Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ukNo3m5CTkdcoirxkaVo-csvBik.roa
File: ukNo3m5CTkdcoirxkaVo-csvBik.roa (raw, json)
Hash identifier: rTAroC5/8xHF48lAdoTznebXRpHla+CpHy+saJFs0Yo=
Subject key identifier: BA:43:68:DE:6E:42:4E:47:5C:A2:2A:F1:91:A5:68:F9:CB:2F:06:29
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018D12D5C0D8D1B392881C95AB0E10B9D1AB
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ukNo3m5CTkdcoirxkaVo-csvBik.roa
Signing time: Tue 16 Jan 2024 15:13:34 +0000
ROA not before: Tue 16 Jan 2024 15:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42704
IP address blocks: 93.170.174.0/24 maxlen: 24
93.171.142.0/24 maxlen: 24
93.171.177.0/24 maxlen: 24
93.171.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:12:d5:c0:d8:d1:b3:92:88:1c:95:ab:0e:10:b9:d1:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 16 15:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba4368de6e424e475ca22af191a568f9cb2f0629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:82:58:ee:c5:69:24:5d:f7:b3:3f:da:a1:6d:
f4:8f:79:ff:26:84:c1:7b:09:fe:bf:d5:e0:3c:92:
15:63:83:47:bf:a9:4b:22:f9:41:47:7d:5c:7e:a4:
25:65:6c:b1:fe:61:ab:ea:8d:5e:b7:f2:96:b6:50:
59:86:4f:92:0c:5e:9e:33:cd:63:c5:2e:3f:af:b9:
2b:5a:cc:37:04:88:52:48:b9:70:15:fd:56:19:4c:
84:ca:7a:4d:b8:96:45:65:76:54:8b:06:ec:cb:ac:
2a:5a:61:5a:a8:44:89:2d:8e:01:10:b9:1b:d7:cc:
65:50:5e:12:39:5d:52:ab:b6:73:18:97:d2:ee:e1:
4a:e3:99:bc:8d:33:42:04:e3:2d:da:21:68:e8:89:
cb:41:be:ab:a0:84:96:ce:00:8b:58:3e:34:49:db:
d8:e3:a1:06:48:79:a2:47:f5:1f:18:3e:a1:ec:0b:
89:fc:91:70:7f:80:f1:11:aa:ab:ea:46:b4:25:f0:
99:7e:fb:5c:ae:81:7f:ab:d7:c1:31:df:7c:cb:fe:
a0:b0:75:48:b6:45:13:90:1a:fd:a3:91:67:a3:f5:
7d:36:e2:2d:ff:d8:a8:1a:59:64:74:3e:77:9e:ec:
bc:a2:1b:d0:8a:5c:f8:bb:94:d4:c0:d1:13:41:62:
44:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:43:68:DE:6E:42:4E:47:5C:A2:2A:F1:91:A5:68:F9:CB:2F:06:29
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ukNo3m5CTkdcoirxkaVo-csvBik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.174.0/24
93.171.142.0/24
93.171.177.0/24
93.171.205.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:8f:fa:0e:8d:73:d6:62:f0:64:3a:26:dd:bb:a6:84:2d:23:
0a:30:d9:3e:47:01:31:fd:68:a8:3a:4f:13:df:a9:48:b2:21:
01:e0:72:c3:22:c1:9e:91:21:5c:56:1b:19:d1:93:0d:d5:4f:
45:93:cc:5f:9d:1c:bd:08:f2:ff:4f:0d:44:94:bb:54:9e:8e:
46:00:e5:2e:dd:84:f8:2d:b2:a0:95:e9:16:da:93:ab:6c:c1:
07:19:1f:95:b0:7f:b8:2a:b8:3f:4a:dd:b6:d0:73:a8:cb:33:
8c:29:47:26:cf:6c:40:f7:c8:8b:78:0a:ec:d9:c9:6f:f7:c5:
b5:ad:23:98:1c:5d:5b:dc:05:05:42:21:4a:26:8a:b5:97:61:
bf:0e:62:70:66:89:af:fb:fc:8c:de:6a:e8:c7:c0:2c:3c:f1:
9c:98:0f:8e:ae:9b:d5:86:fb:ac:f5:e4:a0:51:c5:5b:5a:e2:
75:9b:92:7f:2c:dc:be:42:d7:0c:5c:48:0c:70:28:e3:bc:08:
bd:fd:7e:40:18:87:c0:62:5b:2b:b9:3f:b8:e2:79:09:11:46:
5f:24:55:6a:9b:e1:ad:c1:92:f9:73:0a:d9:45:61:6a:57:be:
3d:cc:72:45:2f:eb:ba:bf:85:8e:44:cc:10:f2:6e:6f:ef:87:
18:99:8d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:46:12 2024 by rpki-client on console-fra.rpki-client.org