Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/Y_QRZTDoALeI7BPATdEKdOxjKuA.roa
File: Y_QRZTDoALeI7BPATdEKdOxjKuA.roa (raw, json)
Hash identifier: 72TNBbukPaxyxMDzKKBOwtDeNChWuMSwa3opxn4rqWc=
Subject key identifier: 63:F4:11:65:30:E8:00:B7:88:EC:13:C0:4D:D1:0A:74:EC:63:2A:E0
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 018CC348BEA5CA94AA61179F46D1B2FC61F1
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/Y_QRZTDoALeI7BPATdEKdOxjKuA.roa
Signing time: Mon 01 Jan 2024 04:29:33 +0000
ROA not before: Mon 01 Jan 2024 04:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49788
IP address blocks: 91.223.100.0/24 maxlen: 24
151.252.8.0/21 maxlen: 24
91.90.104.0/21 maxlen: 21
193.202.115.0/24 maxlen: 24
91.225.60.0/22 maxlen: 22
91.189.120.0/21 maxlen: 21
93.184.112.0/21 maxlen: 21
91.221.130.0/23 maxlen: 23
45.153.104.0/22 maxlen: 22
91.209.212.0/24 maxlen: 24
185.7.192.0/22 maxlen: 22
91.193.0.0/22 maxlen: 24
176.111.206.0/23 maxlen: 23
185.55.104.0/22 maxlen: 22
185.80.180.0/22 maxlen: 24
79.141.96.0/20 maxlen: 20
91.218.184.0/22 maxlen: 22
2a04:d340::/29 maxlen: 29
2001:67c:206c::/48 maxlen: 48
2a02:d140::/29 maxlen: 29
2a0f:7900::/29 maxlen: 29
2a04:dc80::/29 maxlen: 29
2001:67c:230::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:be:a5:ca:94:aa:61:17:9f:46:d1:b2:fc:61:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: Jan 1 04:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63f4116530e800b788ec13c04dd10a74ec632ae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:94:3b:47:84:b0:0f:9b:1e:b0:37:72:a7:1e:
37:50:87:68:10:b6:9f:4b:d6:38:35:9e:b3:8b:aa:
08:31:ab:6d:eb:c4:84:a8:7e:3b:8b:cf:ed:b2:dc:
a1:e9:ca:02:df:3f:74:3f:07:1a:31:b8:5f:d9:ea:
14:73:59:20:d9:e9:30:7c:dc:9c:73:04:a6:60:63:
06:c9:3e:49:84:f2:5e:72:55:b5:5b:91:ed:9c:94:
09:77:ad:3b:a3:9f:16:8f:89:46:3b:25:6d:dd:14:
51:bd:7b:d7:dc:72:01:2c:aa:3a:4d:10:7b:95:8d:
fd:2f:e3:99:4b:8e:17:02:d4:df:f0:ed:92:99:c2:
e2:9e:43:58:5f:85:d6:1e:77:df:19:12:89:dd:56:
44:e0:c7:1b:c0:49:4f:33:df:3d:99:4b:f8:7b:33:
ea:ad:ac:8a:25:9e:e7:38:25:bc:61:b2:b0:43:48:
b2:57:19:63:3d:4e:98:c3:df:b0:b5:62:19:4e:28:
ec:81:ae:90:06:bc:c0:b2:6d:63:ae:73:35:76:0d:
7e:3d:48:56:90:0f:e9:57:a2:aa:4e:60:34:c1:8a:
29:97:f4:96:3c:fa:5e:8c:d4:ad:3b:d8:09:79:ba:
fa:ed:0c:6f:34:84:97:e7:b4:0b:17:8b:3b:57:42:
8e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F4:11:65:30:E8:00:B7:88:EC:13:C0:4D:D1:0A:74:EC:63:2A:E0
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/Y_QRZTDoALeI7BPATdEKdOxjKuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.104.0/22
79.141.96.0/20
91.90.104.0/21
91.189.120.0/21
91.193.0.0/22
91.209.212.0/24
91.218.184.0/22
91.221.130.0/23
91.223.100.0/24
91.225.60.0/22
93.184.112.0/21
151.252.8.0/21
176.111.206.0/23
185.7.192.0/22
185.55.104.0/22
185.80.180.0/22
193.202.115.0/24
IPv6:
2001:67c:230::/48
2001:67c:206c::/48
2a02:d140::/29
2a04:d340::/29
2a04:dc80::/29
2a0f:7900::/29
Signature Algorithm: sha256WithRSAEncryption
09:ee:2e:8c:14:19:7d:b4:17:9a:13:f7:95:4d:2b:b9:1f:8c:
29:80:14:a4:52:60:96:da:e8:b2:3f:1e:7d:6c:bf:62:ae:67:
8f:3b:44:e3:97:08:32:59:70:e9:fa:35:c5:5e:71:fe:4a:9c:
e9:1c:26:bb:1d:32:7e:f2:e0:28:8c:72:94:8f:21:a6:10:bf:
b1:8c:96:c3:34:1d:6a:ee:ef:8e:3a:3d:25:0d:cd:fe:5d:db:
21:11:51:34:db:9e:cb:22:86:70:f6:eb:e4:32:96:a4:4f:6b:
9f:a3:74:43:d1:cc:69:4d:e0:2c:8b:99:52:75:28:07:27:7c:
37:48:16:11:aa:06:ab:3d:8a:80:47:ce:fc:ea:f7:da:84:7f:
81:59:cb:c3:f2:13:12:ce:77:4f:8c:fe:b3:a3:09:0b:30:94:
bb:62:ec:e8:1e:65:42:ee:81:d5:75:5f:fa:18:11:7a:16:f6:
99:3b:e8:c0:98:ce:be:fd:ed:fd:e3:48:11:55:ef:59:b8:59:
bf:ea:b9:01:9a:3b:28:e0:c0:bc:31:7f:4d:07:73:6d:de:04:
29:8c:1f:94:ba:17:62:77:75:88:67:6b:83:4b:3a:cc:d2:eb:
42:db:65:d6:07:22:d2:76:55:ca:44:10:5f:96:f2:0a:08:de:
9d:2e:70:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:28:17 2024 by rpki-client on console-ams.rpki-client.org