Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TBq-u4Sm25Z4ss5gWCXgnSq-kh8.roa
File: TBq-u4Sm25Z4ss5gWCXgnSq-kh8.roa (raw, json)
Hash identifier: JB8rb8omR4b2XD1fCj40maAkBRjHgwIGSlqBR9qdPts=
Subject key identifier: 4C:1A:BE:BB:84:A6:DB:96:78:B2:CE:60:58:25:E0:9D:2A:BE:92:1F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A1290061BD4E25C7B8B6AFAA5ECCA
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TBq-u4Sm25Z4ss5gWCXgnSq-kh8.roa
Signing time: Tue 02 Jan 2024 12:33:24 +0000
ROA not before: Tue 02 Jan 2024 12:33:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56387
IP address blocks: 93.171.8.0/24 maxlen: 24
93.171.7.0/24 maxlen: 24
93.171.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:12:90:06:1b:d4:e2:5c:7b:8b:6a:fa:a5:ec:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c1abebb84a6db9678b2ce605825e09d2abe921f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:17:3a:6c:31:21:75:5f:4f:3f:5d:7f:a6:12:
1f:7c:45:34:88:4f:be:fc:87:b9:d3:eb:e6:e0:8b:
04:55:79:a5:dd:67:f5:08:0b:83:df:96:9f:5f:dd:
c4:69:c0:ea:4b:da:35:e1:ce:70:76:61:e1:dd:ad:
16:88:6b:1c:c5:4d:2b:ca:9a:7e:11:b5:f4:2b:80:
c5:58:87:12:3b:b0:0f:5b:73:25:6c:b3:12:ad:a5:
5c:db:24:78:a1:92:1f:3f:be:54:ad:b2:e8:cc:6f:
5c:fc:bc:aa:b5:1d:a9:b0:f6:4a:8b:99:3a:a9:46:
71:5e:1d:8d:12:de:49:a5:d6:bb:55:f5:a9:45:aa:
71:05:eb:7b:78:8e:4b:73:7d:d6:de:9b:e0:dd:3e:
5e:f3:31:b4:5f:64:3f:6b:06:0e:e1:db:1a:fe:49:
8c:da:9a:bc:0a:58:a4:5b:3f:6d:00:26:47:d0:f4:
54:2d:a7:16:e8:55:d0:98:cb:fd:3f:0a:c1:78:c0:
08:be:fa:4c:62:ca:47:21:b4:8f:71:3a:95:ec:6c:
d6:67:99:2f:55:1c:c8:b1:e0:df:f3:2b:7f:ae:ce:
05:cb:4f:3d:89:78:9a:5d:e1:a5:e2:6c:b1:d4:62:
8e:49:d3:8d:aa:e4:38:fc:eb:42:9c:24:00:3d:eb:
98:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:1A:BE:BB:84:A6:DB:96:78:B2:CE:60:58:25:E0:9D:2A:BE:92:1F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TBq-u4Sm25Z4ss5gWCXgnSq-kh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.7.0-93.171.9.255
Signature Algorithm: sha256WithRSAEncryption
05:e4:2e:98:ee:0e:07:b2:c4:93:d1:c8:2f:9e:70:7a:71:39:
eb:79:f1:62:b9:71:cb:40:aa:7e:73:8b:aa:be:08:cb:e5:1c:
33:3e:f3:06:55:f6:00:d3:42:d5:e6:10:e4:aa:1f:1d:bf:3a:
3e:11:89:f8:65:c2:8b:a1:27:52:c7:6a:2f:3f:8e:fb:86:7c:
68:67:43:e9:30:95:7d:38:50:54:72:d2:18:b1:52:d8:d7:6e:
82:32:e8:68:a6:43:d9:fc:f7:98:47:4c:96:8e:ee:9b:85:31:
13:99:b0:89:83:8b:cc:9d:70:fd:55:d1:a3:ba:69:95:8d:02:
12:d3:c6:b9:2d:4f:cf:d0:8c:f9:a7:71:a8:bc:fc:33:c6:24:
a5:65:da:36:14:56:31:6f:d7:f0:e9:c7:41:44:02:00:90:16:
54:cd:03:7e:b8:d1:8a:ed:bb:d3:5f:68:84:35:54:6e:ff:c6:
34:27:45:fb:4d:ba:41:c3:e5:9b:da:4e:a6:2d:14:e5:0b:2d:
2e:36:e4:d6:bb:7a:7e:ae:31:63:03:3a:c5:0f:13:76:88:0c:
55:a4:72:e8:96:f6:3a:08:35:29:19:3a:1b:82:98:1e:30:8a:
53:dd:ac:99:92:2b:bb:18:c0:94:3e:f5:35:3f:5a:5c:cd:6e:
b7:7f:a4:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:31:03 2024 by rpki-client on console-ams.rpki-client.org