Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/ttPH78EZrtfkGDWcUR9sfgYYLEM.roa
File: ttPH78EZrtfkGDWcUR9sfgYYLEM.roa (raw, json)
Hash identifier: eRQqyAgAhcBZgWLc7SQ3Ng/re+/4unnHgdKAhvozuLY=
Subject key identifier: B6:D3:C7:EF:C1:19:AE:D7:E4:18:35:9C:51:1F:6C:7E:06:18:2C:43
Certificate issuer: /CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Certificate serial: 018DEE221929F918929F1CC76C757E992D37
Authority key identifier: B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/ttPH78EZrtfkGDWcUR9sfgYYLEM.roa
Signing time: Wed 28 Feb 2024 05:13:48 +0000
ROA not before: Wed 28 Feb 2024 05:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48108
IP address blocks: 31.222.227.0/24 maxlen: 24
94.247.137.0/24 maxlen: 24
146.19.84.0/24 maxlen: 24
176.53.146.0/23 maxlen: 23
176.116.0.0/24 maxlen: 24
185.235.230.0/24 maxlen: 24
2001:678:e30::/48 maxlen: 48
2a0a:2e80::/32 maxlen: 32
2a0a:2e82::/32 maxlen: 32
2a11:8480::/32 maxlen: 32
2a11:8481::/32 maxlen: 32
2a11:8482::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.mft
rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:22:19:29:f9:18:92:9f:1c:c7:6c:75:7e:99:2d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Validity
Not Before: Feb 28 05:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b6d3c7efc119aed7e418359c511f6c7e06182c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9b:ce:ea:5a:03:cb:bd:e4:a1:09:c4:69:74:
c8:31:20:e2:71:d4:93:24:f2:53:40:e4:36:c7:d1:
d3:67:ce:4e:2c:93:4c:19:43:00:83:08:2a:ae:7e:
12:02:9a:c8:a2:2e:11:5a:19:e1:dc:53:5a:8e:3e:
b1:99:45:da:82:ea:b1:71:16:f1:86:bc:73:e1:c4:
8d:96:de:2f:b7:33:38:7b:2e:21:fa:25:6f:15:f5:
86:23:1b:fc:7c:35:97:e0:8f:90:96:a5:0d:16:7e:
72:34:4d:ec:30:db:2d:1d:b1:88:7e:c6:30:13:07:
8d:5a:28:6b:0f:05:52:f4:4a:ce:2d:22:f7:b8:dc:
47:ed:19:2b:5f:50:cf:5c:75:5d:37:92:90:f1:60:
a3:34:07:d6:3c:aa:d0:06:d8:56:10:0c:d0:ae:2c:
42:bc:a9:f9:c7:cf:46:7d:64:6c:c8:2f:3d:7d:78:
11:70:da:2f:25:20:2b:2d:80:91:94:77:0b:15:3a:
ff:db:ad:af:e9:04:19:fd:a3:1c:66:79:88:0e:47:
43:6c:40:01:f1:48:5d:c3:69:3c:70:73:29:45:da:
e0:72:72:69:6b:cb:1e:d1:5f:cf:f3:b8:38:de:14:
fe:98:eb:13:63:45:61:83:79:02:e1:e1:44:d7:a3:
d4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D3:C7:EF:C1:19:AE:D7:E4:18:35:9C:51:1F:6C:7E:06:18:2C:43
X509v3 Authority Key Identifier:
keyid:B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/ttPH78EZrtfkGDWcUR9sfgYYLEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.227.0/24
94.247.137.0/24
146.19.84.0/24
176.53.146.0/23
176.116.0.0/24
185.235.230.0/24
IPv6:
2001:678:e30::/48
2a0a:2e80::/32
2a0a:2e82::/32
2a11:8480::-2a11:8482:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
95:bd:85:44:e5:c9:66:46:33:9a:5d:55:ba:61:07:d2:ce:64:
99:b7:6f:03:37:0b:61:9f:1c:ee:02:5d:35:32:11:1f:ce:67:
5d:a1:13:1c:cf:3e:a3:c4:12:63:fb:e4:32:5d:73:4e:86:87:
fc:5f:c2:4c:a9:2d:5d:7a:41:86:6a:18:ce:91:8e:a3:06:7b:
e6:31:35:41:19:d7:a1:f5:a2:09:8f:ba:46:25:27:d1:ed:a4:
5e:8b:48:4e:6e:5d:5f:c6:c2:36:61:c9:0b:a8:73:1a:99:f8:
90:5d:82:06:5c:bc:bf:89:c8:bf:8d:13:e4:c5:aa:ab:2f:83:
14:18:80:d9:d4:4e:30:c7:53:41:75:02:d1:0d:e8:c1:08:45:
b6:c7:51:5e:70:f3:4e:4d:cd:0f:a6:29:ba:d9:52:27:5a:c4:
8a:cc:cf:98:64:54:ee:ab:7c:a0:37:db:aa:8a:2c:2c:27:e5:
ff:e9:f5:fc:12:8f:e2:69:b1:35:83:72:cf:8f:7e:e4:0d:47:
3a:d5:8f:64:6c:01:ab:0b:db:b0:f2:5c:b1:bf:1f:1c:3e:d9:
e5:b7:4c:a8:e7:57:ed:ae:27:73:cb:be:a9:e9:4c:c2:cd:82:
b0:62:78:67:16:18:aa:65:ae:77:a8:93:5a:70:be:38:4c:e5:
af:f3:98:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:12:09 2024 by rpki-client on console-fra.rpki-client.org