Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/StZO3GFt3b44hd6E-EeLQNoAltY.roa
File: StZO3GFt3b44hd6E-EeLQNoAltY.roa (raw, json)
Hash identifier: /IlGHxPRwFmgNj6i1voW0sM3SbksSi82SgytPITR0Gg=
Subject key identifier: 4A:D6:4E:DC:61:6D:DD:BE:38:85:DE:84:F8:47:8B:40:DA:00:96:D6
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018DDB73647B69182A242126FB3654E52D5E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/StZO3GFt3b44hd6E-EeLQNoAltY.roa
Signing time: Sat 24 Feb 2024 14:09:49 +0000
ROA not before: Sat 24 Feb 2024 14:09:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35004
IP address blocks: 93.170.116.0/22 maxlen: 24
93.170.118.0/24 maxlen: 24
95.46.212.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:db:73:64:7b:69:18:2a:24:21:26:fb:36:54:e5:2d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 24 14:09:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ad64edc616dddbe3885de84f8478b40da0096d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:aa:a0:db:04:cf:72:f1:30:fa:5e:28:53:d0:
07:5d:4a:8a:d6:86:bd:fa:38:85:c2:91:6d:50:7f:
7a:e8:68:b3:d6:b0:a4:13:85:98:22:f2:50:83:5c:
a6:d0:c1:bd:30:9c:0d:bc:2e:c2:b5:d4:97:b8:24:
d9:c1:a9:6b:00:cd:a3:ed:41:96:60:ad:78:c6:6b:
3b:68:2d:1f:95:bf:b4:48:94:70:1c:3b:3c:27:3e:
a5:1d:11:d9:73:71:10:d3:88:ac:3d:35:81:2c:20:
e7:63:59:69:cc:0a:e7:f3:6b:f6:67:d0:58:c7:e9:
b5:bf:7f:a7:d7:36:e7:04:e7:43:38:d7:51:b9:06:
ac:bb:c0:22:e3:70:e3:22:f7:49:41:b9:20:53:6a:
4c:71:7c:09:13:4b:34:ff:5b:f9:f5:d1:d7:f2:b6:
15:66:33:fa:b6:8e:9c:16:6a:0f:78:68:b9:c1:fd:
7d:41:24:3a:20:e6:89:0d:76:c1:b6:40:4d:28:63:
1c:5d:9e:e8:79:0e:c0:ff:42:41:db:a7:44:db:31:
cb:96:68:d4:c9:47:ad:c0:dc:5f:c6:bd:fd:f4:35:
83:da:6b:71:28:e3:ae:36:e8:cb:c7:ba:a2:f4:4b:
d9:ff:de:d1:5a:dc:cc:e9:c3:c3:50:5c:51:88:c3:
bf:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D6:4E:DC:61:6D:DD:BE:38:85:DE:84:F8:47:8B:40:DA:00:96:D6
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/StZO3GFt3b44hd6E-EeLQNoAltY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.116.0/22
95.46.212.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:1a:3a:26:66:0c:ad:ac:99:86:a5:06:eb:0b:d1:26:4b:07:
2e:ed:ff:72:05:e3:fd:9f:47:a2:5d:16:65:d9:58:86:8e:a6:
ec:d9:9e:ed:df:07:47:c5:c1:7e:7f:91:03:fe:bc:40:aa:8c:
b6:d8:f4:a8:a2:85:21:39:dc:11:7c:51:d4:a4:c0:30:d3:2e:
ea:f0:ad:6d:89:24:71:f3:12:f9:54:9d:bd:fc:8a:a4:99:af:
bb:8c:27:a7:21:24:67:75:b4:fb:b3:66:ea:9b:52:a9:d5:37:
22:4f:8b:a6:6f:e0:5c:91:13:59:02:34:e0:f3:51:0b:12:27:
0e:4f:bd:ff:76:ea:a6:79:50:8b:89:66:25:33:34:a1:ad:1e:
f8:4e:06:b9:3d:22:f4:50:ce:35:21:1a:61:be:33:46:e8:07:
52:f2:d7:e3:3c:fd:d1:ea:2a:3a:a6:e4:9b:9f:60:85:a8:8e:
85:fd:d6:c0:ff:e8:1c:b5:4d:e3:7f:43:12:71:e7:c5:d3:f1:
f2:f7:da:e7:c4:57:8e:cf:68:76:a6:db:c6:6d:68:6a:73:57:
8e:80:f8:49:92:28:d4:42:28:56:7e:c9:fc:b3:2d:3e:a4:6a:
d6:a9:7d:56:35:c6:18:0c:60:ec:c9:ae:1c:f7:ee:85:f2:e2:
96:98:5c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:31:03 2024 by rpki-client on console-ams.rpki-client.org