Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/993772-5fba-40bf-b721-6c3950194370/1/tdOT7A_SwtxkB9stl166CmBfa4I.roa
File: tdOT7A_SwtxkB9stl166CmBfa4I.roa (raw, json)
Hash identifier: R2eL71/7Kcr/9wKckF9nMOp/NEq7Xp1f8iUVcDLw9PM=
Subject key identifier: B5:D3:93:EC:0F:D2:C2:DC:64:07:DB:2D:97:5E:BA:0A:60:5F:6B:82
Certificate issuer: /CN=8353accb94e10cf8c2c29679067ee39099f404d3
Certificate serial: 018CC7272C66AF7A1046D00ED3854F956273
Authority key identifier: 83:53:AC:CB:94:E1:0C:F8:C2:C2:96:79:06:7E:E3:90:99:F4:04:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1Osy5ThDPjCwpZ5Bn7jkJn0BNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/993772-5fba-40bf-b721-6c3950194370/1/tdOT7A_SwtxkB9stl166CmBfa4I.roa
Signing time: Mon 01 Jan 2024 22:31:22 +0000
ROA not before: Mon 01 Jan 2024 22:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210392
IP address blocks: 93.126.38.0/24 maxlen: 24
93.126.37.0/24 maxlen: 24
93.126.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/993772-5fba-40bf-b721-6c3950194370/1/g1Osy5ThDPjCwpZ5Bn7jkJn0BNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/993772-5fba-40bf-b721-6c3950194370/1/g1Osy5ThDPjCwpZ5Bn7jkJn0BNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/g1Osy5ThDPjCwpZ5Bn7jkJn0BNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:2c:66:af:7a:10:46:d0:0e:d3:85:4f:95:62:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8353accb94e10cf8c2c29679067ee39099f404d3
Validity
Not Before: Jan 1 22:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5d393ec0fd2c2dc6407db2d975eba0a605f6b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:eb:5f:da:ba:fc:70:02:07:c7:77:20:ad:94:
e8:c0:14:75:c7:40:9b:06:64:62:62:55:41:29:76:
11:83:1d:f3:62:4b:6b:e7:da:ca:b7:8f:a9:34:68:
47:1a:12:19:c8:77:3e:ae:43:ee:db:38:51:2a:6b:
82:12:f2:3b:d1:40:40:ba:ae:35:54:21:d3:5b:84:
21:61:6e:fb:2e:79:5e:5a:2f:94:0d:c4:51:e0:8f:
0f:33:39:4f:bf:f8:5a:bd:3b:34:cb:14:0a:9c:94:
a1:4e:03:b1:b7:7d:4d:9e:59:86:0b:71:c4:a9:3f:
79:eb:4f:6d:46:96:fc:44:b3:cc:72:8f:7f:83:57:
53:69:03:c9:ce:8a:a3:44:91:03:83:ff:3d:be:52:
b1:ab:db:9a:d1:68:a4:32:fe:cc:bf:8f:0d:a9:c0:
b0:6a:e6:82:fd:e4:bd:5f:6d:61:cc:5c:c3:a8:e3:
fb:2a:12:94:39:d4:65:32:70:69:9c:48:85:01:ee:
d0:ee:28:c7:de:63:0d:af:77:e6:d4:92:24:e5:9e:
35:a3:c9:bc:03:4c:0b:ad:05:d5:47:e5:d6:2a:95:
b6:36:79:61:87:42:22:5d:92:53:89:6a:13:49:c0:
bb:8d:b2:51:04:d3:31:c5:21:89:8e:ca:a5:4f:de:
d1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D3:93:EC:0F:D2:C2:DC:64:07:DB:2D:97:5E:BA:0A:60:5F:6B:82
X509v3 Authority Key Identifier:
keyid:83:53:AC:CB:94:E1:0C:F8:C2:C2:96:79:06:7E:E3:90:99:F4:04:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1Osy5ThDPjCwpZ5Bn7jkJn0BNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/993772-5fba-40bf-b721-6c3950194370/1/tdOT7A_SwtxkB9stl166CmBfa4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/993772-5fba-40bf-b721-6c3950194370/1/g1Osy5ThDPjCwpZ5Bn7jkJn0BNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.126.36.0-93.126.38.255
Signature Algorithm: sha256WithRSAEncryption
2a:96:2b:93:6b:4f:dc:1a:10:d1:19:8f:46:b9:b0:db:82:7c:
2b:87:b1:d7:25:cf:33:3d:8d:55:5d:50:ee:12:80:53:6d:08:
2f:75:85:fa:c0:cc:72:eb:c4:5e:dd:3c:0b:ba:76:70:2a:b3:
5c:68:ae:09:78:be:28:7c:f4:1c:68:03:40:0e:20:ed:1d:61:
7b:c2:5f:2a:95:6e:e9:81:70:fc:18:3f:9b:46:4e:3a:68:b1:
37:4f:2f:a4:d2:06:9c:54:51:24:2a:0b:e7:60:01:ff:8d:94:
bb:1a:21:df:a6:a2:9e:6a:e0:69:9c:07:07:73:53:ed:a4:ca:
a9:65:4d:6f:0d:58:73:6b:75:f3:9f:e0:b8:ab:e2:fd:0f:0f:
ed:86:8f:52:06:5d:88:25:8a:b9:96:f7:05:43:55:36:a7:27:
ec:66:ad:cd:d1:68:e9:5e:e8:f1:96:b8:20:18:8d:27:a0:94:
c0:d2:3e:1f:c1:27:04:8f:a5:64:46:64:e6:7e:0b:aa:aa:5a:
d5:9c:65:c5:45:f5:86:1f:5b:34:6d:4c:23:17:ba:fe:46:4c:
7d:4a:7b:20:cd:7e:79:59:db:f0:2b:e3:0e:99:af:88:e7:31:
f9:16:ae:08:da:d1:eb:68:14:93:b3:ad:a3:52:53:70:cf:6e:
c5:28:68:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 19:25:30 2024 by rpki-client on console-fra.rpki-client.org