Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QToYUoFtP3NnTLirHf_1w187jKs.roa
File: QToYUoFtP3NnTLirHf_1w187jKs.roa (raw, json)
Hash identifier: 7s8y0mn38qM9PdahslBJHE9m1c45u71iPNUHdV0LL2U=
Subject key identifier: 41:3A:18:52:81:6D:3F:73:67:4C:B8:AB:1D:FF:F5:C3:5F:3B:8C:AB
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0196432D6589269619F1DBEBB378076EA6BF
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QToYUoFtP3NnTLirHf_1w187jKs.roa
Signing time: Thu 17 Apr 2025 09:56:10 +0000
ROA not before: Thu 17 Apr 2025 09:56:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
46.102.237.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
93.115.106.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
185.34.101.0/24 maxlen: 24
194.85.251.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:2d:65:89:26:96:19:f1:db:eb:b3:78:07:6e:a6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 17 09:56:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=413a1852816d3f73674cb8ab1dfff5c35f3b8cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:27:2c:f3:97:62:a5:01:c0:7b:e4:e9:a4:5d:
89:49:0b:da:11:4b:3d:32:b1:f6:1f:8d:82:1e:fd:
08:4d:1c:69:c9:b1:e7:4c:58:24:19:11:2a:e2:3d:
40:67:1d:2b:2f:d8:ee:38:b8:55:c0:ac:30:59:3b:
fe:57:eb:92:ad:5a:86:96:45:5f:ca:84:39:e6:a7:
f3:df:50:dd:52:c7:26:a0:87:6d:52:fd:fc:35:dc:
89:44:a0:56:7d:95:08:05:3e:7d:43:53:55:24:ee:
6a:53:7c:4d:2d:0e:9b:9f:d7:83:34:6d:38:ee:b2:
63:e4:87:82:6b:d2:d3:6d:e6:38:88:8b:f0:3a:1b:
b7:ce:95:0e:56:e0:0f:46:a9:72:a6:85:32:ec:ab:
24:a3:3b:9e:dc:82:03:9d:30:34:57:66:9a:03:94:
96:4e:5b:9e:10:06:06:1b:c6:c7:aa:c7:04:b6:43:
fc:30:82:fd:41:31:49:d8:d4:0e:1a:69:b0:d8:e9:
5a:43:95:2d:9d:32:66:a6:9d:90:4c:0f:fb:05:bd:
eb:ac:1e:5d:8a:76:06:c0:c2:65:cb:9d:0e:b0:b5:
5b:34:af:6e:06:1d:28:45:d4:57:1b:5d:b0:da:a4:
48:46:4f:8c:0f:86:75:b6:5e:bb:b0:a2:92:cf:fb:
85:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3A:18:52:81:6D:3F:73:67:4C:B8:AB:1D:FF:F5:C3:5F:3B:8C:AB
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QToYUoFtP3NnTLirHf_1w187jKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
46.102.237.0/24
89.34.106.0/24
93.114.183.0/24
93.115.106.0/24
93.115.203.0/24
94.177.106.0/24
185.34.101.0/24
194.85.251.0/24
212.192.6.0/24
Signature Algorithm: sha256WithRSAEncryption
62:d0:cd:73:e4:f5:14:2a:74:0f:cc:15:d2:fb:7f:76:70:e0:
4f:2a:43:4d:f4:09:09:ea:d0:35:03:ad:75:af:d7:a3:61:d8:
22:c2:48:3c:d0:f9:ff:c8:99:34:16:42:40:57:a5:0c:6c:a6:
eb:ab:89:49:45:b5:39:a4:6a:7c:f7:1f:6c:20:f3:9c:2f:61:
ed:49:d2:3c:63:83:01:53:94:2e:be:fc:a1:f6:27:b9:6e:2f:
67:2c:ff:df:74:ee:41:65:77:fb:86:77:84:30:91:77:f7:d7:
59:81:b5:75:1e:a3:b2:59:19:e5:63:55:50:de:20:39:47:fb:
ff:27:54:ff:51:22:d9:fc:39:3e:a3:83:bc:b1:a1:25:72:89:
17:49:6e:70:3b:3b:0c:15:8b:8a:6b:1e:98:00:42:22:5f:b1:
c0:58:e2:ab:f8:2e:86:1e:cb:d2:f4:c6:73:7b:e4:64:c6:f2:
d5:bf:42:77:f4:92:23:0b:49:68:92:40:41:6c:20:a5:9c:50:
bb:54:39:45:f7:b7:c4:89:5a:8f:d7:ca:43:80:59:c1:6a:f1:
04:71:e9:f8:3f:79:d0:c1:8a:6c:b9:0c:7a:fc:13:cb:62:ea:
c1:4a:25:81:25:d1:b8:ef:2e:1e:ea:8e:e2:f4:b0:de:76:ea:
ca:45:74:69
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAZZDLWWJJpYZ8dvrs3gHbqa/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjUwNDE3MDk1NjEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTNhMTg1MjgxNmQzZjczNjc0Y2I4YWIxZGZmZjVjMzVmM2I4Y2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCcs85dipQHAe+TppF2JSQvaEUs9
MrH2H42CHv0ITRxpybHnTFgkGREq4j1AZx0rL9juOLhVwKwwWTv+V+uSrVqGlkVf
yoQ55qfz31DdUscmoIdtUv38NdyJRKBWfZUIBT59Q1NVJO5qU3xNLQ6bn9eDNG04
7rJj5IeCa9LTbeY4iIvwOhu3zpUOVuAPRqlypoUy7Kskozue3IIDnTA0V2aaA5SW
TlueEAYGG8bHqscEtkP8MIL9QTFJ2NQOGmmw2OlaQ5UtnTJmpp2QTA/7Bb3rrB5d
inYGwMJly50OsLVbNK9uBh0oRdRXG12w2qRIRk+MD4Z1tl67sKKSz/uFywIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFEE6GFKBbT9zZ0y4qx3/9cNfO4yrMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvUVRvWVVvRnRQM05uVExpckhmXzF3MTg3aktzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQBLYe2AwQA
LmbtAwQAWSJqAwQAXXK3AwQAXXNqAwQAXXPLAwQAXrFqAwQAuSJlAwQAwlX7AwQA
1MAGMA0GCSqGSIb3DQEBCwUAA4IBAQBi0M1z5PUUKnQPzBXS+392cOBPKkNN9AkJ
6tA1A611r9ejYdgiwkg80Pn/yJk0FkJAV6UMbKbrq4lJRbU5pGp89x9sIPOcL2Ht
SdI8Y4MBU5Quvvyh9ie5bi9nLP/fdO5BZXf7hneEMJF399dZgbV1HqOyWRnlY1VQ
3iA5R/v/J1T/USLZ/Dk+o4O8saElcokXSW5wOzsMFYuKax6YAEIiX7HAWOKr+C6G
HsvS9MZze+RkxvLVv0J39JIjC0lokkBBbCClnFC7VDlF97fEiVqP18pDgFnBavEE
cen4P3nQwYpsuQx6/BPLYurBSiWBJdG47y4e6o7i9LDedurKRXRp
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:21:31 2025 by rpki-client