Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/swZAXjQ8AMabbJpDJibb3HFVysQ.roa
File: swZAXjQ8AMabbJpDJibb3HFVysQ.roa (raw, json)
Hash identifier: yIjf2P0k3Iqyba4+70fogWTMcWYYMoQQ4/Ob/zkxC+U=
Subject key identifier: B3:06:40:5E:34:3C:00:C6:9B:6C:9A:43:26:26:DB:DC:71:55:CA:C4
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A579F0FB838D37798567F67C476B0
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/swZAXjQ8AMabbJpDJibb3HFVysQ.roa
Signing time: Tue 02 Jan 2024 12:33:41 +0000
ROA not before: Tue 02 Jan 2024 12:33:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212463
IP address blocks: 31.148.149.0/24 maxlen: 24
95.47.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Jun 2024 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:57:9f:0f:b8:38:d3:77:98:56:7f:67:c4:76:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b306405e343c00c69b6c9a432626dbdc7155cac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:17:a5:ce:94:de:ac:9a:57:40:16:de:6d:b9:
66:ce:34:10:73:87:1a:ed:7f:1c:c7:42:cb:31:84:
39:36:1c:dd:3e:94:a3:23:23:43:36:e7:b3:fa:17:
46:3f:b7:fc:cd:00:a1:e1:68:9e:24:7e:c8:85:59:
b9:79:9d:67:68:18:ac:7c:d7:90:94:a3:e6:d7:e8:
ab:95:39:ea:39:0e:af:10:c3:93:0c:63:8a:35:8b:
07:b9:3b:fe:1b:c8:1a:69:96:4e:a8:e2:b4:aa:52:
a9:05:d7:06:a4:92:86:5f:58:92:0b:9b:68:70:0c:
90:9c:f9:15:ce:3d:8d:2a:d5:84:a0:8e:50:1e:19:
79:76:4b:52:27:25:1b:53:24:a9:20:67:48:9e:2b:
6e:4f:ea:8b:59:b4:ec:e0:43:16:04:ca:9c:a3:89:
9a:83:e7:93:c5:23:26:9e:c0:ac:40:e1:94:ae:5c:
ca:d6:9f:09:8b:37:2f:0e:e4:65:04:91:f6:3c:98:
96:cf:cb:22:8c:80:51:20:d0:fa:63:ff:e1:37:55:
9f:cf:db:b1:82:d4:37:4d:df:41:a2:42:e0:68:52:
ed:23:c7:17:5a:a2:e8:6c:6e:ce:b3:50:4a:1f:a4:
a6:55:bc:0f:40:78:8e:c7:88:30:ba:aa:01:bd:01:
50:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:06:40:5E:34:3C:00:C6:9B:6C:9A:43:26:26:DB:DC:71:55:CA:C4
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/swZAXjQ8AMabbJpDJibb3HFVysQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.149.0/24
95.47.59.0/24
Signature Algorithm: sha256WithRSAEncryption
04:43:48:9e:9c:2c:1f:dc:18:65:a8:df:da:d2:6a:b2:13:ff:
ed:bd:b4:6d:d7:70:59:21:6a:31:b8:c9:16:cf:cc:97:0a:81:
af:2b:7c:a1:ff:9f:ca:d2:c3:ce:c6:58:f0:6a:88:78:4a:4d:
1e:c5:bc:02:36:02:bd:b8:18:bf:dd:e5:fc:f5:ea:2c:2c:b0:
0f:ad:72:4e:bb:15:32:e4:3b:ba:0e:d9:ba:a4:a3:59:ea:0a:
4e:0f:a9:a7:8c:06:f1:4b:cb:2e:62:39:77:7d:2c:1e:f8:07:
95:86:70:a4:ac:b7:31:af:17:fb:6a:7f:a1:15:9e:1c:83:bd:
95:37:1f:10:5d:97:7b:86:c7:01:f2:9f:de:e8:b5:43:10:55:
e7:50:b9:2b:60:5a:a1:9c:a4:fb:75:d8:0d:4c:00:a1:b8:fa:
7f:62:45:9e:3f:e4:47:65:4e:c7:4a:d2:e9:22:d2:9f:00:82:
c1:33:42:f9:75:d5:4b:87:f8:6a:bc:ea:3d:b7:b6:ab:00:da:
b6:cf:36:34:d8:e0:56:57:a3:f8:b2:e1:ab:cc:37:cc:21:f6:
c8:6a:8b:f7:68:f7:96:c1:05:d1:08:72:15:3e:c1:60:04:6d:
99:0a:39:99:59:19:c1:9a:f4:f2:6d:f6:a8:07:e9:23:ae:e4:
50:81:a1:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 11:09:57 2024 by rpki-client on console-ams.rpki-client.org