Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/R4vSNmtjm_kiwp4iqkHaHH0O2MU.roa
File: R4vSNmtjm_kiwp4iqkHaHH0O2MU.roa (raw, json)
Hash identifier: +Iwp2oeyGoP53uPRN3YZEWzn5NRwuFVA64oMKNfQCaM=
Subject key identifier: 47:8B:D2:36:6B:63:9B:F9:22:C2:9E:22:AA:41:DA:1C:7D:0E:D8:C5
Certificate issuer: /CN=f60846f21c56a8513d31c155dd199197a3ffc7c0
Certificate serial: 018FE94D4A73F258ABC541528E75509ECF9F
Authority key identifier: F6:08:46:F2:1C:56:A8:51:3D:31:C1:55:DD:19:91:97:A3:FF:C7:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9ghG8hxWqFE9McFV3RmRl6P_x8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/R4vSNmtjm_kiwp4iqkHaHH0O2MU.roa
Signing time: Wed 05 Jun 2024 16:48:27 +0000
ROA not before: Wed 05 Jun 2024 16:48:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30893
IP address blocks: 31.22.94.0/24 maxlen: 24
185.231.100.0/22 maxlen: 24
195.47.238.0/24 maxlen: 24
2a0c:5700::/29 maxlen: 48
2a0c:5700:3133::/48 maxlen: 48
2a0c:5700:5353::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/9ghG8hxWqFE9McFV3RmRl6P_x8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/9ghG8hxWqFE9McFV3RmRl6P_x8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/9ghG8hxWqFE9McFV3RmRl6P_x8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 14:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e9:4d:4a:73:f2:58:ab:c5:41:52:8e:75:50:9e:cf:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f60846f21c56a8513d31c155dd199197a3ffc7c0
Validity
Not Before: Jun 5 16:48:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=478bd2366b639bf922c29e22aa41da1c7d0ed8c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:45:2b:a0:2a:9f:ec:37:a7:e5:f9:57:8c:2e:
c3:7c:bf:01:28:e3:87:d3:03:49:a4:23:c9:c2:83:
24:fa:35:ae:1b:3d:dd:55:1e:e1:d5:9f:b8:18:1a:
11:0f:0e:8c:a7:f0:ea:b0:f1:2f:7d:2b:0a:f7:9c:
97:f1:9e:63:b9:69:c7:1f:17:c8:f9:1c:f9:11:75:
c4:d0:d0:82:c9:9c:a4:14:d6:6c:a1:a7:d8:f1:67:
c7:dc:aa:7d:e9:b7:fb:60:ef:04:0f:ee:67:cc:5f:
7e:68:d4:8e:57:b2:9a:b3:94:86:d2:1d:20:dd:24:
9d:52:8a:19:0b:8a:03:58:37:30:de:93:d8:c7:2f:
c8:a0:03:dc:c6:26:89:c9:db:57:c7:9d:3f:02:27:
09:53:8f:6a:3f:ea:f5:1a:2c:b1:a4:36:32:43:63:
47:c7:78:12:f7:e1:a6:f3:b2:d0:99:2e:75:74:19:
bb:71:13:c5:36:20:90:0d:55:04:2a:6d:8f:b1:ab:
5f:f7:ac:35:e5:06:f5:cb:e4:0b:a6:4a:fd:da:72:
69:fd:ca:c8:f6:0b:76:22:fe:39:a2:c7:fb:ba:cd:
5b:4d:0b:85:42:62:fe:c1:10:4f:63:93:66:ca:88:
0e:52:d5:e7:47:39:5d:75:c0:ca:e0:ae:03:ff:72:
ef:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:8B:D2:36:6B:63:9B:F9:22:C2:9E:22:AA:41:DA:1C:7D:0E:D8:C5
X509v3 Authority Key Identifier:
keyid:F6:08:46:F2:1C:56:A8:51:3D:31:C1:55:DD:19:91:97:A3:FF:C7:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9ghG8hxWqFE9McFV3RmRl6P_x8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/R4vSNmtjm_kiwp4iqkHaHH0O2MU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/9ghG8hxWqFE9McFV3RmRl6P_x8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.22.94.0/24
