Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/ncRqXQFyR6xDZB32ht1Nacue3c8.roa
File: ncRqXQFyR6xDZB32ht1Nacue3c8.roa (raw, json)
Hash identifier: dXFaiWo+I+LI+WYlG87fg09TwTXq2nWWt8CvpmzV+EM=
Subject key identifier: 9D:C4:6A:5D:01:72:47:AC:43:64:1D:F6:86:DD:4D:69:CB:9E:DD:CF
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 019310DD0924585018CDFDCC6BD50C5B4EE5
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/ncRqXQFyR6xDZB32ht1Nacue3c8.roa
Signing time: Sat 09 Nov 2024 12:19:01 +0000
ROA not before: Sat 09 Nov 2024 12:19:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50181
IP address blocks: 80.85.48.0/21 maxlen: 24
92.52.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 02:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:10:dd:09:24:58:50:18:cd:fd:cc:6b:d5:0c:5b:4e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Nov 9 12:19:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9dc46a5d017247ac43641df686dd4d69cb9eddcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7b:14:28:57:fc:7d:9a:5c:c9:cf:1c:40:32:
7e:b8:e2:ba:6b:01:29:04:6d:06:9d:49:ca:63:80:
9b:24:fd:3a:de:07:24:3d:e0:c5:d7:b3:b6:7c:4b:
42:b0:16:22:4c:ba:c4:06:92:9d:7d:81:09:bb:85:
9a:42:8a:7b:e0:0f:f7:8f:92:cd:0a:c0:73:6d:43:
9e:6e:2c:a0:2f:c6:75:10:74:02:d5:e7:af:66:cd:
33:56:70:47:a4:17:9f:1c:4c:e6:71:fe:16:de:19:
0d:f7:6b:ef:a0:94:7e:42:5a:6e:34:48:8a:a9:14:
f7:86:76:4a:d0:48:eb:2d:53:5c:78:60:17:04:84:
a0:ed:3b:f0:8b:6c:3a:1e:b4:81:8c:c0:3c:d7:6a:
e0:85:f7:a5:fa:39:f4:ad:0b:87:e1:60:f3:a3:bc:
b9:bc:0b:7f:c6:40:57:8b:fb:d4:10:c7:21:9e:5e:
1a:57:50:59:d1:cd:33:8a:e8:f3:a9:7f:18:ac:25:
be:22:15:1d:6b:00:44:a4:db:91:1e:8a:07:e9:12:
2d:db:f0:a5:21:8b:a2:a6:60:3d:07:43:24:ab:75:
23:50:2c:ae:77:e8:1e:12:de:c5:ec:36:70:e0:c9:
66:25:4b:6a:f0:37:46:47:5a:8b:60:60:38:15:15:
0c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C4:6A:5D:01:72:47:AC:43:64:1D:F6:86:DD:4D:69:CB:9E:DD:CF
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/ncRqXQFyR6xDZB32ht1Nacue3c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.48.0/21
92.52.220.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:5a:84:ec:8d:51:5c:67:86:a8:30:3b:f8:79:e3:2b:b6:84:
6f:de:2a:c6:b1:a8:4f:fa:f1:6e:b9:91:52:c9:ae:9a:8d:78:
25:34:e8:81:b1:62:d3:77:00:db:03:18:09:15:90:ff:97:f9:
3c:3c:4d:2e:69:8e:88:16:b8:de:f3:53:ac:55:10:3e:23:3b:
23:d7:4e:9b:70:93:1a:5d:c9:f9:ae:2d:0d:78:7e:ce:18:41:
b7:1c:a3:09:02:f2:57:0f:12:07:f8:2d:8c:54:65:65:d8:cc:
19:51:9a:13:92:8e:26:50:0e:6a:c8:88:92:56:57:fa:ef:15:
6f:71:c3:45:b3:04:a5:9a:5c:b8:ae:63:25:42:55:1a:2b:ad:
f6:f2:9b:e4:52:9e:c5:77:a3:30:40:e0:e5:79:c6:8a:ed:2b:
cd:91:35:13:fb:19:8a:8d:d3:0e:ee:ba:db:06:87:c9:d4:2f:
62:80:b9:9e:b6:f5:58:80:42:2b:fd:ac:3d:f0:f1:78:6a:3b:
15:72:e1:8d:1b:60:86:16:9c:ea:64:96:fe:4b:b6:75:60:f3:
6c:33:0f:aa:74:52:82:70:24:f9:b6:6b:5b:24:d8:a5:b7:22:
70:c9:7b:68:b8:fa:1a:a9:c3:89:7e:e8:c1:6a:c2:de:e3:b8:
1e:72:82:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:34:43 2024 by rpki-client on console-ams.rpki-client.org