Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/TTrD6Od_QmX1qVk4WOcopR8_gUg.roa
File: TTrD6Od_QmX1qVk4WOcopR8_gUg.roa (raw, json)
Hash identifier: Xq4yi8Z+bnburKxcRR4Lo8Mh2DsmDFWtawnV51P2u6k=
Subject key identifier: 4D:3A:C3:E8:E7:7F:42:65:F5:A9:59:38:58:E7:28:A5:1F:3F:81:48
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 018CC3B7433B36E82903EAC10C16569FE005
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/TTrD6Od_QmX1qVk4WOcopR8_gUg.roa
Signing time: Mon 01 Jan 2024 06:30:16 +0000
ROA not before: Mon 01 Jan 2024 06:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21438
IP address blocks: 178.76.215.0/24 maxlen: 24
86.110.162.0/23 maxlen: 23
86.110.164.0/23 maxlen: 23
86.110.166.0/23 maxlen: 23
86.110.172.0/24 maxlen: 24
5.149.147.0/24 maxlen: 24
5.149.148.0/24 maxlen: 24
178.76.192.0/24 maxlen: 24
178.76.193.0/24 maxlen: 24
178.76.200.0/22 maxlen: 22
178.76.204.0/24 maxlen: 24
178.76.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.mft
rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:43:3b:36:e8:29:03:ea:c1:0c:16:56:9f:e0:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 06:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d3ac3e8e77f4265f5a9593858e728a51f3f8148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:28:00:7c:18:d9:12:96:2b:c0:cb:c3:7b:db:
f3:bb:bf:3a:2e:75:bd:6d:a6:b7:04:cc:34:c9:05:
f8:47:77:49:ac:3f:e0:33:05:bf:51:2a:a4:56:34:
36:d2:2c:9f:df:cf:af:01:2c:43:7c:e9:a0:53:e4:
2d:ba:15:87:72:bf:55:0d:50:a1:ae:f2:b2:ca:dd:
e9:27:92:9f:d2:7c:8b:94:af:cb:13:fd:43:19:66:
26:c7:12:3f:e9:ee:fb:95:49:55:dc:b2:a5:d4:1a:
87:62:39:fa:a0:45:b8:32:58:6a:9d:7b:0d:63:d7:
ef:cf:c6:b3:26:f4:9a:ab:28:ce:97:f0:9a:ce:76:
8e:f3:7c:b2:85:3e:34:6a:d1:92:b9:90:5d:c7:5d:
f4:42:85:7f:0d:2f:97:46:93:0a:ce:7e:67:94:b1:
f9:55:92:ad:83:a7:5c:61:d8:d1:fd:ff:3d:2d:81:
4b:90:67:1c:e4:ea:18:8c:5c:f9:c7:6a:d9:5e:12:
07:a9:45:85:c2:41:cd:d3:24:e7:9b:b1:d6:0a:44:
94:50:f5:e7:dc:a4:b2:e0:b5:ae:3e:fa:18:69:db:
07:e0:9a:b2:a3:06:ca:11:80:17:86:fe:38:e9:fb:
dd:ef:d5:13:19:b8:d6:0f:34:83:69:b9:44:dd:dd:
0e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3A:C3:E8:E7:7F:42:65:F5:A9:59:38:58:E7:28:A5:1F:3F:81:48
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/TTrD6Od_QmX1qVk4WOcopR8_gUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.147.0-5.149.148.255
86.110.162.0-86.110.167.255
86.110.172.0/24
178.76.192.0/23
178.76.200.0-178.76.204.255
178.76.206.0/24
178.76.215.0/24
Signature Algorithm: sha256WithRSAEncryption
98:0f:d1:7e:7c:83:dc:93:f9:e2:47:58:ea:e8:22:17:0e:8e:
f0:93:ea:c4:57:0c:42:7e:a8:45:a6:53:22:d3:dd:02:72:32:
ee:dd:95:ed:d5:9b:98:dd:52:66:51:1a:b4:04:3f:db:0e:90:
f6:9f:75:f5:0b:cc:86:fc:c9:37:04:15:77:e8:88:68:d1:8d:
70:e8:3e:97:32:14:f8:24:75:4c:2e:bc:6e:91:8d:e8:ce:68:
c4:0d:9e:8c:6c:71:60:b5:eb:71:a2:c8:b4:9a:9e:70:33:ba:
92:3a:5e:95:e2:0a:61:9b:74:80:f5:36:2c:76:e2:c9:de:f8:
5d:63:4c:9e:44:a3:ab:bb:d8:29:44:30:00:da:f2:09:a4:06:
43:b0:fa:f4:5d:ca:de:d4:9c:5f:ad:fa:b4:a5:03:98:c1:e9:
ad:5d:ba:74:37:a8:94:6e:25:07:51:7d:86:3d:52:27:e9:4b:
4d:0a:2c:44:8d:6c:b5:94:3f:1e:c8:bb:c7:b4:b8:db:29:d2:
f0:b2:f2:08:14:d8:77:ac:51:51:e6:00:7e:80:19:f0:15:bc:
0f:87:5d:3b:f3:59:30:9e:ad:6e:ef:ab:99:1f:57:63:ed:b8:
3a:4e:66:c8:39:f5:fc:59:fc:ed:d7:00:7f:0f:94:32:0f:ab:
5b:88:73:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 13:30:57 2024 by rpki-client on console-ams.rpki-client.org