Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/TLafPPFuSjAMowbFPneIsOD0KEI.roa
File: TLafPPFuSjAMowbFPneIsOD0KEI.roa (raw, json)
Hash identifier: zzz9S/V4OwN/+oGFB6gV9+L2MsGCE8rTBwdw2MGsIqY=
Subject key identifier: 4C:B6:9F:3C:F1:6E:4A:30:0C:A3:06:C5:3E:77:88:B0:E0:F4:28:42
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC7955D7939C43DEDA66DC43E614FD4C6
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/TLafPPFuSjAMowbFPneIsOD0KEI.roa
Signing time: Tue 02 Jan 2024 00:31:43 +0000
ROA not before: Tue 02 Jan 2024 00:31:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59995
IP address blocks: 188.212.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:5d:79:39:c4:3d:ed:a6:6d:c4:3e:61:4f:d4:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4cb69f3cf16e4a300ca306c53e7788b0e0f42842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:96:8d:c0:89:d0:22:5f:fc:97:26:e6:e2:23:
e8:63:e3:9f:0d:05:4c:d9:88:40:eb:92:f4:02:cb:
97:b8:9b:90:a2:4e:4a:46:fc:c3:6c:9c:e0:de:cc:
0d:7f:55:3f:60:a5:70:13:a4:6d:88:36:0d:a0:87:
35:96:78:95:65:25:b5:0f:bd:50:4f:a4:2e:c4:e9:
a1:9b:61:09:aa:ef:30:1e:de:99:f1:53:8b:b2:f0:
95:31:d4:19:08:c3:94:a8:ac:f9:de:94:8c:e0:b5:
2a:b0:70:69:e5:25:aa:1a:f1:84:58:08:df:0a:93:
f9:ed:05:18:8e:30:79:e7:73:07:dc:d9:d2:05:46:
54:26:31:2b:43:6b:46:77:e6:cd:d0:1f:40:c3:37:
a7:e6:17:db:c4:88:e4:7b:e1:f7:e8:d0:84:67:c1:
cb:75:b5:70:b5:4a:4a:6b:67:d7:f4:17:70:fb:a0:
55:53:ea:c2:73:a9:95:68:8d:23:33:08:a9:fe:36:
2d:04:af:53:60:a8:3f:50:67:59:c8:71:a3:d0:52:
b6:a9:8d:c6:20:e2:69:6c:69:84:27:a8:d8:b7:53:
38:f8:55:f1:f2:eb:d2:e6:41:9f:a5:63:31:87:0b:
7d:c7:4b:4b:ec:f7:62:74:68:1f:72:e9:ff:31:67:
60:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B6:9F:3C:F1:6E:4A:30:0C:A3:06:C5:3E:77:88:B0:E0:F4:28:42
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/TLafPPFuSjAMowbFPneIsOD0KEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.126.0/24
Signature Algorithm: sha256WithRSAEncryption
e8:fb:97:3a:3b:5c:5f:33:87:a0:10:12:9c:9d:3c:8e:db:2d:
5e:0d:76:4d:10:a2:d9:5a:d2:66:1b:2c:f3:38:df:fc:13:d0:
3e:4e:66:3e:99:d7:3e:87:55:b7:28:2d:8b:22:c1:56:62:df:
01:5e:eb:3a:36:3d:93:dc:3f:6f:41:df:c8:76:e1:d4:71:84:
0b:f2:9e:7c:4d:cd:8c:83:9e:92:2c:f3:53:08:0a:a7:f2:d6:
26:43:83:cc:53:98:8e:67:08:e6:7f:8e:9d:2f:76:69:b2:cb:
44:47:65:e7:05:0e:d3:d0:05:f6:90:17:5b:dd:d3:f6:62:2d:
de:da:7a:79:56:01:ec:ab:4b:ca:a7:3b:d3:79:2a:b5:f8:40:
e0:09:e1:d3:08:2c:8d:cc:8a:d8:4a:eb:49:a7:d5:5a:b8:e1:
30:30:5c:13:00:a5:f7:ba:59:6e:a9:29:53:6e:43:a9:da:84:
cd:8a:28:f7:1c:2a:00:9a:69:d7:ee:95:c2:eb:d0:65:67:9d:
7f:1d:ee:b2:81:72:68:f7:19:0c:0b:ba:70:92:27:50:7f:96:
ba:67:a7:4b:ac:c8:51:96:f0:30:41:50:17:b6:66:8d:8f:c4:
51:b1:e5:8f:74:2b:d4:b8:ac:8c:5e:88:eb:79:cb:d0:35:06:
03:76:4f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:56:37 2024 by rpki-client on console-ams.rpki-client.org