Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/tioPK1mYWU0Pn0U1tC3bvtbsdRk.roa
File: tioPK1mYWU0Pn0U1tC3bvtbsdRk.roa (raw, json)
Hash identifier: Rr3uSRnIjAguCBoNiWmXOP4PbQlgbep3C3eY/p3jKCg=
Subject key identifier: B6:2A:0F:2B:59:98:59:4D:0F:9F:45:35:B4:2D:DB:BE:D6:EC:75:19
Certificate issuer: /CN=3a5ec28e841f29f380a7ce2cb5cd5673700821fd
Certificate serial: 018CC79405726DB915E533BD9C8D17958353
Authority key identifier: 3A:5E:C2:8E:84:1F:29:F3:80:A7:CE:2C:B5:CD:56:73:70:08:21:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol7CjoQfKfOAp84stc1Wc3AIIf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/tioPK1mYWU0Pn0U1tC3bvtbsdRk.roa
Signing time: Tue 02 Jan 2024 00:30:15 +0000
ROA not before: Tue 02 Jan 2024 00:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206150
IP address blocks: 185.161.151.0/24 maxlen: 24
185.238.177.0/24 maxlen: 24
185.238.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/Ol7CjoQfKfOAp84stc1Wc3AIIf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/Ol7CjoQfKfOAp84stc1Wc3AIIf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ol7CjoQfKfOAp84stc1Wc3AIIf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 14:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:05:72:6d:b9:15:e5:33:bd:9c:8d:17:95:83:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5ec28e841f29f380a7ce2cb5cd5673700821fd
Validity
Not Before: Jan 2 00:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b62a0f2b5998594d0f9f4535b42ddbbed6ec7519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9c:67:88:f9:03:19:c4:08:ce:ad:57:ce:fd:
d2:a0:89:4b:b3:28:0c:89:fe:d4:81:18:bb:f3:67:
7a:d4:ed:72:7e:0a:86:3c:3e:41:6d:65:fb:24:a5:
02:e5:5f:36:df:19:89:2d:60:7c:d9:1c:b1:a8:79:
dd:1e:c1:34:2b:6a:4f:6f:b9:6e:8c:0d:0c:83:ca:
1a:b9:c5:dd:b6:55:58:af:35:05:77:01:70:c2:d1:
cd:cf:67:18:7e:d9:4c:e9:85:89:c9:a5:94:65:3f:
26:aa:bc:0e:4d:54:89:b0:5f:87:d2:4b:ab:0f:d3:
5f:2c:a3:62:42:a0:34:6c:98:60:df:a0:43:17:da:
1a:7a:a0:76:aa:35:df:58:8e:8c:16:91:6c:fa:61:
30:a3:f3:9f:88:24:b9:bb:0b:2b:34:f6:e2:18:ce:
84:db:69:d3:86:96:fa:b2:04:27:63:40:e1:f9:a1:
59:8b:f1:4c:b9:21:d4:3c:7e:13:2c:31:aa:30:d5:
b1:b1:ca:da:c6:9a:5c:41:f9:e9:56:ef:37:bd:f6:
5e:c7:c7:ba:9a:76:2c:54:46:80:9d:4c:46:c7:4b:
00:7e:6b:ec:80:9d:97:de:e1:a6:97:58:02:84:24:
e4:24:cf:de:06:fe:f3:74:31:58:e6:5e:b4:c6:71:
86:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2A:0F:2B:59:98:59:4D:0F:9F:45:35:B4:2D:DB:BE:D6:EC:75:19
X509v3 Authority Key Identifier:
keyid:3A:5E:C2:8E:84:1F:29:F3:80:A7:CE:2C:B5:CD:56:73:70:08:21:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol7CjoQfKfOAp84stc1Wc3AIIf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/tioPK1mYWU0Pn0U1tC3bvtbsdRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/Ol7CjoQfKfOAp84stc1Wc3AIIf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.151.0/24
185.238.177.0/24
185.238.179.0/24
Signature Algorithm: sha256WithRSAEncryption
46:5c:b2:32:3a:dd:70:cb:b3:b3:86:84:8b:a0:13:5c:cc:2e:
a3:1b:14:bc:c5:f8:5c:a1:c0:e2:24:1b:d6:07:f9:46:33:3a:
d7:37:89:4e:d4:a8:a3:4e:7c:2c:53:d6:73:17:54:cd:ba:e3:
5d:49:41:9a:ed:19:e1:56:0c:c8:6a:40:b0:7f:93:fb:b6:22:
c3:13:d3:27:cc:15:e8:7c:9a:54:14:7b:9c:a5:a8:62:40:2d:
7f:68:46:a9:86:23:85:ef:c5:75:f3:23:ab:87:78:45:48:58:
57:78:24:b5:f1:57:a3:f2:87:c2:db:a1:fe:fc:b7:c0:f8:38:
19:12:b1:b8:8c:32:63:7c:a3:c8:82:6a:22:72:82:ee:fd:97:
6b:4a:5e:78:a9:b4:5c:f7:35:0c:8d:ba:97:fc:66:a3:45:af:
0f:86:e5:9d:c2:06:9f:f3:9f:bb:bd:f8:8e:65:1e:67:2e:f5:
d0:f2:c3:46:b3:f0:52:c9:e1:e2:b1:0f:ae:f1:59:64:c0:da:
f0:53:5d:49:20:9e:0c:f2:96:54:7f:a5:f8:0c:cc:82:1d:28:
d0:49:bf:4e:01:e3:70:47:c8:9b:dc:26:fb:17:ca:89:1f:65:
b2:60:fe:7a:cf:9c:80:1d:5b:cc:34:f9:d6:a4:d7:53:da:c2:
c5:d3:a7:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 21:44:39 2024 by rpki-client on console-ams.rpki-client.org