Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/SWIzilvPl8Crt9p1288U5CME81M.roa
File: SWIzilvPl8Crt9p1288U5CME81M.roa (raw, json)
Hash identifier: goQ9AL1CxoiivMDO9ySeGzcHsAM6GHF4NWLG9HFKhes=
Subject key identifier: 49:62:33:8A:5B:CF:97:C0:AB:B7:DA:75:DB:CF:14:E4:23:04:F3:53
Certificate issuer: /CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Certificate serial: 018EBCBB486A0526558486A0B770480650A3
Authority key identifier: 1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/SWIzilvPl8Crt9p1288U5CME81M.roa
Signing time: Mon 08 Apr 2024 08:02:54 +0000
ROA not before: Mon 08 Apr 2024 08:02:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29031
IP address blocks: 91.201.108.0/22 maxlen: 22
193.239.24.0/24 maxlen: 24
193.239.25.0/24 maxlen: 24
193.239.26.0/24 maxlen: 24
193.239.27.0/24 maxlen: 24
195.3.132.0/23 maxlen: 23
195.3.134.0/23 maxlen: 23
195.69.200.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:bb:48:6a:05:26:55:84:86:a0:b7:70:48:06:50:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Validity
Not Before: Apr 8 08:02:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4962338a5bcf97c0abb7da75dbcf14e42304f353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:c9:0c:5b:23:95:d3:80:67:9c:97:01:1b:
40:52:91:63:e9:cc:06:f8:69:8f:69:0a:99:f4:31:
65:44:fc:2f:5a:94:5a:8e:91:a9:40:85:e8:d1:05:
ee:ab:1e:87:87:a7:53:b2:23:91:8e:27:76:34:20:
25:14:0a:55:0b:06:1b:64:af:d7:d8:fa:21:eb:0a:
20:b3:4d:19:51:f0:26:8a:dc:26:d2:ac:fd:04:50:
7b:49:c8:9f:b1:95:91:f0:1a:3e:0f:c7:dc:96:65:
cc:0a:89:7e:43:e4:f7:39:4d:d7:b3:bf:34:be:a2:
a0:16:ec:f4:02:8b:58:37:1e:2d:c2:0f:d0:2d:11:
88:d6:5a:10:af:b1:f6:92:f7:dc:b5:1d:8a:a9:39:
4f:aa:0e:d5:a5:5c:2d:a2:50:45:b4:fd:92:2f:d8:
3b:2f:b2:15:68:4a:64:64:3c:6c:50:71:a8:95:dd:
17:54:a4:d5:a0:39:2c:c9:c5:b9:35:e1:38:2b:dd:
5b:eb:00:96:cb:18:48:db:0c:c4:db:d7:3e:8d:21:
e1:8c:32:ec:c9:4f:28:3e:ef:6e:88:6c:09:58:57:
7e:bf:11:6c:f0:68:49:4d:44:12:85:a9:9e:9e:ce:
18:4c:c3:04:0a:7b:81:b9:c9:30:47:04:f6:55:35:
49:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:62:33:8A:5B:CF:97:C0:AB:B7:DA:75:DB:CF:14:E4:23:04:F3:53
X509v3 Authority Key Identifier:
keyid:1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/SWIzilvPl8Crt9p1288U5CME81M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.108.0/22
193.239.24.0/22
195.3.132.0/22
195.69.200.0/22
Signature Algorithm: sha256WithRSAEncryption
68:28:41:7a:d7:c5:61:06:7d:ce:8d:0c:ef:34:52:5d:48:06:
35:68:c4:6d:bc:10:05:6e:96:d1:9f:f5:bf:7b:2d:68:dc:32:
3c:40:bd:7a:7b:88:0a:1a:eb:d0:cc:c3:55:21:58:58:e4:ee:
f9:cc:a4:63:7e:ef:8b:0c:8d:73:15:ea:61:32:40:08:42:99:
c8:c6:61:bf:a0:f2:83:28:b8:b0:0a:20:d1:b8:df:42:39:d9:
90:34:7b:7c:69:36:6d:4c:81:a5:a9:44:c5:dc:88:ea:01:58:
c5:7c:70:09:fa:e6:22:28:52:d4:1a:c0:2c:2f:6f:bb:c8:de:
e3:36:4e:23:98:62:a6:11:a6:39:02:cf:ff:64:89:af:cd:a8:
d5:e7:96:3d:6e:d7:1c:44:4d:ab:ad:71:55:c6:bb:17:03:6c:
fc:db:24:58:e8:5d:c8:57:28:b4:2c:01:6f:47:e1:6d:e3:92:
a6:ea:51:35:44:64:47:b5:14:3c:3b:e0:e1:dc:a5:72:7b:5f:
32:7c:24:eb:1b:3a:91:17:f9:6f:be:3a:86:a1:ae:e1:99:b6:
18:f0:29:03:47:e4:e2:05:01:d1:37:04:f8:7f:27:bd:35:da:
cf:1f:33:1d:de:1b:21:1f:0a:04:0f:93:81:a4:46:44:cd:b5:
e0:20:a0:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 07:43:15 2024 by rpki-client on console-ams.rpki-client.org