Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/c1d940-044d-49c4-a7a1-a0076679be60/1/QR7QvEOc7XbO2Xt6u1ta2JjSDFg.roa
File: QR7QvEOc7XbO2Xt6u1ta2JjSDFg.roa (raw, json)
Hash identifier: gqhhpJJ64rh8S6uoYcUBweziN1mR2vWNMs4vJQrbbpM=
Subject key identifier: 41:1E:D0:BC:43:9C:ED:76:CE:D9:7B:7A:BB:5B:5A:D8:98:D2:0C:58
Certificate issuer: /CN=4c261919b55c2c08f72a5ab1d0eb185ee12bdff7
Certificate serial: 018CC94CCFE0EBCF9B9FBB3770770634AFAB
Authority key identifier: 4C:26:19:19:B5:5C:2C:08:F7:2A:5A:B1:D0:EB:18:5E:E1:2B:DF:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCYZGbVcLAj3Klqx0OsYXuEr3_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/c1d940-044d-49c4-a7a1-a0076679be60/1/QR7QvEOc7XbO2Xt6u1ta2JjSDFg.roa
Signing time: Tue 02 Jan 2024 08:31:43 +0000
ROA not before: Tue 02 Jan 2024 08:31:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51515
IP address blocks: 46.45.0.0/22 maxlen: 22
46.45.4.0/22 maxlen: 22
46.45.8.0/22 maxlen: 22
46.45.12.0/23 maxlen: 23
46.45.16.0/24 maxlen: 24
46.45.17.0/24 maxlen: 24
46.45.14.0/24 maxlen: 24
46.45.15.0/24 maxlen: 24
46.45.19.0/24 maxlen: 24
46.45.20.0/24 maxlen: 24
46.45.18.0/24 maxlen: 24
46.45.23.0/24 maxlen: 24
46.45.24.0/24 maxlen: 24
46.45.21.0/24 maxlen: 24
46.45.22.0/24 maxlen: 24
46.45.26.0/24 maxlen: 24
46.45.27.0/24 maxlen: 24
46.45.25.0/24 maxlen: 24
46.45.30.0/24 maxlen: 24
46.45.31.0/24 maxlen: 24
46.45.28.0/24 maxlen: 24
46.45.29.0/24 maxlen: 24
46.45.33.0/24 maxlen: 24
46.45.34.0/23 maxlen: 23
46.45.32.0/24 maxlen: 24
46.45.36.0/23 maxlen: 23
46.45.40.0/22 maxlen: 22
46.45.44.0/22 maxlen: 22
46.45.38.0/23 maxlen: 23
46.45.48.0/24 maxlen: 24
46.45.51.0/24 maxlen: 24
46.45.52.0/24 maxlen: 24
46.45.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/c1d940-044d-49c4-a7a1-a0076679be60/1/TCYZGbVcLAj3Klqx0OsYXuEr3_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/c1d940-044d-49c4-a7a1-a0076679be60/1/TCYZGbVcLAj3Klqx0OsYXuEr3_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/TCYZGbVcLAj3Klqx0OsYXuEr3_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 02:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:cf:e0:eb:cf:9b:9f:bb:37:70:77:06:34:af:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c261919b55c2c08f72a5ab1d0eb185ee12bdff7
Validity
Not Before: Jan 2 08:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=411ed0bc439ced76ced97b7abb5b5ad898d20c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c2:81:24:96:ee:9e:83:72:5b:a7:b3:36:a8:
33:2d:a8:81:20:06:26:af:c9:86:74:cd:69:71:ac:
3e:5e:93:65:4f:0d:25:f3:cd:f7:7a:d9:14:ea:9a:
98:a0:f7:26:b5:3c:6a:56:a1:18:b6:65:3c:1f:11:
3e:25:d3:78:1d:aa:9b:13:0b:87:2b:c2:2b:50:dc:
35:7d:86:66:e7:f0:8b:d0:75:b2:d9:20:98:ec:b4:
6f:a9:9e:c6:87:c3:e5:5d:44:37:42:d1:ed:7f:13:
b2:49:4a:df:6c:c2:01:cb:04:1c:d1:a5:5d:81:6f:
fb:04:74:7c:26:a8:cd:95:83:55:17:84:93:86:b0:
91:41:fc:73:93:b7:0b:0f:84:48:1b:f0:6c:37:c2:
26:23:fb:4d:8f:64:67:1c:d9:e8:e2:b3:2a:b5:cc:
55:58:3c:9a:26:33:f0:a1:a4:43:64:82:0f:19:e1:
5b:89:2e:ea:f1:7b:cc:8e:01:39:f5:00:0f:86:a7:
54:79:bc:56:64:e4:23:45:91:0e:72:f2:d4:44:64:
93:a3:9b:44:94:53:64:d6:52:bc:b5:eb:48:77:d7:
74:ac:2c:70:22:5f:41:35:46:f4:0a:fd:bd:99:8b:
b7:dc:d7:9d:60:e2:01:59:c6:15:74:e1:29:da:54:
2b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1E:D0:BC:43:9C:ED:76:CE:D9:7B:7A:BB:5B:5A:D8:98:D2:0C:58
X509v3 Authority Key Identifier:
keyid:4C:26:19:19:B5:5C:2C:08:F7:2A:5A:B1:D0:EB:18:5E:E1:2B:DF:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCYZGbVcLAj3Klqx0OsYXuEr3_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/c1d940-044d-49c4-a7a1-a0076679be60/1/QR7QvEOc7XbO2Xt6u1ta2JjSDFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/c1d940-044d-49c4-a7a1-a0076679be60/1/TCYZGbVcLAj3Klqx0OsYXuEr3_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.45.0.0-46.45.48.255
46.45.51.0-46.45.53.255
Signature Algorithm: sha256WithRSAEncryption
63:25:19:03:e8:03:41:83:a5:f0:09:82:bc:52:85:31:16:69:
15:b8:29:24:5a:19:49:45:0b:d2:38:47:f3:7b:70:4b:04:6a:
fb:0a:bd:3b:80:35:f9:e6:3b:27:69:c3:55:7a:b3:d1:71:47:
7d:bb:f4:2f:72:77:b1:2f:8a:16:e9:c0:b1:92:5d:d3:71:bb:
9d:34:1c:c8:83:75:d1:67:c8:03:e5:ef:8d:47:0e:d9:69:0a:
09:52:85:fa:79:1e:41:85:cd:e9:9b:8f:d8:df:16:50:f7:8d:
28:ab:12:f7:52:70:2e:5a:00:5e:8b:b7:ec:f7:0c:a8:d9:de:
fc:33:32:4e:78:8a:c6:fa:d5:26:5e:6a:3b:71:55:05:23:2a:
3a:6a:ec:ba:0c:54:e9:43:69:14:82:87:4e:b7:b4:e0:5d:ee:
84:63:c2:01:eb:e4:ef:f1:98:9b:c5:4f:4d:e0:df:b1:eb:1d:
a4:66:9c:b7:b8:9f:56:fc:f7:61:5b:72:02:83:9e:24:07:ed:
ce:24:20:f6:38:2a:1f:00:e4:85:56:43:1d:cb:7e:a6:ae:f3:
68:32:23:61:bd:d7:ef:9a:b2:d0:91:3b:e3:b4:ca:b7:b7:81:
a7:c7:68:89:5e:3c:b7:7a:0a:84:5f:3c:60:93:c5:c7:34:2b:
30:95:14:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 08:34:54 2024 by rpki-client on console-fra.rpki-client.org