Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/9425c6-c495-4878-a8f3-7a78c8c4e051/1/c7rtE-bYz7b6E-btoBGZ2kvKHAk.roa
File: c7rtE-bYz7b6E-btoBGZ2kvKHAk.roa (raw, json)
Hash identifier: gg5gWMX+CbjRkcFoDqMlNrWvQQxhiaRDwXwzYYU8omw=
Subject key identifier: 73:BA:ED:13:E6:D8:CF:B6:FA:13:E6:ED:A0:11:99:DA:4B:CA:1C:09
Certificate issuer: /CN=e8f40902a003d8fe6f7c7742eb47d70b50ade036
Certificate serial: 018CC26D2781EDCB50EA22027278255CFA18
Authority key identifier: E8:F4:09:02:A0:03:D8:FE:6F:7C:77:42:EB:47:D7:0B:50:AD:E0:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6PQJAqAD2P5vfHdC60fXC1Ct4DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/9425c6-c495-4878-a8f3-7a78c8c4e051/1/c7rtE-bYz7b6E-btoBGZ2kvKHAk.roa
Signing time: Mon 01 Jan 2024 00:29:42 +0000
ROA not before: Mon 01 Jan 2024 00:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56376
IP address blocks: 130.255.96.0/24 maxlen: 24
130.255.96.0/21 maxlen: 21
130.255.98.0/23 maxlen: 24
130.255.97.0/24 maxlen: 24
130.255.100.0/22 maxlen: 24
46.231.37.0/24 maxlen: 24
46.231.36.0/24 maxlen: 24
46.231.32.0/22 maxlen: 24
185.62.241.0/24 maxlen: 24
185.62.242.0/24 maxlen: 24
185.62.243.0/24 maxlen: 24
46.231.38.0/23 maxlen: 24
185.62.240.0/24 maxlen: 24
185.62.240.0/22 maxlen: 22
2a03:d100::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/9425c6-c495-4878-a8f3-7a78c8c4e051/1/6PQJAqAD2P5vfHdC60fXC1Ct4DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/9425c6-c495-4878-a8f3-7a78c8c4e051/1/6PQJAqAD2P5vfHdC60fXC1Ct4DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6PQJAqAD2P5vfHdC60fXC1Ct4DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 12:54:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:27:81:ed:cb:50:ea:22:02:72:78:25:5c:fa:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8f40902a003d8fe6f7c7742eb47d70b50ade036
Validity
Not Before: Jan 1 00:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73baed13e6d8cfb6fa13e6eda01199da4bca1c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:43:8b:30:64:0b:49:03:e5:60:b5:e2:c0:bc:
af:dd:10:21:d8:36:bc:53:50:aa:b1:16:12:14:a7:
6f:bd:3b:d0:7a:a3:8b:cf:4d:37:6d:ac:6b:71:1c:
d5:b5:52:b9:19:d2:47:bb:b7:14:27:c5:b1:d1:45:
c2:51:93:b3:12:21:8d:e6:9b:9e:28:38:19:02:26:
99:9e:97:55:0e:0d:48:7f:1b:73:58:63:73:fe:de:
bb:fc:09:54:3f:3d:65:5c:07:92:96:fc:b5:d4:62:
a9:06:a6:34:d3:70:f0:af:73:32:53:2e:5e:de:41:
2e:10:41:78:ee:32:89:80:76:3b:2a:f0:22:2d:e5:
60:7f:53:dc:4a:51:80:c8:40:ab:3f:cb:48:9d:4a:
e9:89:79:b1:2a:46:55:1f:94:fd:a7:0f:d8:76:f4:
8b:b1:23:16:37:74:69:46:86:38:b5:ee:e6:9c:a9:
25:89:6c:a7:ce:02:33:e9:3f:f6:d3:b2:27:91:4e:
9d:4a:0c:85:c7:f0:49:e2:5d:ae:7c:55:88:73:68:
92:ec:d4:6a:ea:99:28:dc:6b:36:90:f8:04:d4:de:
cc:4f:62:61:79:46:fb:3d:50:dc:80:9b:9a:b4:fc:
fc:61:13:56:e2:b4:e4:e7:20:c1:1f:fc:fa:0e:98:
71:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BA:ED:13:E6:D8:CF:B6:FA:13:E6:ED:A0:11:99:DA:4B:CA:1C:09
X509v3 Authority Key Identifier:
