Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/36qzEAPdERfLfr8nkRvLVSZVP9U.roa
File: 36qzEAPdERfLfr8nkRvLVSZVP9U.roa (raw, json)
Hash identifier: y2rk7UD5JnFzwPgAy8OIRT0FrCxv+Glw/6qqNVBwL3Y=
Subject key identifier: DF:AA:B3:10:03:DD:11:17:CB:7E:BF:27:91:1B:CB:55:26:55:3F:D5
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0190DA3907732113FE2C809CE312A8AA3678
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/36qzEAPdERfLfr8nkRvLVSZVP9U.roa
Signing time: Mon 22 Jul 2024 11:34:48 +0000
ROA not before: Mon 22 Jul 2024 11:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48806
IP address blocks: 45.146.186.0/24 maxlen: 24
185.205.191.0/24 maxlen: 24
185.239.242.0/24 maxlen: 24
188.212.155.0/24 maxlen: 24
188.241.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:39:07:73:21:13:fe:2c:80:9c:e3:12:a8:aa:36:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 22 11:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfaab31003dd1117cb7ebf27911bcb5526553fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:d4:95:12:0d:78:db:b4:86:e7:b5:24:a5:
d4:59:85:cd:d9:51:e9:81:b3:85:bc:fb:b3:b8:fe:
bb:f7:f5:f6:ca:57:14:3a:fc:e6:e8:01:b9:68:04:
ea:6d:4a:30:47:fb:78:dd:4c:05:66:01:66:99:c1:
78:20:65:f0:17:35:98:de:36:90:11:7f:1b:32:fc:
a5:c4:16:a3:f0:56:d1:59:81:59:65:df:04:cc:a6:
88:81:6e:fb:57:f2:7f:91:b8:05:03:5f:dc:42:4a:
09:7c:0b:80:91:39:a5:8a:d0:8b:c1:70:b0:f5:01:
92:78:c6:82:62:cd:1d:d7:33:6b:a4:4f:2f:73:4e:
d6:4d:0b:32:30:47:d0:1e:89:82:ba:91:f9:a0:5c:
19:a7:b6:fb:52:3c:1c:f3:3c:46:cd:1b:81:63:80:
ca:b3:69:fd:9b:82:75:9b:16:c7:ba:4d:fe:6d:4e:
30:23:47:6b:af:77:ad:cf:60:ef:45:7c:7d:3b:5e:
e7:5f:f9:1e:d9:4a:e9:12:05:68:20:ef:04:14:02:
99:1b:99:c2:72:a7:05:06:67:08:45:47:2b:f3:91:
69:49:20:6c:ef:3c:55:3e:df:32:bc:77:ce:f0:a3:
0e:c8:ee:a0:c7:50:ee:9b:f0:e5:e6:4d:27:9b:7c:
10:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AA:B3:10:03:DD:11:17:CB:7E:BF:27:91:1B:CB:55:26:55:3F:D5
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/36qzEAPdERfLfr8nkRvLVSZVP9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.186.0/24
185.205.191.0/24
185.239.242.0/24
188.212.155.0/24
188.241.182.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:1a:4e:55:a8:6e:d7:ec:5b:16:6e:b8:d8:62:26:95:ab:61:
6b:7c:78:5c:1a:a4:19:80:5e:11:91:bc:1a:33:74:a0:3b:a4:
03:03:ad:52:f7:01:c8:41:85:9c:65:12:8d:d3:7b:7a:78:c4:
1f:37:02:b5:2b:6b:13:de:b6:7d:6e:2b:27:d3:b4:d9:be:8e:
1e:ca:31:0f:a5:d9:1a:6d:58:be:26:40:af:95:93:c4:be:d6:
9a:6e:a1:50:c5:f1:c4:b6:4f:d0:83:84:fa:68:cb:6b:38:05:
91:63:48:f1:05:40:e6:f2:c6:66:f5:68:a5:05:fe:01:f4:5a:
79:6a:1e:10:a8:f1:4b:9a:c9:3e:b2:fa:62:e0:3b:af:91:ca:
d0:1d:98:b6:32:7b:38:2d:78:78:00:ca:87:1d:e3:63:e0:3e:
a1:33:70:b8:8b:9a:8e:69:ef:41:6c:c4:21:9a:91:e6:1b:d9:
a6:0e:1f:63:db:57:9b:e9:d6:8b:04:ae:29:40:5a:4f:79:6c:
47:b0:ce:4d:02:b7:af:e2:66:f0:d2:a4:df:05:27:c3:4b:c3:
df:ce:93:5d:e1:fb:ef:60:67:1a:c7:66:7d:bb:3b:4e:6d:8e:
94:ee:e0:32:1e:7e:76:31:bf:4c:53:05:60:aa:9b:65:5d:28:
cd:0b:d8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:41:10 2024 by rpki-client on console-ams.rpki-client.org