Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6278c6-c201-4740-a5f1-66d671f842b3/1/TDpfrbMQmPRW4K-WlV7K9f1inuk.roa
File: TDpfrbMQmPRW4K-WlV7K9f1inuk.roa (raw, json)
Hash identifier: 792OzgUy+PlpMqWwU/q0jFc++64Mfon5YreXpa2cqIo=
Subject key identifier: 4C:3A:5F:AD:B3:10:98:F4:56:E0:AF:96:95:5E:CA:F5:FD:62:9E:E9
Certificate issuer: /CN=1550afae2baefb6b88f9751bb3218eb39b94b576
Certificate serial: 018CC649F9E509DBFDFC4C50740734C2B6F7
Authority key identifier: 15:50:AF:AE:2B:AE:FB:6B:88:F9:75:1B:B3:21:8E:B3:9B:94:B5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FVCvriuu-2uI-XUbsyGOs5uUtXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6278c6-c201-4740-a5f1-66d671f842b3/1/TDpfrbMQmPRW4K-WlV7K9f1inuk.roa
Signing time: Mon 01 Jan 2024 18:29:46 +0000
ROA not before: Mon 01 Jan 2024 18:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61221
IP address blocks: 185.14.244.0/24 maxlen: 24
185.14.244.0/23 maxlen: 23
185.14.246.0/24 maxlen: 24
185.14.245.0/24 maxlen: 24
185.14.246.0/23 maxlen: 23
185.14.247.0/24 maxlen: 24
5.252.144.0/24 maxlen: 24
5.252.146.0/24 maxlen: 24
2a03:b840:12::/48 maxlen: 48
2a03:b840:2::/48 maxlen: 48
2a03:b840:100::/48 maxlen: 48
2a03:b840:3::/48 maxlen: 64
2a03:b840:13::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6278c6-c201-4740-a5f1-66d671f842b3/1/FVCvriuu-2uI-XUbsyGOs5uUtXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6278c6-c201-4740-a5f1-66d671f842b3/1/FVCvriuu-2uI-XUbsyGOs5uUtXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FVCvriuu-2uI-XUbsyGOs5uUtXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:f9:e5:09:db:fd:fc:4c:50:74:07:34:c2:b6:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1550afae2baefb6b88f9751bb3218eb39b94b576
Validity
Not Before: Jan 1 18:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c3a5fadb31098f456e0af96955ecaf5fd629ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cb:bf:d6:1d:b1:8d:a0:77:d4:a9:cc:f5:da:
36:e5:00:3d:99:27:ab:b8:26:57:84:17:20:98:0a:
e4:d8:7e:13:5d:9b:85:46:fb:cd:11:c5:40:61:cc:
b9:24:d5:7a:1a:1e:b2:37:ed:e2:10:73:7d:9b:93:
30:de:f1:e4:2b:5a:f3:ae:c3:97:83:e4:9c:46:e1:
e7:98:61:5d:08:03:ee:21:c3:04:94:be:b4:eb:43:
c8:24:a9:5e:89:9b:26:16:b7:d3:56:b8:2c:4e:98:
c4:57:1b:aa:d1:dd:7a:bb:45:60:54:ba:ad:c2:a4:
4f:46:b5:04:71:57:70:9b:a4:4b:cc:96:6b:ab:d3:
7d:fb:3c:54:32:72:39:74:43:81:6e:be:0d:c6:79:
ed:53:98:61:27:a0:dc:33:14:b9:a0:7d:42:04:6e:
2d:dc:07:73:79:31:49:58:a8:75:c4:2f:92:ff:d5:
58:28:34:1f:95:8a:89:66:9b:22:d3:13:5a:c5:60:
f7:0d:91:cf:ef:c6:d6:f3:85:4d:35:1e:cf:b9:89:
2f:4d:8b:53:1a:04:66:a0:c4:45:1f:69:fe:e4:c3:
1e:29:73:d4:5c:1f:7d:d3:51:11:cb:b9:93:36:04:
2a:17:3e:19:a7:3b:c4:35:16:ea:ba:cd:35:ee:08:
5b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3A:5F:AD:B3:10:98:F4:56:E0:AF:96:95:5E:CA:F5:FD:62:9E:E9
X509v3 Authority Key Identifier:
keyid:15:50:AF:AE:2B:AE:FB:6B:88:F9:75:1B:B3:21:8E:B3:9B:94:B5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FVCvriuu-2uI-XUbsyGOs5uUtXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6278c6-c201-4740-a5f1-66d671f842b3/1/TDpfrbMQmPRW4K-WlV7K9f1inuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6278c6-c201-4740-a5f1-66d671f842b3/1/FVCvriuu-2uI-XUbsyGOs5uUtXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.144.0/24
5.252.146.0/24
185.14.244.0/22
IPv6:
2a03:b840:2::/47
2a03:b840:12::/47
2a03:b840:100::/48
Signature Algorithm: sha256WithRSAEncryption
a8:4e:f7:cd:35:fa:f8:d8:97:2c:82:d8:d4:e5:99:83:fa:92:
85:46:5c:fc:6c:44:f8:18:aa:4f:b2:5d:06:62:fd:ea:f0:14:
8a:ef:cb:45:39:0e:01:b9:07:a8:ab:3c:34:08:c1:c0:1f:52:
a1:1c:ef:14:e7:92:dd:88:ed:f2:fc:f7:1e:a4:4e:7c:18:a6:
04:0e:22:52:ae:b9:3d:c9:01:ef:69:a1:a5:6b:b9:74:fc:21:
d1:9c:ae:39:51:b9:79:c5:df:8a:90:d6:1f:77:40:02:88:2d:
f7:0c:ae:7e:f4:e6:fa:51:b7:05:ec:f2:3d:f2:c9:14:bf:a3:
68:5e:de:74:e2:dc:16:73:45:67:2e:2b:82:21:aa:c0:84:7a:
f5:62:f9:97:2b:ea:58:ba:89:e1:55:3e:10:20:93:b4:65:0b:
e6:3a:77:05:23:05:47:21:3e:3d:15:7a:97:10:53:67:8c:0b:
d2:72:59:d9:ea:21:c3:29:70:f9:fd:39:42:a4:c2:7b:d3:f2:
f4:86:30:1a:64:d2:8a:72:dc:66:dd:77:7b:a2:8d:d5:36:3c:
14:03:e3:09:80:a4:d6:71:6a:8a:a9:cb:03:35:93:cc:bf:2e:
0e:58:43:d1:b1:48:0e:de:68:9b:73:f1:14:e4:59:50:1e:44:
fb:26:e0:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 06:15:00 2024 by rpki-client on console-ams.rpki-client.org