Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/umowNV633VUZngaJ0L6oBFUPj0I.roa
File: umowNV633VUZngaJ0L6oBFUPj0I.roa (raw, json)
Hash identifier: pfUMZPf10Gn7Ri3FpXcFzEyWouiqxmuEREbC5ERS+kY=
Subject key identifier: BA:6A:30:35:5E:B7:DD:55:19:9E:06:89:D0:BE:A8:04:55:0F:8F:42
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC80309A23A4925751D43EC9E3197B3A8
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/umowNV633VUZngaJ0L6oBFUPj0I.roa
Signing time: Tue 02 Jan 2024 02:31:31 +0000
ROA not before: Tue 02 Jan 2024 02:31:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211434
IP address blocks: 192.71.206.0/24 maxlen: 24
194.71.106.0/24 maxlen: 24
194.68.22.0/23 maxlen: 23
193.181.200.0/21 maxlen: 24
194.132.172.0/23 maxlen: 24
192.36.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:09:a2:3a:49:25:75:1d:43:ec:9e:31:97:b3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba6a30355eb7dd55199e0689d0bea804550f8f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:69:e5:51:59:4a:ed:19:b9:51:30:2a:6c:93:
d4:30:a9:e9:f2:45:97:a9:fa:57:67:65:25:bf:40:
d5:1f:bb:94:f3:6f:0a:8b:16:50:3d:53:a0:ad:e2:
48:ac:1d:ab:9a:8d:1a:33:79:8d:c4:53:00:02:ec:
eb:23:2e:cd:dc:52:ff:53:d7:ee:0d:a0:11:6e:81:
13:50:af:13:e7:5c:74:d8:cf:37:a8:d1:8c:19:f8:
46:88:ec:c1:d7:2b:72:8a:03:38:15:bf:96:b9:5e:
06:2c:4a:63:13:87:77:b9:45:9a:09:e1:bc:72:4a:
e7:3a:4f:7b:10:60:80:d6:d9:ff:78:0d:26:b5:0e:
00:a9:c6:c4:dc:87:b4:f3:a2:8a:69:57:77:ce:65:
3a:fa:b0:5c:d8:4a:a8:f5:85:5e:c9:f8:22:e9:6a:
2d:65:d4:8b:ce:1a:53:d5:34:a4:dc:fa:3d:16:82:
83:e5:33:a7:7d:bb:ca:31:5e:bb:8b:92:1b:95:ca:
14:19:a5:a6:fb:0a:0d:c2:9c:7a:6b:bf:cd:6e:29:
aa:08:e0:3a:54:eb:59:5c:c9:12:0f:8c:cb:08:6c:
b0:ac:42:b3:3e:da:79:c0:83:b6:19:69:5c:3e:9a:
a7:31:79:85:dc:3d:09:53:b3:6c:69:f1:85:94:26:
79:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6A:30:35:5E:B7:DD:55:19:9E:06:89:D0:BE:A8:04:55:0F:8F:42
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/umowNV633VUZngaJ0L6oBFUPj0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.200.0/24
192.71.206.0/24
193.181.200.0/21
194.68.22.0/23
194.71.106.0/24
194.132.172.0/23
Signature Algorithm: sha256WithRSAEncryption
16:c5:08:91:b6:b5:2f:73:13:5d:a7:1c:c9:6d:6d:8b:b6:d3:
79:f2:ae:21:89:7a:c0:9c:b8:80:73:d5:79:11:f3:01:66:1a:
39:25:e2:49:e1:89:9b:0b:74:55:82:a4:3d:12:82:55:c2:d4:
1b:ac:d9:52:96:ec:38:24:59:c4:93:bd:79:1f:5e:bc:de:9b:
d2:67:a4:97:6c:fa:da:99:7a:ba:b2:f9:38:42:5e:6f:2a:1b:
29:c3:4d:d1:04:7e:96:d4:ce:e8:49:86:c8:5c:c4:0d:25:ad:
8b:03:c1:63:c4:48:7f:a1:cf:c8:d4:22:40:8e:06:3c:b5:05:
7e:0d:9a:23:2c:e7:94:6c:8c:a1:66:3d:f3:06:b5:39:b1:14:
cf:5d:61:f9:10:63:f1:d3:c3:1a:7f:5f:b2:ff:5a:e3:e2:f2:
b8:1a:8b:ea:4b:cc:8d:1a:32:a1:75:97:7b:71:47:8b:96:1f:
70:51:80:1c:4f:6f:11:e1:bf:41:61:f8:1b:4d:84:f9:ed:97:
80:22:37:30:9e:0f:fa:e6:f4:f2:29:c8:28:aa:62:3a:69:8f:
90:e9:b2:bf:10:27:cb:f8:fb:09:1e:2c:05:e3:dd:da:17:59:
db:a9:ae:1a:70:46:dd:4d:36:ac:92:f9:ca:cb:56:2d:bc:ff:
6f:75:6a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:10:30 2024 by rpki-client on console-fra.rpki-client.org