Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/gta_yO49iUbqws4_9uBqkgI8pdY.roa
File: gta_yO49iUbqws4_9uBqkgI8pdY.roa (raw, json)
Hash identifier: hkGYrs8SoZkEnsrZhE45XuDiIEA+62dOBW6ABctRHWs=
Subject key identifier: 82:D6:BF:C8:EE:3D:89:46:EA:C2:CE:3F:F6:E0:6A:92:02:3C:A5:D6
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018F0647590C0D08F61F2F80F2846EDA4B40
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/gta_yO49iUbqws4_9uBqkgI8pdY.roa
Signing time: Mon 22 Apr 2024 14:48:10 +0000
ROA not before: Mon 22 Apr 2024 14:48:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 94.103.187.0/24 maxlen: 24
185.244.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:06:47:59:0c:0d:08:f6:1f:2f:80:f2:84:6e:da:4b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 22 14:48:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82d6bfc8ee3d8946eac2ce3ff6e06a92023ca5d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:01:03:6e:b9:25:2b:a2:05:a8:8d:b9:fd:
ee:d9:66:b6:5c:4e:d7:8a:04:88:2f:b5:50:2e:84:
9a:11:bf:ce:0b:3a:8d:51:50:3a:92:e6:27:d1:ee:
a5:3d:d1:21:eb:80:30:e1:a1:c5:97:b1:ee:b8:a0:
41:b5:89:ba:4f:72:cc:5c:1b:ec:42:5b:a2:92:7a:
0f:01:53:3a:84:d4:2c:cd:86:65:9e:8b:cd:ce:4c:
fe:39:eb:c4:d8:a1:db:d0:92:13:e8:b2:87:9b:7c:
df:b4:e7:7a:b9:3b:28:04:d2:57:aa:4b:fc:11:14:
84:87:2e:e7:98:02:06:ff:05:51:da:1a:f5:ba:8e:
25:fe:dd:8e:a7:25:99:36:e3:61:a3:1b:ea:04:19:
ee:c5:5d:be:90:76:3b:fc:7f:ca:ad:48:43:53:bb:
bc:c5:94:33:3d:e9:a4:95:8f:67:59:56:b0:28:29:
34:53:cb:09:e0:d1:ce:72:67:f2:25:ef:57:e5:04:
f5:ee:ee:c6:0c:41:b7:1f:6a:f6:b2:1b:22:58:f0:
16:14:70:ac:13:35:42:d7:ea:de:2b:b6:93:af:01:
5d:57:3f:a4:46:93:5f:5f:0d:64:77:00:b4:45:15:
68:59:e4:c4:f5:8f:38:24:01:b9:c5:a3:b1:93:7e:
7b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D6:BF:C8:EE:3D:89:46:EA:C2:CE:3F:F6:E0:6A:92:02:3C:A5:D6
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/gta_yO49iUbqws4_9uBqkgI8pdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.187.0/24
185.244.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:d7:3f:7e:c2:de:a1:7a:e5:b7:f0:4a:9c:0c:3e:af:bc:96:
9b:d3:89:fa:a5:8f:0e:52:e9:4e:de:b6:12:4e:0f:d7:4b:bf:
bd:b3:1e:6b:37:13:ee:6e:5e:00:e9:00:a5:b7:82:69:dc:d0:
1d:71:27:9d:e5:9f:41:0d:82:0e:05:e2:10:d8:e4:7d:65:d6:
59:54:ee:b6:72:11:9b:bb:46:0b:87:c6:80:95:68:15:d3:47:
0c:28:0c:bc:09:19:16:d8:aa:d4:43:a5:19:48:68:d5:71:7f:
09:f6:b4:fa:85:b6:df:74:65:db:1c:ef:dc:0d:d5:98:7c:18:
30:8b:56:7c:9c:0f:b5:4d:b8:02:1d:2b:8f:a1:50:f0:26:39:
9c:ff:e7:f9:84:03:90:bf:8b:88:f1:f2:40:04:24:33:20:ac:
09:1e:6f:75:cf:39:63:7e:50:f7:63:4c:46:b6:4a:5a:ce:34:
4a:2a:f0:52:1a:b7:d5:14:a0:b9:2f:77:f4:5b:0a:68:db:93:
90:89:dd:94:d1:d8:c1:87:bd:5d:16:c0:06:a8:e1:3f:1c:7f:
b7:32:5d:99:47:89:16:5c:7f:2b:a2:c2:87:33:62:fa:fc:39:
3e:7b:ff:e2:8f:fa:fe:80:74:4c:ed:97:37:64:03:e8:11:a1:
2e:b6:be:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 15:26:48 2024 by rpki-client on console-ams.rpki-client.org