Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/nc9fCLoxoFj6FkCy7tnxo8OZH-0.roa
File: nc9fCLoxoFj6FkCy7tnxo8OZH-0.roa (raw, json)
Hash identifier: BTvJ5NqKWaZ8y7Dep9KK/0ylhcWrb18M/kwBYyEmChg=
Subject key identifier: 9D:CF:5F:08:BA:31:A0:58:FA:16:40:B2:EE:D9:F1:A3:C3:99:1F:ED
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 018CCA2B554FD19F6D5B194F4DA88F1E19F8
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/nc9fCLoxoFj6FkCy7tnxo8OZH-0.roa
Signing time: Tue 02 Jan 2024 12:34:46 +0000
ROA not before: Tue 02 Jan 2024 12:34:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48115
IP address blocks: 185.133.72.0/24 maxlen: 24
185.166.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft
rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:55:4f:d1:9f:6d:5b:19:4f:4d:a8:8f:1e:19:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 2 12:34:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9dcf5f08ba31a058fa1640b2eed9f1a3c3991fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:15:f9:0a:1b:7a:c5:a8:d9:d2:68:fe:ca:fc:
40:f1:33:83:fe:0b:ac:41:6e:ad:b6:4c:31:fe:8d:
6e:0a:08:04:0a:d1:e2:07:5c:a0:c2:6d:d6:4e:c3:
89:89:cc:63:dd:58:c5:11:d7:d8:ff:8b:2c:1f:27:
85:a3:75:6a:3e:37:b6:41:d6:0b:74:9c:01:59:27:
17:f3:2e:e4:a2:90:c4:12:40:86:e7:41:c3:da:31:
c2:78:fd:5c:e0:fc:42:68:d3:d4:49:ec:04:1b:19:
8c:8f:d3:13:58:83:a0:8d:18:cb:92:fa:69:00:b8:
7d:0a:aa:d6:1e:24:7e:12:92:04:25:73:64:2f:6e:
62:10:1e:4a:22:3c:e3:2d:e5:7f:be:20:ab:c7:26:
6a:ad:67:a8:41:56:61:45:ae:fe:38:80:53:77:63:
6f:4e:76:e4:0d:95:7c:fc:60:50:14:95:43:4d:2b:
13:47:78:17:b7:ae:79:4d:13:84:ba:62:96:95:ab:
16:7d:3d:07:31:91:87:96:2c:77:ca:70:61:57:67:
26:cc:67:29:e5:e2:4f:33:3e:93:b4:f5:3e:29:79:
3c:6b:b5:2c:72:82:9c:f9:14:38:32:20:20:5b:12:
64:fa:a5:f2:5e:6f:f2:ce:b3:5d:93:02:6d:4a:c6:
08:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:CF:5F:08:BA:31:A0:58:FA:16:40:B2:EE:D9:F1:A3:C3:99:1F:ED
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/nc9fCLoxoFj6FkCy7tnxo8OZH-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.72.0/24
185.166.238.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:d3:e3:18:7d:d5:18:12:c4:35:2d:28:15:a6:d8:8a:1f:d3:
9a:cd:6f:54:da:b7:49:60:93:b9:1e:ca:dc:fa:b9:77:96:e9:
36:c2:7e:74:c8:8d:75:ab:92:e0:57:41:6e:a3:fb:8d:3e:cb:
d8:6d:28:0f:0f:e1:9b:f8:af:f7:c8:a4:48:48:38:98:86:90:
cf:69:8c:9d:ae:fd:97:a5:b9:7e:ba:3c:e7:e5:18:13:57:93:
b2:90:33:39:6e:3a:26:1f:10:1b:bd:d7:29:54:9b:fb:75:95:
38:24:8a:0f:1c:5d:1e:9e:dd:b6:9b:ee:ae:e0:92:fe:58:6a:
d7:07:93:a9:76:e4:62:ee:b4:f0:60:f6:46:27:e2:2e:f1:8c:
ab:8e:d7:2a:17:b7:a2:e9:bf:62:a2:3e:1f:e4:5c:b7:5a:6d:
51:e9:0b:da:59:33:ad:77:11:21:e6:88:b7:9f:4f:75:ba:e0:
9d:d0:c6:59:d6:3b:7c:46:67:67:c8:68:c2:bd:65:2d:a7:60:
fe:8c:f8:8e:ee:11:62:ff:07:e2:72:ab:87:fe:6e:4c:2e:59:
8e:1c:f9:da:99:da:e7:92:7a:fd:52:02:9d:fe:28:45:b6:c4:
8b:b0:21:94:f8:e0:9a:4d:c5:a2:de:05:8f:a4:26:5e:cd:3b:
1a:d9:80:29
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzKK1VP0Z9tWxlPTaiPHhn4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjQwMTAyMTIzNDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZGNmNWYwOGJhMzFhMDU4ZmExNjQwYjJlZWQ5ZjFhM2MzOTkxZmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgxX5Cht6xajZ0mj+yvxA8TOD/gus
QW6ttkwx/o1uCggECtHiB1ygwm3WTsOJicxj3VjFEdfY/4ssHyeFo3VqPje2QdYL
dJwBWScX8y7kopDEEkCG50HD2jHCeP1c4PxCaNPUSewEGxmMj9MTWIOgjRjLkvpp
ALh9CqrWHiR+EpIEJXNkL25iEB5KIjzjLeV/viCrxyZqrWeoQVZhRa7+OIBTd2Nv
TnbkDZV8/GBQFJVDTSsTR3gXt655TROEumKWlasWfT0HMZGHlix3ynBhV2cmzGcp
5eJPMz6TtPU+KXk8a7UscoKc+RQ4MiAgWxJk+qXyXm/yzrNdkwJtSsYIkwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ3PXwi6MaBY+hZAsu7Z8aPDmR/tMB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvbmM5ZkNMb3hvRmo2RmtDeTd0bnhvOE9aSC0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuYVIAwQA
uabuMA0GCSqGSIb3DQEBCwUAA4IBAQCy0+MYfdUYEsQ1LSgVptiKH9OazW9U2rdJ
YJO5Hsrc+rl3luk2wn50yI11q5LgV0Fuo/uNPsvYbSgPD+Gb+K/3yKRISDiYhpDP
aYydrv2Xpbl+ujzn5RgTV5OykDM5bjomHxAbvdcpVJv7dZU4JIoPHF0ent22m+6u
4JL+WGrXB5OpduRi7rTwYPZGJ+Iu8YyrjtcqF7ei6b9ioj4f5Fy3Wm1R6QvaWTOt
dxEh5oi3n091uuCd0MZZ1jt8RmdnyGjCvWUtp2D+jPiO7hFi/wficquH/m5MLlmO
HPnamdrnknr9UgKd/ihFtsSLsCGU+OCaTcWi3gWPpCZezTsa2YAp
-----END CERTIFICATE-----
Generated at Mon Nov 25 20:47:06 2024 by rpki-client on console-fra.rpki-client.org