Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/TscTr_3tzGmnhc7BkIzIz_86CEA.roa
File: TscTr_3tzGmnhc7BkIzIz_86CEA.roa (raw, json)
Hash identifier: 7h6hjN9fTKcBnz7x147ccMuAzjnN6R8qpLs/xo6wLB4=
Subject key identifier: 4E:C7:13:AF:FD:ED:CC:69:A7:85:CE:C1:90:8C:C8:CF:FF:3A:08:40
Certificate issuer: /CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Certificate serial: 018CC9BC0B5762E411F9AE08E9F5C344024F
Authority key identifier: 3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/TscTr_3tzGmnhc7BkIzIz_86CEA.roa
Signing time: Tue 02 Jan 2024 10:33:13 +0000
ROA not before: Tue 02 Jan 2024 10:33:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48503
IP address blocks: 89.208.123.0/24 maxlen: 24
185.234.26.0/23 maxlen: 23
185.234.60.0/23 maxlen: 23
185.234.60.0/22 maxlen: 22
185.234.62.0/23 maxlen: 23
79.133.184.0/22 maxlen: 22
79.133.188.0/22 maxlen: 22
91.234.208.0/24 maxlen: 24
91.234.209.0/24 maxlen: 24
85.193.120.0/21 maxlen: 21
185.234.24.0/23 maxlen: 23
185.234.24.0/22 maxlen: 22
85.193.96.0/21 maxlen: 21
85.193.104.0/21 maxlen: 21
85.193.112.0/21 maxlen: 21
188.124.232.0/22 maxlen: 22
188.124.236.0/22 maxlen: 22
188.124.244.0/23 maxlen: 23
188.124.246.0/23 maxlen: 23
176.64.0.0/21 maxlen: 21
176.64.8.0/21 maxlen: 21
176.64.16.0/21 maxlen: 21
176.64.24.0/21 maxlen: 21
176.64.32.0/24 maxlen: 24
176.64.34.0/24 maxlen: 24
176.64.33.0/24 maxlen: 24
176.64.35.0/24 maxlen: 24
185.212.246.0/24 maxlen: 24
185.212.245.0/24 maxlen: 24
185.212.244.0/24 maxlen: 24
81.91.180.0/22 maxlen: 22
185.212.247.0/24 maxlen: 24
81.91.184.0/22 maxlen: 22
185.44.84.0/23 maxlen: 23
185.44.86.0/23 maxlen: 23
93.157.176.0/23 maxlen: 23
81.211.150.0/24 maxlen: 24
93.157.178.0/23 maxlen: 23
93.157.181.0/24 maxlen: 24
93.157.180.0/24 maxlen: 24
93.157.183.0/24 maxlen: 24
93.157.182.0/24 maxlen: 24
81.211.172.0/24 maxlen: 24
81.211.196.0/24 maxlen: 24
81.211.195.0/24 maxlen: 24
79.137.171.0/24 maxlen: 24
81.211.198.0/24 maxlen: 24
79.137.170.0/24 maxlen: 24
81.211.197.0/24 maxlen: 24
81.211.199.0/24 maxlen: 24
81.211.194.0/24 maxlen: 24
81.211.193.0/24 maxlen: 24
81.211.130.0/24 maxlen: 24
81.211.133.0/24 maxlen: 24
31.10.3.0/24 maxlen: 24
81.211.201.0/24 maxlen: 24
81.211.203.0/24 maxlen: 24
79.137.176.0/23 maxlen: 23
81.211.202.0/24 maxlen: 24
81.211.204.0/24 maxlen: 24
81.211.206.0/24 maxlen: 24
79.137.178.0/23 maxlen: 23
81.211.208.0/24 maxlen: 24
81.211.207.0/24 maxlen: 24
217.171.144.0/24 maxlen: 24
81.211.251.0/24 maxlen: 24
81.211.253.0/24 maxlen: 24
81.211.250.0/24 maxlen: 24
212.96.64.0/24 maxlen: 24
212.96.67.0/24 maxlen: 24
212.96.66.0/24 maxlen: 24
212.96.68.0/24 maxlen: 24
212.96.70.0/23 maxlen: 23
212.96.69.0/24 maxlen: 24
212.96.65.0/24 maxlen: 24
212.96.72.0/23 maxlen: 23
212.96.74.0/23 maxlen: 23
212.96.77.0/24 maxlen: 24
212.96.76.0/24 maxlen: 24
212.96.78.0/24 maxlen: 24
212.96.80.0/23 maxlen: 23
212.96.82.0/24 maxlen: 24
212.96.84.0/24 maxlen: 24
212.96.83.0/24 maxlen: 24
212.96.85.0/24 maxlen: 24
212.96.79.0/24 maxlen: 24
212.96.86.0/23 maxlen: 23
212.96.88.0/24 maxlen: 24
212.96.91.0/24 maxlen: 24
212.96.90.0/24 maxlen: 24
212.96.95.0/24 maxlen: 24
212.96.94.0/24 maxlen: 24
212.96.93.0/24 maxlen: 24
212.96.92.0/24 maxlen: 24
95.163.145.0/24 maxlen: 24
91.103.104.0/24 maxlen: 24
91.103.105.0/24 maxlen: 24
193.41.131.0/24 maxlen: 24
193.41.130.0/24 maxlen: 24
89.223.112.0/22 maxlen: 22
89.223.116.0/22 maxlen: 22
62.122.104.0/23 maxlen: 23
62.122.106.0/23 maxlen: 23
62.122.108.0/24 maxlen: 24
62.122.109.0/24 maxlen: 24
