Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/t4tT4203IL45dnruxCelfZzfBY4.roa
File: t4tT4203IL45dnruxCelfZzfBY4.roa (raw, json)
Hash identifier: 9/QzP+UIMUCAAGs2yoQSXYy3kz5s+GB1hWwLtlym4wY=
Subject key identifier: B7:8B:53:E3:6D:37:20:BE:39:76:7A:EE:C4:27:A5:7D:9C:DF:05:8E
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01902AF2D0772AF3579E025D4984F43E287D
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/t4tT4203IL45dnruxCelfZzfBY4.roa
Signing time: Tue 18 Jun 2024 10:44:34 +0000
ROA not before: Tue 18 Jun 2024 10:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41809
IP address blocks: 83.142.112.0/21 maxlen: 21
83.142.116.0/23 maxlen: 23
91.193.196.0/22 maxlen: 22
185.18.176.0/22 maxlen: 22
185.18.176.0/23 maxlen: 23
185.18.178.0/23 maxlen: 23
188.127.0.0/19 maxlen: 19
188.127.0.0/24 maxlen: 24
188.127.4.0/22 maxlen: 22
188.127.8.0/21 maxlen: 21
188.127.16.0/20 maxlen: 20
2a01:6800::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.mft
rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2a:f2:d0:77:2a:f3:57:9e:02:5d:49:84:f4:3e:28:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jun 18 10:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b78b53e36d3720be39767aeec427a57d9cdf058e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fd:26:ae:c4:fa:ec:44:01:cb:1c:68:a8:3f:
d2:92:d7:90:0a:42:5c:aa:bb:61:b3:01:60:83:46:
28:b2:a8:0f:cb:90:44:4b:2c:14:4c:e8:e1:91:8f:
43:f9:ea:ef:bc:4e:0c:8b:3d:8a:e9:6e:b5:a2:98:
14:3f:f1:dc:c8:0f:62:d2:f1:24:94:4e:e4:eb:54:
03:f9:c7:57:c4:37:ae:03:68:61:0c:9a:21:d3:93:
db:d6:8a:f2:88:ee:95:3d:38:18:42:5a:c5:be:3e:
51:ff:a3:e5:c6:27:de:9e:db:c9:59:2e:56:ff:06:
75:46:24:cb:5c:eb:ab:4e:2e:3a:5c:ac:a9:91:3e:
15:6f:b1:44:9f:fe:5c:b8:82:7c:fa:0b:7b:ec:a0:
ec:82:05:ff:95:f3:a2:a3:af:d9:08:48:7c:1b:63:
ed:f6:17:55:85:ca:74:1f:90:cf:b9:d8:42:f6:11:
a5:b5:a5:0c:41:d6:75:5a:30:12:e3:54:59:14:62:
3a:84:0f:26:df:92:8a:64:a8:80:eb:cd:9e:ed:7c:
ef:f5:02:cc:47:4a:34:ad:4b:e3:30:25:1f:26:a3:
a9:87:37:fd:35:80:fc:0f:1d:cc:e1:c6:6b:9a:03:
f9:39:b7:f6:aa:2c:8e:b4:43:3d:fc:e8:6f:3f:5e:
67:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8B:53:E3:6D:37:20:BE:39:76:7A:EE:C4:27:A5:7D:9C:DF:05:8E
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/t4tT4203IL45dnruxCelfZzfBY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.112.0/21
91.193.196.0/22
185.18.176.0/22
188.127.0.0/19
IPv6:
2a01:6800::/32
Signature Algorithm: sha256WithRSAEncryption
46:2b:0c:69:dd:bb:c4:08:f7:51:3b:7a:4f:4f:5a:94:f7:08:
16:1d:a4:c0:29:2f:4e:a6:98:68:3f:2a:7d:b2:aa:ee:70:b7:
ed:63:ed:55:7d:5a:c4:63:b7:d4:25:4e:77:28:58:73:ef:fe:
81:9e:e2:29:5e:2d:cd:54:0d:bf:54:66:10:e0:b2:84:22:5c:
f1:8e:94:69:90:0f:b7:f3:5a:84:45:69:22:27:1c:26:1f:3f:
37:33:2a:51:47:89:db:7b:e3:28:f4:27:53:8a:5f:da:4b:99:
99:1c:2d:3d:8c:40:f9:6f:1d:60:7a:0a:94:ec:dc:cb:43:68:
14:e1:86:2b:69:9f:30:a7:48:57:a4:24:dd:a5:80:f8:b9:c7:
87:cc:7e:6b:15:4c:fa:0d:ef:ed:e2:a4:a9:47:4d:f3:62:70:
24:38:9e:6d:82:8a:0e:92:b8:d5:fb:d2:f2:5f:a4:5b:d9:bb:
92:79:d2:ac:87:09:cc:ef:d6:0b:cb:5a:f1:bf:ff:fc:98:09:
ba:fa:68:ab:e9:dd:ef:f2:bd:5d:91:1c:fe:d8:d3:3c:58:61:
18:6e:a7:4f:54:01:a8:21:57:c3:43:28:45:cb:11:14:53:c3:
f5:ea:2e:da:c5:3a:24:3a:e4:86:f6:d3:ee:6c:6d:1b:08:44:
91:a5:2a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:04:07 2024 by rpki-client on console-ams.rpki-client.org