Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/TS3rILBfBr9u4RAj0aRR2oJ4gMg.roa
File: TS3rILBfBr9u4RAj0aRR2oJ4gMg.roa (raw, json)
Hash identifier: AeZnQ78Q+n14+W2M9vta2o5cZDaZSGeOQp+cWQ2MUGA=
Subject key identifier: 4D:2D:EB:20:B0:5F:06:BF:6E:E1:10:23:D1:A4:51:DA:82:78:80:C8
Certificate issuer: /CN=054d4fe780fe45330780deb6ec384cb9493f2df2
Certificate serial: 018CC2DAC974DFB5F3B9770321A2CB605798
Authority key identifier: 05:4D:4F:E7:80:FE:45:33:07:80:DE:B6:EC:38:4C:B9:49:3F:2D:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BU1P54D-RTMHgN627DhMuUk_LfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/TS3rILBfBr9u4RAj0aRR2oJ4gMg.roa
Signing time: Mon 01 Jan 2024 02:29:27 +0000
ROA not before: Mon 01 Jan 2024 02:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216172
IP address blocks: 185.30.108.0/24 maxlen: 24
185.30.111.0/24 maxlen: 24
185.30.109.0/24 maxlen: 24
185.30.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/BU1P54D-RTMHgN627DhMuUk_LfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/BU1P54D-RTMHgN627DhMuUk_LfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BU1P54D-RTMHgN627DhMuUk_LfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 18:17:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c9:74:df:b5:f3:b9:77:03:21:a2:cb:60:57:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=054d4fe780fe45330780deb6ec384cb9493f2df2
Validity
Not Before: Jan 1 02:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d2deb20b05f06bf6ee11023d1a451da827880c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ba:91:e9:20:f5:c3:28:69:ee:5b:6e:98:12:
a8:71:07:97:6d:b9:d0:97:14:e6:21:59:5a:db:74:
ee:1e:89:3b:85:0e:53:93:64:19:36:6d:da:5f:8f:
7a:53:ea:9d:85:38:46:cf:38:61:00:03:0b:d8:17:
56:3c:df:b8:42:07:74:0e:9d:fa:a0:f2:3b:ed:9a:
13:f9:cb:f2:18:8f:c3:69:59:43:ed:b7:7e:cf:19:
b8:76:bc:17:8d:58:da:39:ff:89:3f:ae:cd:25:64:
44:52:01:88:ce:83:c8:5b:82:97:27:7e:3c:89:54:
6c:60:c9:a5:df:5d:a2:46:ba:ef:6f:04:0d:78:79:
1f:e7:6d:ed:20:6d:de:7f:4b:1e:b0:67:17:c0:1d:
a0:78:01:b9:c7:2b:90:d8:74:c3:e0:e8:3b:da:e1:
a2:8e:7e:11:26:7d:51:43:ee:07:f4:51:7a:0a:1f:
49:5a:f1:93:9c:3d:ff:9d:12:ac:0c:f0:4e:43:09:
6a:1d:c5:17:b9:77:87:e1:e9:54:90:dc:4c:77:a0:
ce:71:7d:40:be:2d:75:02:29:7d:9f:70:49:de:f0:
96:98:64:09:84:34:4c:a5:39:39:eb:26:3d:db:5d:
51:0c:42:be:17:c6:85:2c:61:94:1c:53:4e:26:f4:
0b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2D:EB:20:B0:5F:06:BF:6E:E1:10:23:D1:A4:51:DA:82:78:80:C8
X509v3 Authority Key Identifier:
keyid:05:4D:4F:E7:80:FE:45:33:07:80:DE:B6:EC:38:4C:B9:49:3F:2D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BU1P54D-RTMHgN627DhMuUk_LfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/TS3rILBfBr9u4RAj0aRR2oJ4gMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/BU1P54D-RTMHgN627DhMuUk_LfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.108.0/22
Signature Algorithm: sha256WithRSAEncryption
05:b3:0d:f3:b9:57:32:98:9a:28:8c:dc:48:c8:f8:05:2f:a4:
4f:bd:77:9b:55:6c:4b:e4:2d:2b:56:e4:e2:c5:19:cc:a0:ea:
25:1d:1d:31:85:d1:5c:b1:62:4c:24:3c:85:54:54:9f:07:33:
8a:91:3a:fc:e2:a9:29:e5:78:1e:f6:a5:e5:40:13:47:c3:04:
4e:1d:25:07:66:cf:c1:6a:65:0e:94:51:66:43:08:28:67:52:
23:27:cc:35:79:ec:fd:a4:33:38:b9:7d:c6:08:3c:d3:02:9b:
28:8e:51:e6:cc:fd:d0:60:0d:36:44:d6:f4:09:39:f0:9c:d3:
4e:6e:55:8c:02:1f:a9:ab:60:37:cb:7b:ad:a7:77:f2:17:f3:
26:6a:e6:38:2e:37:05:dc:8f:d6:d3:59:6b:52:a9:e7:39:a0:
0c:37:21:f5:f6:75:0a:ed:e2:cc:17:07:ce:4c:80:52:47:dc:
79:e4:91:f1:9a:55:ea:3c:72:03:c5:80:a9:45:d3:22:11:19:
7e:62:35:ab:ca:3e:fa:41:51:e6:d8:90:18:2b:4b:c5:f6:8c:
dd:6d:f3:75:a0:d1:13:81:4f:89:04:98:41:30:82:6b:4b:33:
b3:c4:5b:ec:86:b9:dd:5e:4c:ef:a4:c2:3c:2f:d1:15:b1:e5:
d5:67:db:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 00:22:52 2024 by rpki-client on console-ams.rpki-client.org