Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TEhDdb5AiDJxVE6li_tIW1AZP_Y.roa
File: TEhDdb5AiDJxVE6li_tIW1AZP_Y.roa (raw, json)
Hash identifier: z6j8khroVagn0aug1DLHrCqsZWRCDMCEDuE/ps7Kqdw=
Subject key identifier: 4C:48:43:75:BE:40:88:32:71:54:4E:A5:8B:FB:48:5B:50:19:3F:F6
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019193143E1C87018E2DAD98BEB33A7428B0
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TEhDdb5AiDJxVE6li_tIW1AZP_Y.roa
Signing time: Tue 27 Aug 2024 09:04:22 +0000
ROA not before: Tue 27 Aug 2024 09:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.87.254.0/24 maxlen: 24
45.91.9.0/24 maxlen: 24
77.83.192.0/24 maxlen: 24
77.83.194.0/24 maxlen: 24
77.83.195.0/24 maxlen: 24
146.255.185.0/24 maxlen: 24
193.19.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:93:14:3e:1c:87:01:8e:2d:ad:98:be:b3:3a:74:28:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 27 09:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c484375be40883271544ea58bfb485b50193ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8d:1c:ac:21:75:58:01:66:02:63:68:cc:80:
77:a7:88:4c:b7:94:20:cb:bb:b0:31:c0:29:fe:9f:
8a:c7:82:27:e2:61:72:77:87:66:03:51:c8:17:9c:
3c:89:38:2d:a7:bc:18:bc:bb:e3:49:76:46:0f:97:
26:9e:7d:76:b4:36:48:02:41:2f:8d:c9:ea:c9:99:
e2:26:73:6d:6e:b9:b0:5a:fe:fa:bf:46:ed:11:9a:
82:5b:cb:d4:ce:93:8b:a0:e5:c4:a8:9c:27:ca:45:
9f:a2:0e:64:85:23:8c:f5:15:96:ab:6a:b7:6f:91:
11:03:ba:a1:33:60:11:25:25:3d:05:e3:b7:8c:a0:
98:c4:5b:54:a8:b6:fd:c6:19:5b:4f:02:34:64:b7:
4e:d5:63:e1:8f:13:5e:b8:62:4c:e7:92:3f:e6:99:
c8:4a:43:c3:13:f7:12:c0:1a:46:4a:9c:6d:ed:70:
7b:71:b4:e1:16:1c:c6:ee:5c:64:1b:3b:58:14:1f:
fa:8a:4d:a4:f7:b6:56:ee:de:3d:ac:17:48:b3:8d:
98:0f:b3:56:aa:b0:2d:c3:bc:06:c7:75:90:0a:90:
41:37:4d:40:79:55:41:9e:1f:27:b6:e4:93:80:dc:
96:d3:76:c1:a0:3b:0a:03:2d:5e:10:74:4d:66:2e:
0d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:48:43:75:BE:40:88:32:71:54:4E:A5:8B:FB:48:5B:50:19:3F:F6
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TEhDdb5AiDJxVE6li_tIW1AZP_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.254.0/24
45.91.9.0/24
77.83.192.0/24
77.83.194.0/23
146.255.185.0/24
193.19.191.0/24
Signature Algorithm: sha256WithRSAEncryption
43:47:f9:2a:aa:d7:e8:5b:16:e6:c4:42:09:18:90:c4:84:06:
3a:6a:e6:02:dc:33:a0:fb:8f:35:39:7e:db:f7:bb:49:11:ba:
04:25:4e:5a:11:cf:c4:11:8d:70:6a:bf:db:7f:4c:fb:f7:4b:
81:bb:44:cf:85:e6:25:00:f1:1b:e5:13:6e:c9:fa:83:3a:16:
2e:31:e3:6a:67:a5:a1:dd:59:ed:f2:f3:e6:e4:77:55:a8:bc:
11:84:ad:dc:a3:bf:4d:dd:37:ba:17:31:f8:60:90:6e:f4:24:
a0:3d:a7:89:cc:e3:01:09:2a:0d:0e:e5:90:94:c0:39:0e:f8:
c1:2f:f3:22:48:62:bf:20:11:15:20:d7:d6:0c:d6:81:b0:8e:
dc:75:ac:8d:c2:a2:4d:29:28:33:29:9c:2f:11:43:82:f7:8c:
92:05:f8:e9:49:74:37:c1:a1:a0:17:5a:a7:f5:fe:61:a4:51:
a4:5c:2d:7e:6a:e2:ef:00:0c:c5:16:f0:eb:7d:6e:34:6d:64:
89:43:60:85:1c:ed:c8:1a:7c:0d:9e:5b:96:f7:ea:02:9c:bc:
53:bd:fd:f0:a3:f1:a4:b5:11:63:9f:6b:97:95:b4:25:96:f1:
92:4d:39:5a:bb:db:54:27:7a:5c:89:87:25:fd:0b:9d:dd:74:
e4:92:57:47
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZGTFD4chwGOLa2YvrM6dCiwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwODI3MDkwNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzQ4NDM3NWJlNDA4ODMyNzE1NDRlYTU4YmZiNDg1YjUwMTkzZmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxY0crCF1WAFmAmNozIB3p4hMt5Qg
y7uwMcAp/p+Kx4In4mFyd4dmA1HIF5w8iTgtp7wYvLvjSXZGD5cmnn12tDZIAkEv
jcnqyZniJnNtbrmwWv76v0btEZqCW8vUzpOLoOXEqJwnykWfog5khSOM9RWWq2q3
b5ERA7qhM2ARJSU9BeO3jKCYxFtUqLb9xhlbTwI0ZLdO1WPhjxNeuGJM55I/5pnI
SkPDE/cSwBpGSpxt7XB7cbThFhzG7lxkGztYFB/6ik2k97ZW7t49rBdIs42YD7NW
qrAtw7wGx3WQCpBBN01AeVVBnh8ntuSTgNyW03bBoDsKAy1eEHRNZi4NuwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFExIQ3W+QIgycVROpYv7SFtQGT/2MB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvVEVoRGRiNUFpREp4VkU2bGlfdElXMUFaUF9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALVf+AwQA
LVsJAwQATVPAAwQBTVPCAwQAkv+5AwQAwRO/MA0GCSqGSIb3DQEBCwUAA4IBAQBD
R/kqqtfoWxbmxEIJGJDEhAY6auYC3DOg+481OX7b97tJEboEJU5aEc/EEY1war/b
f0z790uBu0TPheYlAPEb5RNuyfqDOhYuMeNqZ6Wh3Vnt8vPm5HdVqLwRhK3co79N
3Te6FzH4YJBu9CSgPaeJzOMBCSoNDuWQlMA5DvjBL/MiSGK/IBEVINfWDNaBsI7c
dayNwqJNKSgzKZwvEUOC94ySBfjpSXQ3waGgF1qn9f5hpFGkXC1+auLvAAzFFvDr
fW40bWSJQ2CFHO3IGnwNnluW9+oCnLxTvf3wo/GktRFjn2uXlbQllvGSTTlau9tU
J3pciYcl/Qud3XTkkldH
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:33:40 2024 by rpki-client on console-fra.rpki-client.org