Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/NgUjLy-F9McNKJOuWdUiMiSRPsU.roa
File: NgUjLy-F9McNKJOuWdUiMiSRPsU.roa (raw, json)
Hash identifier: JaorxcTMgtmsJEu5p+BMFtUSZDH+fkSv8erwXaF99E0=
Subject key identifier: 36:05:23:2F:2F:85:F4:C7:0D:28:93:AE:59:D5:22:32:24:91:3E:C5
Certificate issuer: /CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Certificate serial: 018CC94AD2EBF9082911DA32859C2A0E69D9
Authority key identifier: B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/NgUjLy-F9McNKJOuWdUiMiSRPsU.roa
Signing time: Tue 02 Jan 2024 08:29:33 +0000
ROA not before: Tue 02 Jan 2024 08:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209459
IP address blocks: 45.82.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/t3haMNhRLQ2KtjeBK3n6RSmh7xs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/t3haMNhRLQ2KtjeBK3n6RSmh7xs.mft
rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:d2:eb:f9:08:29:11:da:32:85:9c:2a:0e:69:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Validity
Not Before: Jan 2 08:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3605232f2f85f4c70d2893ae59d5223224913ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:50:2f:8f:6a:66:93:5f:fe:46:aa:d8:a9:70:
03:43:c1:c2:38:d7:f3:ff:1c:16:81:df:e4:85:69:
62:28:77:7d:ee:43:a4:78:8e:86:e0:d0:46:b6:46:
26:19:51:05:2c:87:ab:f8:8a:9e:48:ad:2c:f1:e7:
a2:ff:5b:2b:8f:9e:c9:b2:72:ab:91:9f:95:21:61:
e4:32:15:fc:95:ee:df:d4:76:1a:b9:0d:66:de:d3:
be:0b:a8:48:20:58:14:0b:66:d5:57:51:46:fd:eb:
c3:62:a1:26:5c:b0:ad:38:7c:78:e1:c9:26:6b:fb:
74:86:eb:bb:b6:78:ae:de:e2:b3:6f:4b:1e:ff:8a:
88:6d:79:73:c0:1d:9b:dc:9c:f5:35:df:8b:28:14:
3a:30:ee:63:2f:fe:5a:05:a1:c9:3f:d0:a9:2e:26:
25:07:bb:c8:b4:52:74:a3:7e:22:02:11:47:a6:cd:
90:f6:f9:0d:46:3b:36:6c:4c:7a:b9:41:33:95:4b:
91:09:4c:2d:38:fc:bd:23:10:4c:62:23:0c:dc:74:
d1:97:f6:4f:76:01:4b:fc:e6:23:ae:71:22:7d:d7:
2d:7b:65:60:00:d7:2c:d9:2f:cd:71:c9:c6:6c:e2:
fd:b4:2b:75:c3:8b:4c:ba:ae:9a:1a:ea:de:64:82:
1a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:05:23:2F:2F:85:F4:C7:0D:28:93:AE:59:D5:22:32:24:91:3E:C5
X509v3 Authority Key Identifier:
keyid:B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/NgUjLy-F9McNKJOuWdUiMiSRPsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/t3haMNhRLQ2KtjeBK3n6RSmh7xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.136.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:33:8c:8c:f0:0d:b7:8e:09:d3:95:75:77:dc:67:34:e0:40:
ee:f2:93:aa:76:ae:58:86:71:7a:fb:1c:ba:37:b0:02:b6:b9:
c5:0d:7a:1a:32:96:88:d9:84:66:37:65:ab:07:e9:ce:29:5f:
95:3d:7d:6a:ab:28:1f:dd:df:5b:99:1c:77:51:62:36:32:7f:
b2:2a:6b:70:ed:4a:9e:ff:28:fb:03:63:c2:7d:91:0c:42:94:
48:81:1d:3b:87:02:ef:49:79:0a:62:59:ae:f7:dd:66:f2:3c:
74:df:7d:f5:c6:15:64:8e:9a:9c:6d:98:a1:a1:a5:79:32:61:
b0:73:0a:e3:fe:72:87:77:49:61:39:d1:98:c6:f8:50:3f:8f:
3b:82:87:7f:90:ad:4b:63:95:b5:d1:d4:36:2f:bd:95:c3:14:
66:66:3f:5a:bc:de:63:db:e1:4a:c8:aa:43:ed:7b:e8:97:8e:
ce:9f:a7:00:72:a2:a6:7a:07:d6:37:98:58:92:72:5f:fd:2d:
6e:15:19:ac:57:2b:ce:b7:57:81:aa:c3:a9:5b:6d:49:13:7d:
bd:38:cb:19:a1:39:0e:7d:60:07:5b:9f:e0:b9:21:af:c1:b4:
55:8a:ed:9a:e3:5c:75:51:83:28:04:4d:3e:14:76:5e:b6:7f:
d1:65:9a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 07:24:10 2024 by rpki-client on console-ams.rpki-client.org