Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/TkOkmurtkcqJLYhrU7Aou10KSeA.roa
File: TkOkmurtkcqJLYhrU7Aou10KSeA.roa (raw, json)
Hash identifier: ourIAKcAXMk6R+tQfeBogZgpaZXAEfw+r1BnBPigRwM=
Subject key identifier: 4E:43:A4:9A:EA:ED:91:CA:89:2D:88:6B:53:B0:28:BB:5D:0A:49:E0
Certificate issuer: /CN=07734d8db5b6b71a82c901ebdf4e0cec4299e956
Certificate serial: 018D7EDD00B3ABE0B02DA2585CC7865F14D2
Authority key identifier: 07:73:4D:8D:B5:B6:B7:1A:82:C9:01:EB:DF:4E:0C:EC:42:99:E9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B3NNjbW2txqCyQHr304M7EKZ6VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/TkOkmurtkcqJLYhrU7Aou10KSeA.roa
Signing time: Tue 06 Feb 2024 14:40:29 +0000
ROA not before: Tue 06 Feb 2024 14:40:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48551
IP address blocks: 185.228.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/B3NNjbW2txqCyQHr304M7EKZ6VY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/B3NNjbW2txqCyQHr304M7EKZ6VY.mft
rsync://rpki.ripe.net/repository/DEFAULT/B3NNjbW2txqCyQHr304M7EKZ6VY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:dd:00:b3:ab:e0:b0:2d:a2:58:5c:c7:86:5f:14:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07734d8db5b6b71a82c901ebdf4e0cec4299e956
Validity
Not Before: Feb 6 14:40:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e43a49aeaed91ca892d886b53b028bb5d0a49e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:42:03:45:dc:ee:69:cf:d3:0e:a4:ee:42:39:
f4:03:63:1d:33:15:85:17:e8:f1:c9:b0:65:69:85:
93:2a:d1:8c:e7:31:44:72:ce:b1:a0:12:b9:d4:de:
f5:89:91:0f:22:af:ae:4d:cf:a1:fd:63:e2:01:d0:
95:be:d1:11:59:41:4a:34:ef:be:12:7c:56:25:3f:
db:58:94:af:ca:22:74:26:21:f0:64:ef:a1:d0:fc:
a1:b1:68:f3:0b:8e:bc:e6:dd:18:bf:d4:65:ef:f5:
85:b9:1e:ae:3a:3d:91:9e:a4:f9:f4:70:07:cf:f3:
ee:71:2e:ce:e0:db:89:d2:ec:b6:06:ef:ff:8c:58:
3a:47:cf:59:5b:17:5b:8d:6f:9d:8f:0d:6f:da:a5:
11:f6:28:fe:78:e5:46:5c:c5:60:9d:e2:fd:9e:1d:
6a:fb:2f:b5:79:95:f4:b8:4c:07:a2:e5:01:68:3b:
ca:85:fc:48:1c:6e:66:d6:d7:0f:9e:c3:20:f2:99:
44:d7:dd:69:03:72:21:2d:8a:cf:4d:cb:14:cc:96:
68:28:3c:51:af:62:4d:65:da:d7:d3:10:a4:d7:8c:
32:1c:e0:00:28:4a:76:19:5d:42:32:b6:19:f9:83:
3d:da:bb:66:73:89:a9:87:f3:a0:b9:3c:82:b5:34:
3d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:43:A4:9A:EA:ED:91:CA:89:2D:88:6B:53:B0:28:BB:5D:0A:49:E0
X509v3 Authority Key Identifier:
keyid:07:73:4D:8D:B5:B6:B7:1A:82:C9:01:EB:DF:4E:0C:EC:42:99:E9:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B3NNjbW2txqCyQHr304M7EKZ6VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/TkOkmurtkcqJLYhrU7Aou10KSeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/B3NNjbW2txqCyQHr304M7EKZ6VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.58.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ce:89:64:19:bc:14:fa:3a:90:5a:77:02:b6:25:40:05:e8:
