Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/TncL1YSTuGgkZkk-O1e5PW5RD8M.roa
File: TncL1YSTuGgkZkk-O1e5PW5RD8M.roa (raw, json)
Hash identifier: q/URDtVqzmWndEAtkcvu1nyd1z46cd7JQVw0elAz4WQ=
Subject key identifier: 4E:77:0B:D5:84:93:B8:68:24:66:49:3E:3B:57:B9:3D:6E:51:0F:C3
Certificate issuer: /CN=b262bf21de51385859416c4c608001e2025a5d25
Certificate serial: 018CC424D299AB8E0ABD1EECFC68BC9F72A0
Authority key identifier: B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/TncL1YSTuGgkZkk-O1e5PW5RD8M.roa
Signing time: Mon 01 Jan 2024 08:29:56 +0000
ROA not before: Mon 01 Jan 2024 08:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60036
IP address blocks: 185.19.148.0/23 maxlen: 23
185.19.148.0/24 maxlen: 24
185.19.149.0/24 maxlen: 24
195.177.252.0/24 maxlen: 24
195.177.252.0/23 maxlen: 23
195.177.253.0/24 maxlen: 24
91.232.181.0/24 maxlen: 24
185.61.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 08:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:d2:99:ab:8e:0a:bd:1e:ec:fc:68:bc:9f:72:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b262bf21de51385859416c4c608001e2025a5d25
Validity
Not Before: Jan 1 08:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e770bd58493b8682466493e3b57b93d6e510fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1f:47:2a:26:83:bb:57:23:54:44:95:99:0b:
1f:53:54:0b:6a:ab:d1:f5:58:71:5d:3b:ff:d8:27:
89:5b:e9:54:78:a1:a8:84:69:24:a8:1d:05:1c:91:
8e:dc:d3:7c:c2:73:c7:75:13:35:48:4e:a0:02:8a:
46:5a:41:b1:1d:d7:04:08:b8:9a:6a:65:75:ad:d9:
8f:bb:7f:9a:63:78:fe:08:73:27:16:81:be:26:f7:
b9:46:16:78:a3:1a:c5:e2:6c:5d:2c:f7:4a:43:34:
7d:6c:44:33:e6:f7:fb:35:0f:81:95:1b:f5:0f:12:
fc:41:0c:bc:1c:55:30:a1:1d:7b:8b:a6:f5:03:89:
28:e3:e3:9e:55:08:a3:ea:f1:aa:04:5f:6b:ca:59:
61:32:3d:99:de:72:2c:93:33:66:1a:20:32:89:58:
11:88:56:9c:ba:44:4d:ee:66:99:0a:65:6b:3d:16:
67:4e:b0:29:7c:a2:2d:28:03:34:22:f0:40:3e:22:
bc:8e:74:e1:94:86:7f:26:b1:d8:1f:50:b1:53:8e:
bb:9d:ad:a9:4a:1d:39:d6:31:35:1e:56:37:1a:fa:
19:25:c1:dd:3f:ca:6a:e2:87:bc:20:f0:12:e7:97:
4d:20:e1:e9:8a:17:b8:13:d5:2c:8a:d9:c5:f9:3b:
33:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:77:0B:D5:84:93:B8:68:24:66:49:3E:3B:57:B9:3D:6E:51:0F:C3
X509v3 Authority Key Identifier:
keyid:B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/TncL1YSTuGgkZkk-O1e5PW5RD8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.181.0/24
185.19.148.0/23
185.61.115.0/24
195.177.252.0/23
Signature Algorithm: sha256WithRSAEncryption
66:fd:d4:3d:9d:48:aa:a6:22:1c:c1:f8:ef:ed:0f:83:63:e4:
ad:4e:70:a3:2a:cd:9c:1e:58:e7:76:b1:73:18:a3:48:0f:ef:
b8:4c:24:b7:ee:0e:1d:cd:0a:d6:9b:52:3a:80:34:3b:3a:e2:
76:59:35:f5:06:12:21:6c:e6:67:4b:f8:9f:21:f9:9d:5d:cd:
af:f3:05:83:fa:d4:02:23:63:26:0f:fc:0a:07:3a:cc:96:f0:
b2:2a:06:fb:77:8c:3a:62:11:7e:b5:65:a2:41:6e:fd:0a:91:
a9:51:40:c1:d3:ff:eb:fd:07:8f:6e:58:a2:b4:85:e0:15:b4:
33:38:00:47:98:b6:e8:46:55:11:51:53:33:6f:f7:57:6d:ca:
6e:3a:3c:16:ae:9f:e1:62:2a:0f:b3:2a:57:80:19:0f:65:27:
01:88:fb:cb:3a:7e:11:42:50:09:a0:21:41:47:10:09:1c:b2:
bb:3f:1a:57:fc:3c:34:6a:52:3d:52:6b:52:26:64:a5:c6:4d:
82:e4:c2:ad:54:c7:13:54:1f:c5:3a:ea:fe:d5:a4:fd:fc:8b:
5e:22:47:2f:1c:61:89:c8:84:31:cd:bb:62:e8:42:34:51:11:
5b:01:00:df:13:f6:56:6c:1a:75:5a:db:79:45:4b:e5:74:5a:
35:74:5f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 16:42:34 2024 by rpki-client on console-fra.rpki-client.org