185.250.30.0/23 maxlen: 23
185.250.28.0/23 maxlen: 23
194.0.244.0/24 maxlen: 24
194.0.245.0/24 maxlen: 24
185.223.188.0/22 maxlen: 22
185.229.84.0/22 maxlen: 22
62.122.4.0/22 maxlen: 22
62.122.0.0/22 maxlen: 22
194.0.188.0/24 maxlen: 24
194.0.189.0/24 maxlen: 24
185.229.121.0/24 maxlen: 24
185.229.120.0/24 maxlen: 24
195.189.49.0/24 maxlen: 24
195.189.48.0/23 maxlen: 23
195.189.48.0/24 maxlen: 24
195.189.51.0/24 maxlen: 24
195.189.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:0b:57:62:e4:11:f9:ae:08:e9:f5:c3:44:02:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Validity
Not Before: Jan 2 10:33:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ec713affdedcc69a785cec1908cc8cfff3a0840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:53:3b:ed:2d:3b:7a:99:be:d0:c5:33:f6:e7:
30:f0:e4:ce:3a:69:0b:70:64:65:dd:1c:cd:24:cb:
26:9d:45:0b:83:17:4f:98:1f:2d:f7:17:43:73:8a:
89:6d:8a:33:b0:65:18:cf:d4:4e:4d:cd:c2:87:9a:
18:35:7e:1a:3b:56:c1:c5:e2:05:90:a1:87:32:f3:
75:5c:cc:30:5a:ab:90:57:fe:55:73:d3:73:8b:82:
a5:46:b2:27:c6:1a:89:ee:ec:ca:55:b4:06:9b:a1:
fc:12:50:4e:74:99:fb:47:1b:94:ce:bb:25:43:9d:
db:ec:76:b8:a2:33:c3:44:ee:2b:ec:c1:18:da:78:
16:a5:b5:7d:93:73:b6:94:55:0a:5f:e2:a0:b5:c4:
d2:54:5f:4f:df:ab:4c:91:13:81:26:5d:47:48:c2:
dd:91:dd:06:1e:2d:26:de:bc:f5:c0:c6:14:3f:f5:
fd:e3:87:ae:14:1f:92:5c:ca:52:5f:af:85:99:94:
3a:19:78:3c:45:3a:cf:3a:99:06:48:a0:eb:b9:6d:
5f:73:f7:3a:ef:8e:d2:09:24:bb:a8:18:83:f5:7a:
d4:ae:e0:1f:3e:39:e9:cb:0d:85:75:4e:ef:db:ea:
a7:c6:72:fb:94:a3:67:5a:a3:8e:5b:6e:f0:a7:ba:
73:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C7:13:AF:FD:ED:CC:69:A7:85:CE:C1:90:8C:C8:CF:FF:3A:08:40
X509v3 Authority Key Identifier:
keyid:3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/TscTr_3tzGmnhc7BkIzIz_86CEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.3.0/24
62.122.0.0/21
62.122.104.0-62.122.109.255
79.133.184.0/21
79.137.170.0/23
79.137.176.0/22
81.91.180.0-81.91.187.255
81.211.130.0/24
81.211.133.0/24
81.211.150.0/24
81.211.172.0/24
81.211.193.0-81.211.199.255
81.211.201.0-81.211.204.255
81.211.206.0-81.211.208.255
81.211.250.0/23
81.211.253.0/24
85.193.96.0/19
89.208.123.0/24
89.223.112.0/21
91.103.104.0/23
91.234.208.0/23
93.157.176.0/21
95.163.145.0/24
176.64.0.0-176.64.35.255
185.44.84.0/22
185.212.244.0/22
185.223.188.0/22
185.229.84.0/22
185.229.120.0/23
185.234.24.0/22
185.234.60.0/22
185.250.28.0/22
188.124.232.0/21
188.124.244.0/22
193.41.130.0/23
194.0.188.0/23
194.0.244.0/23
195.189.48.0/22
212.96.64.0-212.96.88.255
212.96.90.0-212.96.95.255
217.171.144.0/24
Signature Algorithm: sha256WithRSAEncryption
60:4c:57:dd:2b:28:75:dd:80:35:f2:b6:4e:5c:66:49:81:d9:
49:84:68:9f:0b:fc:21:0e:ba:cb:bd:e3:65:31:e5:2c:2f:95:
5d:e9:dd:12:d0:af:40:73:39:d8:31:5f:1b:fa:8d:a5:d8:15:
b7:92:7a:5b:16:58:6d:13:40:6d:9d:fc:f7:43:fe:31:7b:d3:
91:ca:43:1a:3f:2c:65:7a:e1:bc:71:a0:8c:2e:f8:ad:cf:c2:
2d:12:8c:be:dd:5a:7c:98:b2:dd:83:22:c3:36:58:0b:fc:b3:
05:69:02:79:3a:c8:d4:3d:03:42:9f:e5:51:80:61:76:52:b2:
a9:49:22:2b:89:00:da:63:70:2a:84:30:ab:82:ea:b7:f4:4a:
eb:af:5c:47:35:07:a0:b2:c7:ff:69:67:0b:94:bd:9b:1c:24:
a6:c0:7a:21:08:8f:66:f3:a0:bd:f2:90:b7:19:0d:8d:80:52:
95:1e:1e:41:90:ab:a5:ce:f7:eb:8d:d0:72:79:57:c9:f3:09:
e4:f4:54:02:c3:87:eb:26:a7:9f:6b:58:57:92:ce:d7:79:ac:
7e:bd:1d:51:90:c9:c3:e2:0a:9a:15:c1:26:ed:62:f2:8e:f9:
3c:10:75:ce:d8:6d:bf:b6:e3:df:c1:44:ef:1e:e8:88:e1:bb:
ac:b5:49:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:14:17 2024 by rpki-client on console-fra.rpki-client.org