185.231.100.0/22
195.47.238.0/24
IPv6:
2a0c:5700::/29
Signature Algorithm: sha256WithRSAEncryption
8e:a1:05:51:47:c4:29:75:78:06:65:58:36:17:0b:bc:f6:7e:
cc:96:88:fd:2f:22:d1:a8:40:f6:44:f7:6d:12:ce:cd:5b:92:
e3:f1:6b:ae:a5:9b:9f:d1:b8:1b:35:b3:1f:41:d9:fa:ed:6a:
f1:4a:f4:8b:1f:3d:c6:33:f3:71:50:96:74:23:6c:b3:3e:36:
16:af:55:20:ce:4f:f0:42:9a:fc:ce:c2:d2:76:eb:2f:0a:ca:
0f:bc:b6:e8:3b:7c:34:de:7a:c5:9c:02:d3:70:0f:89:9b:44:
19:9e:02:b5:b5:b5:20:db:55:a6:a4:8a:ca:60:bb:fd:ec:e7:
c5:76:33:01:47:a3:26:97:e3:9c:97:7a:33:8f:d0:c6:5c:cf:
e3:97:50:66:bf:86:89:4a:ac:16:af:e9:9e:d2:8b:a6:e9:ea:
4f:4c:cb:2d:50:53:de:b9:13:a2:05:da:53:ca:3a:65:cb:fc:
db:80:72:cf:cc:3d:ee:52:8e:84:a6:9a:48:e2:f3:83:b1:d4:
7e:45:de:6b:a9:23:87:84:52:68:af:78:08:f9:4a:05:6f:94:
fc:a5:42:f0:4c:5a:8b:fe:a4:77:04:f9:78:65:59:00:a1:07:
c1:6e:96:da:07:6b:8e:53:aa:79:56:68:b9:ce:4d:fc:17:72:
c2:a4:da:4f
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAY/pTUpz8lirxUFSjnVQns+fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2MDg0NmYyMWM1NmE4NTEzZDMxYzE1NWRkMTk5MTk3YTNm
ZmM3YzAwHhcNMjQwNjA1MTY0ODI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzhiZDIzNjZiNjM5YmY5MjJjMjllMjJhYTQxZGExYzdkMGVkOGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEUroCqf7Den5flXjC7DfL8BKOOH
0wNJpCPJwoMk+jWuGz3dVR7h1Z+4GBoRDw6Mp/DqsPEvfSsK95yX8Z5juWnHHxfI
+Rz5EXXE0NCCyZykFNZsoafY8WfH3Kp96bf7YO8ED+5nzF9+aNSOV7Kas5SG0h0g
3SSdUooZC4oDWDcw3pPYxy/IoAPcxiaJydtXx50/AicJU49qP+r1GiyxpDYyQ2NH
x3gS9+Gm87LQmS51dBm7cRPFNiCQDVUEKm2Psatf96w15Qb1y+QLpkr92nJp/crI
9gt2Iv45osf7us1bTQuFQmL+wRBPY5NmyogOUtXnRzlddcDK4K4D/3LvdQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFEeL0jZrY5v5IsKeIqpB2hx9DtjFMB8GA1UdIwQY
MBaAFPYIRvIcVqhRPTHBVd0ZkZej/8fAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWdoRzhoeFdxRkU5TWNGVjNSbVJsNlBfeDhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9hMGY0YmUtNGMwZC00ZGY1LTkwYzYt
YTZkNDVlZjdkMjI3LzEvUjR2U05tdGptX2tpd3A0aXFrSGFISDBPMk1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9hMGY0YmUtNGMwZC00ZGY1LTkwYzYtYTZkNDVlZjdkMjI3
LzEvOWdoRzhoeFdxRkU5TWNGVjNSbVJsNlBfeDhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAHxZeAwQC
uedkAwQAwy/uMA0EAgACMAcDBQMqDFcAMA0GCSqGSIb3DQEBCwUAA4IBAQCOoQVR
R8QpdXgGZVg2Fwu89n7Mloj9LyLRqED2RPdtEs7NW5Lj8WuupZuf0bgbNbMfQdn6
7WrxSvSLHz3GM/NxUJZ0I2yzPjYWr1Ugzk/wQpr8zsLSdusvCsoPvLboO3w03nrF
nALTcA+Jm0QZngK1tbUg21WmpIrKYLv97OfFdjMBR6Mml+Ocl3ozj9DGXM/jl1Bm
v4aJSqwWr+me0oum6epPTMstUFPeuROiBdpTyjply/zbgHLPzD3uUo6EpppI4vOD
sdR+Rd5rqSOHhFJor3gI+UoFb5T8pULwTFqL/qR3BPl4ZVkAoQfBbpbaB2uOU6p5
Vmi5zk38F3LCpNpP
-----END CERTIFICATE-----
Generated at Sun Jun 23 17:33:51 2024 by rpki-client on console-ams.rpki-client.org