Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/TQwtrZcBJGFVyrzqqxywcDTXrvc.roa
File: TQwtrZcBJGFVyrzqqxywcDTXrvc.roa (raw, json)
Hash identifier: cN0E3PwxKdY7/qMpZ3N0IQmH+LYovR2/od6Knc2thnM=
Subject key identifier: 4D:0C:2D:AD:97:01:24:61:55:CA:BC:EA:AB:1C:B0:70:34:D7:AE:F7
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018CC56F01680E355B3A1CDC238304C26254
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/TQwtrZcBJGFVyrzqqxywcDTXrvc.roa
Signing time: Mon 01 Jan 2024 14:30:35 +0000
ROA not before: Mon 01 Jan 2024 14:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199614
IP address blocks: 188.240.83.0/24 maxlen: 24
89.37.128.0/24 maxlen: 24
176.223.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6f:01:68:0e:35:5b:3a:1c:dc:23:83:04:c2:62:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 1 14:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d0c2dad9701246155cabceaab1cb07034d7aef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cc:75:38:13:85:31:6a:04:df:5c:fa:61:77:
6f:49:40:ec:be:2a:3a:29:36:7c:1a:7b:ad:83:35:
61:c5:3d:4c:5b:50:9d:3a:94:df:99:3d:69:5d:2e:
d0:92:d7:d8:4e:ba:f9:bc:66:67:e0:ad:14:bd:b0:
ae:76:e6:eb:37:29:40:c3:97:b2:95:72:92:d8:3d:
6f:01:fb:7a:48:86:df:62:d1:ed:07:1d:1c:21:e5:
28:87:58:3e:01:c3:56:5c:e9:66:20:d7:83:44:c0:
e2:15:eb:06:a3:6b:a3:a3:51:d7:be:d9:db:27:ae:
62:7a:6a:6d:de:e2:3c:57:bf:38:b8:87:6c:fc:1c:
49:32:41:3b:df:62:0a:9c:1a:9c:2a:c3:05:40:06:
98:8d:50:fa:17:93:82:6a:a6:41:de:ec:bd:05:fe:
dc:f7:02:4a:e7:4c:19:1c:47:f6:bd:be:5f:a2:2c:
64:3f:43:fd:b1:b8:c0:a0:ef:34:85:e0:19:48:76:
9d:ef:ae:72:a0:fd:c6:67:7b:84:48:44:84:d2:63:
e6:d4:65:a6:c6:1d:70:0a:fe:14:9f:43:93:50:bf:
d4:94:95:62:a3:32:86:91:2f:74:e0:95:0a:6c:ea:
cd:16:23:83:e0:70:db:a1:f3:d5:5a:cb:d3:46:44:
fd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0C:2D:AD:97:01:24:61:55:CA:BC:EA:AB:1C:B0:70:34:D7:AE:F7
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/TQwtrZcBJGFVyrzqqxywcDTXrvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.128.0/24
176.223.190.0/24
188.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:52:6b:c9:3b:08:b3:31:0a:ca:6f:c0:cb:1b:f8:45:33:45:
ee:fa:fc:cd:eb:9a:10:c3:aa:3a:11:db:cb:ad:b7:74:20:5c:
ed:a7:be:88:46:c0:e2:4b:64:79:8c:0f:9c:cf:0f:ca:32:d8:
b7:c7:79:98:9d:52:ba:59:e1:81:d5:76:f2:16:f8:3b:7d:c9:
4d:e5:91:a3:c4:68:0c:c9:71:45:62:dd:98:d1:23:f7:d5:2d:
ee:69:cf:3d:3d:e0:1f:ff:1d:8d:e8:91:82:61:6f:ff:8c:12:
1a:be:a0:fa:e6:cf:56:d7:ba:33:f3:4f:f3:e5:9d:45:b3:95:
e9:4e:dc:86:03:64:9e:f9:25:e0:13:3a:8b:93:f7:82:eb:67:
41:69:75:c8:b8:1b:cd:fa:99:81:e3:aa:0e:9f:c8:b2:39:ab:
31:4a:7c:c6:4c:e0:3c:dd:3e:e7:12:b9:7b:75:f9:e8:a5:1b:
77:e9:6d:bb:57:0c:1a:7e:50:f9:16:94:a8:93:89:d4:d3:fb:
7d:a8:4f:b4:42:31:04:b4:4d:dc:e3:63:ad:bd:f8:f5:1b:7e:
64:c1:bd:21:d2:43:61:be:17:36:ba:76:2d:f4:68:39:5e:f5:
7c:bb:66:d8:67:df:89:ad:23:f9:5f:8e:2d:ff:f3:80:8a:00:
9f:c7:59:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 14:54:05 2024 by rpki-client on console-fra.rpki-client.org