69:b5:33:db:23:4a:e1:91:e3:d1:06:a2:cc:c8:09:46:11:17:
0f:74:d5:b3:8c:ec:bc:72:29:31:b7:67:f8:c5:0a:65:21:bb:
6c:9a:76:61:6b:a1:f9:6d:2a:d0:41:06:97:29:11:2c:97:8d:
ab:d5:0c:60:3c:37:96:a0:61:e2:e4:10:57:c6:c8:5b:3e:4a:
bc:0c:40:c0:5c:51:7d:ce:c9:58:d3:3b:7f:55:78:b0:dc:e4:
fa:a5:e6:3c:b5:ee:48:51:36:1e:cd:ed:b2:86:74:e7:8a:c9:
f0:66:57:39:24:8d:da:ef:13:8c:a7:8e:6f:59:e2:44:f4:0d:
ed:3e:fe:26:0a:cc:c5:cc:c4:6c:52:32:2f:30:77:33:6a:c1:
1c:49:62:b6:b9:3d:f7:86:e3:ce:db:58:b5:dc:71:53:16:de:
ae:c6:26:61:26:9a:cd:ed:af:0c:94:62:99:c1:00:78:00:09:
81:e9:e2:05:f1:a6:dd:b0:87:11:08:96:49:9c:44:93:58:f2:
cd:2a:f3:17:4b:c0:d8:99:bd:99:44:20:52:2b:c8:7a:50:21:
3e:b7:00:57:50:10:5a:08:36:ad:ac:65:c4:cd:36:71:4e:71:
d2:62:3d:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1+3QCzq+CwLaJYXMeGXxTSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3NzM0ZDhkYjViNmI3MWE4MmM5MDFlYmRmNGUwY2VjNDI5
OWU5NTYwHhcNMjQwMjA2MTQ0MDI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTQzYTQ5YWVhZWQ5MWNhODkyZDg4NmI1M2IwMjhiYjVkMGE0OWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUIDRdzuac/TDqTuQjn0A2MdMxWF
F+jxybBlaYWTKtGM5zFEcs6xoBK51N71iZEPIq+uTc+h/WPiAdCVvtERWUFKNO++
EnxWJT/bWJSvyiJ0JiHwZO+h0PyhsWjzC4685t0Yv9Rl7/WFuR6uOj2RnqT59HAH
z/PucS7O4NuJ0uy2Bu//jFg6R89ZWxdbjW+djw1v2qUR9ij+eOVGXMVgneL9nh1q
+y+1eZX0uEwHouUBaDvKhfxIHG5m1tcPnsMg8plE191pA3IhLYrPTcsUzJZoKDxR
r2JNZdrX0xCk14wyHOAAKEp2GV1CMrYZ+YM92rtmc4mph/OguTyCtTQ9AQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE5DpJrq7ZHKiS2Ia1OwKLtdCkngMB8GA1UdIwQY
MBaAFAdzTY21trcagskB699ODOxCmelWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjNOTmpiVzJ0eHFDeVFIcjMwNE03RUtaNlZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9iMDg0NWMtY2QxOC00MGY4LWExYzct
MDk1NjI5MTRjZjQwLzEvVGtPa211cnRrY3FKTFloclU3QW91MTBLU2VBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9iMDg0NWMtY2QxOC00MGY4LWExYzctMDk1NjI5MTRjZjQw
LzEvQjNOTmpiVzJ0eHFDeVFIcjMwNE03RUtaNlZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueQ6MA0G
CSqGSIb3DQEBCwUAA4IBAQBMzolkGbwU+jqQWncCtiVABehptTPbI0rhkePRBqLM
yAlGERcPdNWzjOy8cikxt2f4xQplIbtsmnZha6H5bSrQQQaXKREsl42r1QxgPDeW
oGHi5BBXxshbPkq8DEDAXFF9zslY0zt/VXiw3OT6peY8te5IUTYeze2yhnTnisnw
Zlc5JI3a7xOMp45vWeJE9A3tPv4mCszFzMRsUjIvMHczasEcSWK2uT33huPO21i1
3HFTFt6uxiZhJprN7a8MlGKZwQB4AAmB6eIF8abdsIcRCJZJnESTWPLNKvMXS8DY
mb2ZRCBSK8h6UCE+twBXUBBaCDatrGXEzTZxTnHSYj2o
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:54:30 2024 by rpki-client on console-ams.rpki-client.org