Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nMoQvugM4fw5J8Og7B02N4HptmA.roa
File: nMoQvugM4fw5J8Og7B02N4HptmA.roa (raw, json)
Hash identifier: 9T5bG4UWVQwMinyJ+4ARF+6vibckoGh11T7co2eh19o=
Subject key identifier: 9C:CA:10:BE:E8:0C:E1:FC:39:27:C3:A0:EC:1D:36:37:81:E9:B6:60
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0190C1E7394F96509F9488E2AE58502EA7E2
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nMoQvugM4fw5J8Og7B02N4HptmA.roa
Signing time: Wed 17 Jul 2024 18:14:34 +0000
ROA not before: Wed 17 Jul 2024 18:14:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21840
IP address blocks: 45.150.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c1:e7:39:4f:96:50:9f:94:88:e2:ae:58:50:2e:a7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jul 17 18:14:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9cca10bee80ce1fc3927c3a0ec1d363781e9b660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:af:3f:35:16:f4:c4:50:a7:df:46:e0:23:24:
43:04:49:24:84:58:ac:86:fb:5e:39:d2:d6:04:a6:
cf:01:53:b5:63:18:5a:8c:fe:6b:4e:2a:b8:62:48:
1a:e4:48:a3:7e:31:14:04:6f:c2:75:e6:f5:f9:19:
ae:48:d3:3e:fa:48:18:e9:64:55:f0:ad:55:b6:56:
ba:77:3d:d9:67:70:c8:59:56:e2:a2:cf:87:3a:a5:
68:cb:2c:75:1d:37:50:4a:69:58:61:56:15:ff:cf:
b8:e8:31:6c:9c:32:e1:8c:bd:24:da:7d:4d:f5:da:
a6:27:8a:48:90:4d:67:3b:d5:4d:e2:25:30:d5:9a:
2e:76:b5:8a:33:df:5b:2d:54:d9:ca:db:ff:60:ef:
7b:6b:43:69:a6:bf:36:d7:ac:6a:b7:4b:48:10:db:
f6:76:f1:3c:0c:1f:b6:c3:d9:07:96:3c:08:61:2e:
3e:74:c9:a0:47:ed:09:7b:71:98:60:4c:47:60:ee:
f7:a7:70:7c:d6:4e:86:62:64:51:71:bb:95:ec:19:
ea:3f:6e:89:05:36:7f:d7:3e:b5:f1:1b:95:d0:53:
7d:80:17:6e:0a:66:e2:f7:d3:b4:bb:4b:c6:4b:f6:
73:ff:d3:94:78:a9:b2:cf:98:76:13:76:2c:b3:7f:
d6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CA:10:BE:E8:0C:E1:FC:39:27:C3:A0:EC:1D:36:37:81:E9:B6:60
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/nMoQvugM4fw5J8Og7B02N4HptmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.53.0/24
Signature Algorithm: sha256WithRSAEncryption
11:9c:d9:36:c2:1e:51:ec:15:86:81:d8:ae:98:a3:69:bd:83:
e4:3c:e5:e8:50:e9:5a:4b:5f:e3:1a:63:d1:84:84:b2:d7:52:
a8:ef:ec:3d:a3:9b:ce:bd:b4:46:a3:43:06:33:16:47:0e:cc:
60:67:93:65:cc:c0:3f:ed:93:42:1b:c5:c1:bd:af:97:16:9c:
bf:92:16:59:cc:99:b3:72:e4:c7:dc:1c:27:85:35:d8:e7:30:
f4:76:1c:ab:cc:32:f4:3e:48:fb:b9:ed:1a:c5:31:89:b5:ca:
d2:0d:7b:bc:d5:2a:78:19:21:f4:3e:d6:1a:cd:50:ae:e7:a5:
db:3c:5c:81:30:37:db:5c:0a:f0:ba:20:46:3b:ec:ed:b1:3c:
7a:0d:59:93:c8:18:d8:91:0d:db:27:e2:5a:61:c3:ad:2c:dd:
23:80:09:2f:96:fa:f0:ed:a0:fd:32:36:0a:7f:e0:24:28:85:
16:bd:f2:6e:48:ea:5b:30:e6:fd:88:91:21:3d:28:56:75:f8:
74:c8:e6:b3:16:9d:ce:18:e3:ba:a6:7a:08:92:ed:c2:38:56:
a2:e3:ac:c1:d3:b8:43:94:30:1e:cc:0e:de:74:e2:e3:d5:71:
71:a0:69:e9:8a:2c:15:42:bd:80:02:f5:5b:de:23:cf:58:dc:
7f:b8:26:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:00:44 2024 by rpki-client on console-fra.rpki-client.org