Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/TWE2GQbK5ZzsTrZP_-cvHhqi5o4.roa
File: TWE2GQbK5ZzsTrZP_-cvHhqi5o4.roa (raw, json)
Hash identifier: Ukt/h+lTDs0ybwVVqLmtBTv2gykUegHHPF+gzdqT32U=
Subject key identifier: 4D:61:36:19:06:CA:E5:9C:EC:4E:B6:4F:FF:E7:2F:1E:1A:A2:E6:8E
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 01942827FE1FDFD6FF4E64934DE2188D9EAC
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/TWE2GQbK5ZzsTrZP_-cvHhqi5o4.roa
Signing time: Thu 02 Jan 2025 17:54:57 +0000
ROA not before: Thu 02 Jan 2025 17:54:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200088
IP address blocks: 5.44.46.0/24 maxlen: 24
5.44.47.0/24 maxlen: 24
37.220.81.0/24 maxlen: 24
37.220.82.0/24 maxlen: 24
37.220.83.0/24 maxlen: 24
45.95.235.0/24 maxlen: 24
81.200.154.0/24 maxlen: 24
81.200.155.0/24 maxlen: 24
81.200.156.0/24 maxlen: 24
81.200.157.0/24 maxlen: 24
89.191.226.0/24 maxlen: 24
185.166.196.0/24 maxlen: 24
185.166.197.0/24 maxlen: 24
194.31.173.0/24 maxlen: 24
194.31.174.0/24 maxlen: 24
194.31.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:fe:1f:df:d6:ff:4e:64:93:4d:e2:18:8d:9e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 2 17:54:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d61361906cae59cec4eb64fffe72f1e1aa2e68e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:02:b6:94:cc:cc:df:86:ab:a5:f5:cf:32:b7:
55:d5:83:d7:96:af:aa:a9:41:4e:ac:a5:ff:f6:07:
6c:65:62:d9:01:25:43:38:15:66:55:14:f9:da:0b:
db:72:38:8a:7e:46:e8:4b:a6:d2:4b:1f:c6:9e:03:
93:d2:96:96:45:6c:45:9b:26:de:46:90:12:a7:1c:
11:e4:68:37:f1:b7:dc:fc:fa:c6:b8:74:88:86:a4:
02:77:17:1f:2d:14:43:59:2d:65:72:a6:cc:e8:8d:
e9:d0:10:be:24:d7:86:fd:12:09:3a:ca:da:f2:1f:
99:8c:32:2d:d4:1f:69:9c:a7:ca:a7:5b:9b:ec:cb:
46:d2:fd:d4:ad:06:cf:9a:29:39:c8:4c:e0:97:51:
50:75:82:02:1e:0b:af:0e:64:a1:a3:08:4f:52:b7:
7b:7e:4b:fb:70:a0:60:1a:9b:61:d1:48:ab:ce:8b:
e7:1a:9f:a5:30:1b:bf:b6:4b:b0:a3:3b:b1:5c:ff:
d1:a2:34:0c:3a:d8:18:60:84:5c:c7:44:12:44:1a:
bf:b0:86:42:84:bf:57:d1:8e:ea:c6:db:b2:aa:6d:
5e:59:7d:fa:08:72:4c:e2:99:cc:5a:07:f8:11:a5:
c2:a1:47:6a:79:e9:7f:cb:fa:07:fb:32:d9:67:6e:
27:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:61:36:19:06:CA:E5:9C:EC:4E:B6:4F:FF:E7:2F:1E:1A:A2:E6:8E
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/TWE2GQbK5ZzsTrZP_-cvHhqi5o4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.46.0/23
37.220.81.0-37.220.83.255
45.95.235.0/24
81.200.154.0-81.200.157.255
89.191.226.0/24
185.166.196.0/23
194.31.173.0-194.31.175.255
Signature Algorithm: sha256WithRSAEncryption
05:9d:ab:ab:55:06:6f:95:0e:02:80:40:8e:8d:5c:4f:5c:f8:
15:da:a1:b5:62:08:c2:1e:94:ad:92:7c:3a:a7:c0:98:59:8d:
20:7b:fc:34:e8:60:3e:3e:13:bc:c7:3c:da:38:b7:c2:2b:85:
b2:d3:91:8e:f1:41:99:7f:c2:3e:3c:70:91:be:ba:07:1c:72:
88:c4:97:19:38:d6:d4:09:22:55:dc:d8:c3:c9:eb:a2:47:d7:
59:3d:8a:83:3d:f5:6f:c8:84:fd:df:55:da:11:2c:a6:52:50:
2d:11:ab:58:5e:93:74:0e:9a:20:d3:fd:30:cb:9c:a9:e5:06:
39:ba:28:2a:5e:35:7f:d6:0b:88:bd:67:4b:13:4f:1c:7e:17:
a6:7c:01:c8:92:1a:b0:0a:1f:dc:99:5d:11:7e:c9:28:d2:af:
4a:10:26:0c:b1:bc:07:8f:9c:73:7e:b2:bb:da:37:36:05:72:
79:d4:c4:09:07:62:7d:27:43:3e:bd:60:b1:be:65:df:02:19:
ca:c7:a2:02:40:85:e9:55:19:3c:69:01:39:68:24:46:72:9f:
e3:6a:b0:38:60:06:a5:ea:90:d7:cd:15:a2:45:3e:ef:f3:93:
fa:41:1a:a9:db:ef:cd:20:a5:72:f0:98:7e:bf:72:44:59:21:
7d:4d:d4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:25:33 2025 by rpki-client