Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zSSqlCZs25DPnQ08XNP5TDsR0_8.roa
File: zSSqlCZs25DPnQ08XNP5TDsR0_8.roa (raw, json)
Hash identifier: mV/pOHVFydKBqy5T1RTgnpODEjpxAkGlv9+1TKSxo14=
Subject key identifier: CD:24:AA:94:26:6C:DB:90:CF:9D:0D:3C:5C:D3:F9:4C:3B:11:D3:FF
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0191C3440DA795F667F38A7DEC5336A3A64B
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zSSqlCZs25DPnQ08XNP5TDsR0_8.roa
Signing time: Thu 05 Sep 2024 17:38:22 +0000
ROA not before: Thu 05 Sep 2024 17:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.132.80.0/22 maxlen: 24
91.238.92.0/24 maxlen: 24
91.239.149.0/24 maxlen: 24
91.244.198.0/24 maxlen: 24
176.105.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c3:44:0d:a7:95:f6:67:f3:8a:7d:ec:53:36:a3:a6:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 5 17:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd24aa94266cdb90cf9d0d3c5cd3f94c3b11d3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:30:ce:12:17:cc:21:93:03:2d:7e:bc:7d:cf:
05:8b:49:50:b1:6c:bb:a0:dc:8e:6d:81:91:a8:f3:
db:86:5c:0b:65:51:65:a9:c1:8a:e7:08:10:65:4f:
a6:49:79:49:80:81:da:44:9c:71:7f:f3:4b:97:04:
65:74:9f:91:ec:8d:4f:29:31:ba:df:ee:04:2a:81:
22:cf:4d:ab:14:cc:c6:52:9d:d5:39:b3:ca:07:87:
d9:fe:73:88:15:c3:83:8a:c9:4d:f8:05:56:8f:ca:
b9:aa:e3:31:c8:5b:1c:2a:0b:c1:5a:64:12:f1:e6:
39:71:fa:93:f4:75:81:34:19:ab:b3:e2:3b:6c:96:
d6:53:bf:f4:1f:f4:28:bc:1a:7a:34:01:3b:fe:ff:
1d:63:70:6e:8d:5e:bb:36:f9:d9:83:49:19:33:c0:
a7:06:f2:1b:8e:38:65:c7:51:83:ad:41:66:d7:82:
f7:8c:78:68:8f:e2:91:f5:ff:84:11:5f:f8:01:5e:
f3:0a:f3:e0:be:cd:c6:7e:f9:1b:13:62:41:c8:c8:
dc:96:94:59:df:18:1e:4e:9c:3b:4e:47:ce:24:57:
c0:08:00:67:d9:24:f7:a8:0b:b4:80:4d:03:63:c1:
af:7a:22:f1:ec:72:4d:59:34:71:18:eb:8d:f7:fa:
5e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:24:AA:94:26:6C:DB:90:CF:9D:0D:3C:5C:D3:F9:4C:3B:11:D3:FF
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zSSqlCZs25DPnQ08XNP5TDsR0_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.80.0/22
91.238.92.0/24
91.239.149.0/24
91.244.198.0/24
176.105.228.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:58:02:e6:e9:80:56:8a:ff:a2:1c:cb:2c:5f:a7:c2:cd:ed:
41:25:6c:63:9c:40:5b:6c:f6:69:fd:37:2e:7b:2c:ac:e5:04:
f5:12:b5:12:e4:d1:15:46:5a:27:15:0c:d4:8a:e4:7c:93:1d:
5c:2d:0b:fa:0b:2b:b4:73:c4:e8:84:84:64:fe:82:c0:bd:57:
9b:ad:15:a7:fb:48:88:86:f5:e5:ff:96:ce:bb:aa:06:e6:f6:
c6:22:21:a4:23:a8:cf:1a:de:51:84:ef:62:b3:9d:45:b4:e2:
db:92:3b:f5:50:c0:58:3f:88:f1:ea:73:98:62:3f:f0:e5:6a:
a5:e7:a9:ad:37:c4:2d:a9:5f:3d:5d:a7:1f:f4:6e:08:ba:28:
0b:f0:d1:da:c9:e4:a8:77:33:ca:ca:80:cc:1c:94:bf:75:a3:
57:5f:ff:ac:3b:81:e2:1f:d4:9b:56:c5:20:e5:8e:b7:5c:74:
df:42:9d:c6:65:14:35:20:f0:d1:2b:54:e0:6b:77:b9:d8:8d:
8f:60:03:0e:29:04:41:aa:ef:51:6c:e0:1e:a1:6a:f0:8e:29:
b3:29:eb:74:9e:42:7b:7b:3a:bd:ce:c4:f8:0f:da:11:ad:cf:
db:31:d0:7e:c5:ec:0c:41:d4:1e:19:85:0c:0a:76:f2:d0:03:
d6:e0:e0:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 22:38:39 2024 by rpki-client on console-fra.rpki-client.org