Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/2fa707-dad6-4f95-b5de-fc99d33d3344/1/OvijQP_hjdyZtqhsxeLQdpmeLFQ.roa
File: OvijQP_hjdyZtqhsxeLQdpmeLFQ.roa (raw, json)
Hash identifier: MxipALCRw7xpKVsd2o9jGrHon4SO5aiAJLEiyyyuWu4=
Subject key identifier: 3A:F8:A3:40:FF:E1:8D:DC:99:B6:A8:6C:C5:E2:D0:76:99:9E:2C:54
Certificate issuer: /CN=59d590e2cc14cad844aef15ad5f2d467de8a37fe
Certificate serial: 018CC3B6F6FF9FDB699408CFBF0A3F416055
Authority key identifier: 59:D5:90:E2:CC:14:CA:D8:44:AE:F1:5A:D5:F2:D4:67:DE:8A:37:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WdWQ4swUythErvFa1fLUZ96KN_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/2fa707-dad6-4f95-b5de-fc99d33d3344/1/OvijQP_hjdyZtqhsxeLQdpmeLFQ.roa
Signing time: Mon 01 Jan 2024 06:29:56 +0000
ROA not before: Mon 01 Jan 2024 06:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47870
IP address blocks: 93.174.172.0/24 maxlen: 24
93.174.169.0/24 maxlen: 24
93.174.171.0/24 maxlen: 24
93.174.168.0/24 maxlen: 24
93.174.170.0/24 maxlen: 24
93.174.173.0/24 maxlen: 24
2a03:f400:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/2fa707-dad6-4f95-b5de-fc99d33d3344/1/WdWQ4swUythErvFa1fLUZ96KN_4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/2fa707-dad6-4f95-b5de-fc99d33d3344/1/WdWQ4swUythErvFa1fLUZ96KN_4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WdWQ4swUythErvFa1fLUZ96KN_4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:f6:ff:9f:db:69:94:08:cf:bf:0a:3f:41:60:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59d590e2cc14cad844aef15ad5f2d467de8a37fe
Validity
Not Before: Jan 1 06:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3af8a340ffe18ddc99b6a86cc5e2d076999e2c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:85:d0:e7:31:a1:f8:0a:de:f1:6c:9b:db:f8:
7c:3f:dd:df:44:5f:c9:12:0c:03:2b:f4:26:a8:f9:
da:cb:75:70:ba:91:3c:91:07:fd:6c:78:b3:3e:b6:
f8:29:36:d2:cc:7f:e3:71:67:02:97:36:e6:d4:70:
11:0f:ce:f8:15:a9:8c:f0:46:c7:8c:3c:32:81:04:
17:a6:87:85:ef:af:68:f9:10:c3:f7:ce:31:76:ed:
be:15:3a:48:b8:d8:14:35:59:0f:c9:c9:12:74:e8:
62:51:6b:fc:95:2b:0c:23:d3:f6:6c:31:13:5e:39:
f0:4f:87:1f:17:49:ec:fc:7e:12:5a:4e:c6:5a:d9:
6d:12:71:bd:cb:88:12:ed:e5:4e:f5:1a:8b:50:70:
02:3d:18:85:d5:1f:96:5d:8e:31:3b:bc:0d:b6:22:
4f:ed:70:98:5d:88:22:3a:6a:4e:2a:0c:72:c0:33:
76:6b:0f:66:61:7d:ff:f0:16:71:ee:83:ae:20:7f:
01:e8:a0:96:07:8a:24:78:44:a7:e5:24:7e:cb:d9:
23:1a:14:68:a3:2e:22:70:18:1d:d3:5a:14:32:74:
8e:d0:2d:c6:be:9f:2c:8a:eb:98:56:99:e5:6c:df:
15:c9:d6:23:1f:6f:cb:42:e9:dc:0e:7b:d6:dc:5b:
f3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F8:A3:40:FF:E1:8D:DC:99:B6:A8:6C:C5:E2:D0:76:99:9E:2C:54
X509v3 Authority Key Identifier:
keyid:59:D5:90:E2:CC:14:CA:D8:44:AE:F1:5A:D5:F2:D4:67:DE:8A:37:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WdWQ4swUythErvFa1fLUZ96KN_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/2fa707-dad6-4f95-b5de-fc99d33d3344/1/OvijQP_hjdyZtqhsxeLQdpmeLFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/2fa707-dad6-4f95-b5de-fc99d33d3344/1/WdWQ4swUythErvFa1fLUZ96KN_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.168.0-93.174.173.255
IPv6:
2a03:f400:3::/48
Signature Algorithm: sha256WithRSAEncryption
85:c0:79:15:40:34:fb:7b:d9:9c:0a:98:34:54:4b:d7:1e:21:
a8:e7:b4:90:1a:23:6a:ae:97:ba:50:ea:74:f3:66:30:36:24:
32:fb:72:1d:8f:d0:83:72:09:17:95:f0:d7:f1:04:a9:64:03:
d8:0f:13:e0:9e:73:9f:d4:16:30:7d:69:83:0e:04:4c:3b:94:
b1:d0:04:0d:a0:2f:ad:d5:47:27:ca:b3:76:d0:2d:1b:22:1a:
ef:b8:cb:80:23:f6:74:cc:10:6d:3b:77:6e:ac:07:b2:71:ba:
57:94:6a:2a:06:f0:94:fa:5a:e8:71:7c:87:03:d8:0f:b8:32:
31:ca:39:b7:67:d3:c3:80:cf:78:5a:fb:a6:a1:4f:e9:6b:0f:
cd:91:98:17:1f:e5:d5:7e:58:f2:1c:6b:61:03:f3:37:13:a4:
ce:33:f2:b1:6b:b9:05:8f:63:5a:a9:cf:8c:03:ff:fe:a5:38:
ae:e3:32:63:d0:e9:16:ad:71:f1:b9:3d:eb:10:15:23:ef:db:
63:f7:d8:c4:c2:5b:df:0b:4e:12:a9:7f:79:3c:bb:8c:df:c3:
80:b9:7a:cd:50:1f:e0:c7:ca:be:ea:bc:c1:57:31:c6:44:cb:
ac:43:68:d7:58:da:a6:74:fe:a4:2a:2e:6f:14:3e:e9:b3:b0:
cc:36:83:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:42:02 2024 by rpki-client on console-ams.rpki-client.org