Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LTvDg6VwJZfQ7pRQtQx6aSh3yx4.roa
File: LTvDg6VwJZfQ7pRQtQx6aSh3yx4.roa (raw, json)
Hash identifier: 495BRBuIOvlCykSYtt8zxo2/jCFMvhqurPgIHHRjY/0=
Subject key identifier: 2D:3B:C3:83:A5:70:25:97:D0:EE:94:50:B5:0C:7A:69:28:77:CB:1E
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01922E54BFE10ED730B72EA8DE07FFB1F173
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LTvDg6VwJZfQ7pRQtQx6aSh3yx4.roa
Signing time: Thu 26 Sep 2024 12:35:59 +0000
ROA not before: Thu 26 Sep 2024 12:35:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52114
IP address blocks: 93.170.253.0/24 maxlen: 24
93.171.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2e:54:bf:e1:0e:d7:30:b7:2e:a8:de:07:ff:b1:f1:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Sep 26 12:35:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d3bc383a5702597d0ee9450b50c7a692877cb1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:91:e5:36:1d:f2:f5:4a:01:50:90:91:c8:c2:
80:d3:d2:85:52:7d:4a:6b:62:4b:46:2d:6e:6f:e4:
80:d9:ba:4c:8a:45:d6:ef:15:0b:ab:3e:d4:dd:76:
94:36:40:70:dd:6e:b4:5e:f6:58:76:83:1a:d9:94:
b0:fd:fd:7a:1f:4a:26:e8:80:aa:d4:d9:5e:b3:33:
86:09:59:fe:c3:5d:f8:72:e8:96:12:d5:1a:41:dd:
a7:f3:a1:91:cf:11:47:cb:2e:35:75:35:67:65:b2:
ca:b7:b6:eb:a6:e5:f8:c0:0b:14:61:bd:d6:49:ad:
25:a7:ef:b1:57:3d:9b:1d:f8:7b:a4:b4:77:d2:68:
03:ec:68:64:8d:27:f3:e6:6a:53:50:18:d3:66:08:
f6:60:b9:3f:1d:6e:75:5a:88:e7:b9:31:98:3b:4c:
55:42:68:77:6c:ea:ae:19:e0:42:77:23:e6:bb:c6:
ed:66:8d:c3:b3:43:27:44:02:4d:32:b1:cc:0c:53:
70:9a:90:6c:38:06:f0:2b:12:2f:12:b1:51:65:25:
02:60:87:24:fe:03:8d:a6:0b:b8:33:8c:e6:53:e2:
83:19:b7:33:e5:29:48:9d:0b:e5:8a:23:59:cf:af:
a3:ea:7d:bc:96:70:5a:61:a4:26:c7:d2:bb:28:4d:
be:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3B:C3:83:A5:70:25:97:D0:EE:94:50:B5:0C:7A:69:28:77:CB:1E
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LTvDg6VwJZfQ7pRQtQx6aSh3yx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.253.0/24
93.171.176.0/24
Signature Algorithm: sha256WithRSAEncryption
06:d9:df:4a:9f:1e:a0:c4:dd:37:bc:c0:fe:dd:7a:90:2f:f7:
73:9b:0d:70:1b:c7:f5:1c:e8:0f:fd:a7:fc:6d:72:79:5b:7a:
3d:94:f0:be:d9:f4:4c:fd:d1:2c:04:53:f1:26:96:89:ea:ca:
45:02:93:85:e0:28:0b:76:07:6e:61:94:4f:29:31:a5:ad:87:
c9:70:98:ff:7d:c5:c2:26:66:2d:51:7b:70:f6:49:a7:65:78:
34:a3:9a:12:9a:6c:93:3b:52:83:55:ea:1b:6a:e2:9d:73:8b:
f7:4b:5d:02:09:79:ec:7e:cd:9c:f6:61:79:2d:35:46:cb:5e:
42:66:3f:cf:f0:ba:a2:03:88:0e:16:1c:52:cc:f6:59:01:3b:
0f:89:0a:8a:d6:4f:ea:4f:23:4e:be:25:ef:f2:0d:e1:ff:af:
96:71:1c:af:eb:15:a0:2a:2b:aa:0c:33:a0:e2:79:c6:99:c7:
92:51:8a:20:c1:ae:f6:8d:86:56:2a:c5:c8:ed:c0:e8:cd:47:
fa:b7:e5:a5:5d:b8:32:0b:3f:3b:59:3c:7f:40:e6:d7:42:aa:
c1:d3:0b:93:c7:20:92:08:4e:af:c7:68:1f:cb:41:37:66:c1:
a3:70:a6:ca:ec:e1:31:b0:37:6d:b7:fa:e0:46:1b:75:3c:cb:
c5:52:02:36
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZIuVL/hDtcwty6o3gf/sfFzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjQwOTI2MTIzNTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDNiYzM4M2E1NzAyNTk3ZDBlZTk0NTBiNTBjN2E2OTI4NzdjYjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJHlNh3y9UoBUJCRyMKA09KFUn1K
a2JLRi1ub+SA2bpMikXW7xULqz7U3XaUNkBw3W60XvZYdoMa2ZSw/f16H0om6ICq
1NleszOGCVn+w134cuiWEtUaQd2n86GRzxFHyy41dTVnZbLKt7brpuX4wAsUYb3W
Sa0lp++xVz2bHfh7pLR30mgD7GhkjSfz5mpTUBjTZgj2YLk/HW51WojnuTGYO0xV
Qmh3bOquGeBCdyPmu8btZo3Ds0MnRAJNMrHMDFNwmpBsOAbwKxIvErFRZSUCYIck
/gONpgu4M4zmU+KDGbcz5SlInQvliiNZz6+j6n28lnBaYaQmx9K7KE2+eQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFC07w4OlcCWX0O6UULUMemkod8seMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvTFR2RGc2VndKWmZRN3BSUXRReDZhU2gzeXg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXar9AwQA
XauwMA0GCSqGSIb3DQEBCwUAA4IBAQAG2d9Knx6gxN03vMD+3XqQL/dzmw1wG8f1
HOgP/af8bXJ5W3o9lPC+2fRM/dEsBFPxJpaJ6spFApOF4CgLdgduYZRPKTGlrYfJ
cJj/fcXCJmYtUXtw9kmnZXg0o5oSmmyTO1KDVeobauKdc4v3S10CCXnsfs2c9mF5
LTVGy15CZj/P8LqiA4gOFhxSzPZZATsPiQqK1k/qTyNOviXv8g3h/6+WcRyv6xWg
KiuqDDOg4nnGmceSUYogwa72jYZWKsXI7cDozUf6t+WlXbgyCz87WTx/QObXQqrB
0wuTxyCSCE6vx2gfy0E3ZsGjcKbK7OExsDdtt/rgRht1PMvFUgI2
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:25:41 2024 by rpki-client on console-ams.rpki-client.org