Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/ftEzkkIY3QfyO2uDBNRzBqyDB0s.roa
File: ftEzkkIY3QfyO2uDBNRzBqyDB0s.roa (raw, json)
Hash identifier: tgUnOY5tZyPiIupgAJDjAYDCiStjA9l1kynnoVww3Ig=
Subject key identifier: 7E:D1:33:92:42:18:DD:07:F2:3B:6B:83:04:D4:73:06:AC:83:07:4B
Certificate issuer: /CN=33320e2f3c5adadf153a0758bc600b6ea14f4eed
Certificate serial: 018CC26D57F8076624BEA01FE28D39DE4B91
Authority key identifier: 33:32:0E:2F:3C:5A:DA:DF:15:3A:07:58:BC:60:0B:6E:A1:4F:4E:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzIOLzxa2t8VOgdYvGALbqFPTu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/ftEzkkIY3QfyO2uDBNRzBqyDB0s.roa
Signing time: Mon 01 Jan 2024 00:29:54 +0000
ROA not before: Mon 01 Jan 2024 00:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 94.136.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/MzIOLzxa2t8VOgdYvGALbqFPTu0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/MzIOLzxa2t8VOgdYvGALbqFPTu0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzIOLzxa2t8VOgdYvGALbqFPTu0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:57:f8:07:66:24:be:a0:1f:e2:8d:39:de:4b:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33320e2f3c5adadf153a0758bc600b6ea14f4eed
Validity
Not Before: Jan 1 00:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ed133924218dd07f23b6b8304d47306ac83074b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:03:17:6c:cc:e2:ca:e9:a3:3e:74:84:90:2c:
53:c2:1d:16:ac:0d:91:e6:e5:cc:8a:de:6f:d9:7a:
06:56:41:0b:13:c3:5d:f0:53:67:2e:6f:ad:31:0f:
f6:8a:16:a6:bb:29:db:3a:fd:0a:2d:60:c2:f3:1c:
d3:eb:3e:67:e6:34:e6:0c:25:da:a0:9f:ae:f7:3f:
c8:88:03:52:02:35:b9:d4:66:3d:4c:bf:c5:24:07:
a3:1b:63:14:8f:f1:b3:80:12:76:62:57:31:5c:eb:
7a:1d:3d:1d:dd:db:6a:4f:18:32:f6:31:41:4c:78:
3f:d7:89:b3:df:ce:61:07:30:55:01:b3:a6:01:20:
4c:a5:dd:06:5f:13:ed:9f:51:c4:ee:4a:64:15:87:
a3:75:85:1a:f3:3b:7e:44:e7:71:a0:2c:11:bd:7c:
63:a7:ce:45:1c:2a:36:df:c8:15:75:d5:28:a1:3d:
e8:4d:ad:cc:8d:db:df:b8:f3:9c:36:66:f5:3a:d6:
2c:0c:4e:c6:09:4c:dc:9d:13:7d:3d:a5:4f:45:c8:
ba:d4:ac:e4:af:bc:ca:39:98:35:53:37:d4:9f:c0:
c5:f3:5b:34:bf:c3:2d:d0:3b:86:18:11:5d:b2:12:
91:a2:b1:d8:c2:64:c8:96:03:76:4c:94:01:90:bc:
80:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D1:33:92:42:18:DD:07:F2:3B:6B:83:04:D4:73:06:AC:83:07:4B
X509v3 Authority Key Identifier:
keyid:33:32:0E:2F:3C:5A:DA:DF:15:3A:07:58:BC:60:0B:6E:A1:4F:4E:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzIOLzxa2t8VOgdYvGALbqFPTu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/ftEzkkIY3QfyO2uDBNRzBqyDB0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/MzIOLzxa2t8VOgdYvGALbqFPTu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.136.116.0/24
Signature Algorithm: sha256WithRSAEncryption
16:5b:d2:5c:07:f5:73:50:2d:d9:2e:ea:a4:84:3c:98:68:25:
c3:8d:ad:95:cc:a1:bb:6b:a2:44:a6:ef:ae:11:87:3c:00:78:
7a:fb:d7:02:1a:ab:3c:26:8e:ad:cc:19:70:e1:76:34:de:a5:
e4:4b:46:66:1d:75:48:73:26:a5:04:1e:94:bc:3d:9f:f3:8b:
8b:25:bb:73:9d:03:2c:7c:3f:bc:17:02:6c:25:37:6b:55:35:
57:e8:49:76:03:7f:17:7e:c5:88:8f:4d:a3:3b:32:7b:c6:ec:
a9:9f:55:6b:4a:35:94:5d:ba:a7:ef:9f:c5:92:ca:97:fd:e4:
b2:e2:ba:5b:e4:37:c0:6a:3d:bd:3d:9e:c0:46:c9:dd:c0:36:
0f:63:3e:1c:c8:02:09:62:55:bc:1f:25:0f:31:4d:7a:53:a6:
4f:4a:ba:36:d8:cd:ae:6c:8c:2f:30:73:fe:7e:26:c2:91:4e:
6f:59:2e:01:15:c2:ce:6c:50:b0:6f:49:bc:a5:ab:a1:3d:cb:
2f:cf:a8:f5:f7:d2:1b:95:3d:cd:95:d3:c6:c3:e0:6b:44:4f:
ed:e7:e1:68:c7:52:ad:7a:5a:13:7c:0e:27:a5:d1:8c:53:05:
db:ac:34:36:13:42:68:1f:b8:fc:30:3a:e6:51:15:8a:bf:78:
69:ca:c9:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:16:32 2024 by rpki-client on console-ams.rpki-client.org