148.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:82:c9:f6:85:d2:87:a7:a4:1c:42:87:17:f7:ba:cb:8c:60:
77:81:88:a4:8e:4f:52:41:fc:b5:f2:fc:75:9c:76:0b:12:7a:
4d:61:8d:46:b6:f7:3a:bc:d2:17:07:71:89:ab:c8:00:69:41:
33:73:55:e8:46:6e:f5:39:e3:54:d1:36:2f:1e:de:63:b4:bc:
fe:39:7d:6c:9f:73:c2:47:d7:1f:c2:82:03:c0:fa:d4:06:84:
03:5d:6c:25:4d:41:f0:d0:ea:9f:26:42:31:d3:43:c3:59:61:
91:3d:07:79:eb:b2:26:d4:b2:30:a5:30:bf:a7:d5:7c:4d:01:
11:f9:0c:14:b3:9f:8f:8f:31:d3:cd:91:4c:8a:47:18:eb:25:
32:78:4d:1f:88:71:77:a0:47:58:52:e9:23:00:d8:db:42:00:
d8:da:cc:6f:c2:03:65:ee:e0:e3:1c:5c:84:fa:83:48:83:56:
e9:97:85:02:9f:0c:56:7f:30:f8:d7:a4:8b:bb:4b:40:a6:21:
e8:50:75:06:f1:77:97:d1:ba:93:7a:bc:97:c9:21:5c:42:22:
7d:44:af:12:52:b2:31:49:bb:60:20:5a:f3:f5:c1:df:ca:7f:
5d:ea:e6:d0:a7:8b:b2:9a:71:84:ab:61:45:09:a7:c9:35:9e:
7c:9e:22:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:03:10 2024 by rpki-client on console-fra.rpki-client.org