Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/JP6EEoI7enQwkUcxqAZ6IdSadOg.roa
File: JP6EEoI7enQwkUcxqAZ6IdSadOg.roa (raw, json)
Hash identifier: 5p7linsTTuAdtLcD1+6FbRk9FNRXbDGx/EYCgT+K52Q=
Subject key identifier: 24:FE:84:12:82:3B:7A:74:30:91:47:31:A8:06:7A:21:D4:9A:74:E8
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018EE12ADEF0DCD87274BF3EB8DBFD18A042
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/JP6EEoI7enQwkUcxqAZ6IdSadOg.roa
Signing time: Mon 15 Apr 2024 09:51:06 +0000
ROA not before: Mon 15 Apr 2024 09:51:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 45.141.204.0/23 maxlen: 23
45.148.51.0/24 maxlen: 24
45.149.90.0/23 maxlen: 23
45.152.56.0/23 maxlen: 23
195.88.191.0/24 maxlen: 24
195.88.210.0/23 maxlen: 24
2a0f:3b80::/32 maxlen: 32
2a0f:3b81::/32 maxlen: 32
2a0f:3b82::/32 maxlen: 32
2a0f:3b83::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft
rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:2a:de:f0:dc:d8:72:74:bf:3e:b8:db:fd:18:a0:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Apr 15 09:51:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24fe8412823b7a7430914731a8067a21d49a74e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5f:55:35:eb:0e:ef:82:a9:e6:02:41:12:4d:
79:cf:65:09:5b:09:7b:e0:c9:1a:3a:78:a4:2d:27:
ed:17:20:3e:20:d3:7e:7d:f7:40:bb:07:de:3a:6b:
34:7e:8c:46:d6:db:f2:64:95:2a:87:dd:1d:c2:ff:
01:0f:30:e0:33:32:a2:3a:a2:9e:9b:5b:46:5b:f3:
b3:72:16:d2:c4:33:b6:c0:f4:bf:3a:f2:0b:b2:aa:
3a:77:d2:7c:5f:3b:5a:c2:0b:e3:23:8e:4c:0c:10:
b2:b3:63:d3:cf:1b:73:5b:ff:5f:4b:5f:ff:63:66:
76:d5:38:db:c6:ae:03:55:15:9b:b2:ac:4a:0c:1a:
0a:47:ab:c2:52:7f:ec:c9:fe:5d:91:c6:f1:2e:b7:
02:47:76:c6:67:4e:55:71:c7:65:84:c6:23:11:c6:
33:13:41:c9:cc:1b:42:9c:f9:8e:b3:30:cc:4a:15:
c4:7b:09:3e:d2:9b:25:ce:2f:eb:d6:01:5f:1d:02:
c3:5d:db:97:0e:fc:c5:e6:22:9b:66:1f:2c:c4:64:
0d:73:7e:2b:9f:ba:19:ca:c9:be:ad:8d:57:22:ef:
aa:18:0d:6f:a0:c9:51:5c:97:69:fc:b7:d3:4b:2e:
9c:61:f5:72:ae:91:d4:4c:26:b9:52:2f:5f:7f:6f:
70:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FE:84:12:82:3B:7A:74:30:91:47:31:A8:06:7A:21:D4:9A:74:E8
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/JP6EEoI7enQwkUcxqAZ6IdSadOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.204.0/23
45.148.51.0/24
45.149.90.0/23
45.152.56.0/23
195.88.191.0/24
195.88.210.0/23
IPv6:
2a0f:3b80::/30
Signature Algorithm: sha256WithRSAEncryption
bb:2a:41:42:ba:78:96:25:1e:77:91:08:d5:b3:4d:9a:f2:dc:
b1:ac:9d:f6:b8:c9:6a:c8:71:e9:86:66:0e:68:eb:93:5d:43:
2e:45:19:55:3d:1e:02:4c:7b:73:97:89:30:d0:46:19:ca:6a:
3e:cd:cf:6a:02:84:73:6a:d7:b1:d6:60:cd:59:ac:5b:d7:cd:
f7:3a:b4:1c:05:3f:9c:99:33:cf:b8:6c:0e:5e:3a:70:6a:27:
ea:42:6e:62:db:fb:59:00:76:b6:05:38:03:3b:a8:37:68:c3:
90:52:db:71:05:a5:62:80:09:c8:cd:18:8b:1d:cb:7d:69:1a:
95:b7:c3:34:6c:46:44:ba:2b:e8:97:9b:9d:76:1c:59:1f:9d:
1f:87:8e:53:0a:34:68:9d:c4:12:42:70:cf:a5:4e:1b:69:b7:
25:a5:06:9a:d9:e6:6c:b7:2e:ac:a0:1d:fb:e4:dd:fd:f8:11:
f3:5f:1a:16:4a:b3:19:7d:87:4e:49:8f:7e:4c:72:1d:f9:d2:
d3:16:fd:18:35:9b:a7:aa:19:5d:77:2a:41:10:64:e9:84:c3:
0b:df:3a:db:82:15:8b:1c:c8:44:72:11:49:90:90:56:1e:84:
7a:96:05:8b:9c:4c:c4:07:52:c4:d3:c4:29:df:76:e9:bd:b7:
d5:20:b0:0f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAY7hKt7w3NhydL8+uNv9GKBCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjQwNDE1MDk1MTA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGZlODQxMjgyM2I3YTc0MzA5MTQ3MzFhODA2N2EyMWQ0OWE3NGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml9VNesO74Kp5gJBEk15z2UJWwl7
4MkaOnikLSftFyA+INN+ffdAuwfeOms0foxG1tvyZJUqh90dwv8BDzDgMzKiOqKe
m1tGW/OzchbSxDO2wPS/OvILsqo6d9J8XztawgvjI45MDBCys2PTzxtzW/9fS1//
Y2Z21Tjbxq4DVRWbsqxKDBoKR6vCUn/syf5dkcbxLrcCR3bGZ05VccdlhMYjEcYz
E0HJzBtCnPmOszDMShXEewk+0pslzi/r1gFfHQLDXduXDvzF5iKbZh8sxGQNc34r
n7oZysm+rY1XIu+qGA1voMlRXJdp/LfTSy6cYfVyrpHUTCa5Ui9ff29wdQIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFCT+hBKCO3p0MJFHMagGeiHUmnToMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvSlA2RUVvSTdlblF3a1VjeHFBWjZJZFNhZE9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQBLY3MAwQA
LZQzAwQBLZVaAwQBLZg4AwQAw1i/AwQBw1jSMA0EAgACMAcDBQIqDzuAMA0GCSqG
SIb3DQEBCwUAA4IBAQC7KkFCuniWJR53kQjVs02a8tyxrJ32uMlqyHHphmYOaOuT
XUMuRRlVPR4CTHtzl4kw0EYZymo+zc9qAoRzatex1mDNWaxb1833OrQcBT+cmTPP
uGwOXjpwaifqQm5i2/tZAHa2BTgDO6g3aMOQUttxBaVigAnIzRiLHct9aRqVt8M0
bEZEuivol5uddhxZH50fh45TCjRoncQSQnDPpU4babclpQaa2eZsty6soB375N39
+BHzXxoWSrMZfYdOSY9+THId+dLTFv0YNZunqhlddypBEGTphMML3zrbghWLHMhE
chFJkJBWHoR6lgWLnEzEB1LE08Qp33bpvbfVILAP
-----END CERTIFICATE-----
Generated at Thu May 2 20:25:12 2024 by rpki-client on console-ams.rpki-client.org