keyid:E8:F4:09:02:A0:03:D8:FE:6F:7C:77:42:EB:47:D7:0B:50:AD:E0:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6PQJAqAD2P5vfHdC60fXC1Ct4DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/9425c6-c495-4878-a8f3-7a78c8c4e051/1/c7rtE-bYz7b6E-btoBGZ2kvKHAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/9425c6-c495-4878-a8f3-7a78c8c4e051/1/6PQJAqAD2P5vfHdC60fXC1Ct4DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.32.0/21
130.255.96.0/21
185.62.240.0/22
IPv6:
2a03:d100::/32
Signature Algorithm: sha256WithRSAEncryption
94:8e:6a:30:89:f1:63:88:bc:76:cf:5e:01:98:58:5f:b6:2b:
c3:65:65:5c:70:60:07:41:3b:53:c4:9b:51:f3:73:76:79:31:
3d:8e:46:e2:d3:a4:47:d7:98:1c:0a:d5:50:a1:e0:b1:98:f6:
1d:6d:6b:49:1c:d6:31:01:bd:66:60:fd:8f:95:47:99:9a:52:
d6:3f:46:fc:9a:0d:4e:90:a6:36:74:b5:29:e8:8c:ab:3b:4a:
a6:1f:1f:d8:17:e2:68:89:50:3c:a0:5d:4b:eb:2c:18:45:d9:
3f:83:9d:e2:bf:bf:99:1c:35:a9:f7:18:aa:dd:86:3e:bf:17:
41:2e:20:4f:16:58:79:51:6e:c5:74:7a:f9:05:52:02:9c:5f:
b6:5d:69:f3:1e:ec:90:62:f3:a7:09:d7:db:5c:ef:f9:33:53:
14:aa:ff:96:88:77:4c:d2:34:02:00:aa:cd:e7:8d:22:fd:4b:
05:8e:9e:d4:01:65:27:7a:df:2f:8b:56:45:5e:68:c8:35:b3:
48:bc:84:67:48:15:98:0a:07:d6:c6:8d:28:dc:5b:19:01:0a:
f5:49:9c:d1:52:92:17:d2:8e:82:f2:2f:3e:3e:3e:37:7d:90:
34:82:47:16:72:e5:1f:ee:ca:3b:af:67:36:53:e9:42:07:b0:
b2:8e:1f:ee
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYzCbSeB7ctQ6iICcnglXPoYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4ZjQwOTAyYTAwM2Q4ZmU2ZjdjNzc0MmViNDdkNzBiNTBh
ZGUwMzYwHhcNMjQwMTAxMDAyOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3M2JhZWQxM2U2ZDhjZmI2ZmExM2U2ZWRhMDExOTlkYTRiY2ExYzA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUOLMGQLSQPlYLXiwLyv3RAh2Da8
U1CqsRYSFKdvvTvQeqOLz003baxrcRzVtVK5GdJHu7cUJ8Wx0UXCUZOzEiGN5pue
KDgZAiaZnpdVDg1IfxtzWGNz/t67/AlUPz1lXAeSlvy11GKpBqY003Dwr3MyUy5e
3kEuEEF47jKJgHY7KvAiLeVgf1PcSlGAyECrP8tInUrpiXmxKkZVH5T9pw/YdvSL
sSMWN3RpRoY4te7mnKkliWynzgIz6T/207InkU6dSgyFx/BJ4l2ufFWIc2iS7NRq
6pko3Gs2kPgE1N7MT2JheUb7PVDcgJuatPz8YRNW4rTk5yDBH/z6DphxNwIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFHO67RPm2M+2+hPm7aARmdpLyhwJMB8GA1UdIwQY
MBaAFOj0CQKgA9j+b3x3QutH1wtQreA2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlBRSkFxQUQyUDV2ZkhkQzYwZlhDMUN0NERZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny85NDI1YzYtYzQ5NS00ODc4LWE4ZjMt
N2E3OGM4YzRlMDUxLzEvYzdydEUtYll6N2I2RS1idG9CR1oya3ZLSEFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny85NDI1YzYtYzQ5NS00ODc4LWE4ZjMtN2E3OGM4YzRlMDUx
LzEvNlBRSkFxQUQyUDV2ZkhkQzYwZlhDMUN0NERZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQDLucgAwQD
gv9gAwQCuT7wMA0EAgACMAcDBQAqA9EAMA0GCSqGSIb3DQEBCwUAA4IBAQCUjmow
ifFjiLx2z14BmFhftivDZWVccGAHQTtTxJtR83N2eTE9jkbi06RH15gcCtVQoeCx
mPYdbWtJHNYxAb1mYP2PlUeZmlLWP0b8mg1OkKY2dLUp6IyrO0qmHx/YF+JoiVA8
oF1L6ywYRdk/g53iv7+ZHDWp9xiq3YY+vxdBLiBPFlh5UW7FdHr5BVICnF+2XWnz
HuyQYvOnCdfbXO/5M1MUqv+WiHdM0jQCAKrN540i/UsFjp7UAWUnet8vi1ZFXmjI
NbNIvIRnSBWYCgfWxo0o3FsZAQr1SZzRUpIX0o6C8i8+Pj43fZA0gkcWcuUf7so7
r2c2U+lCB7Cyjh/u
-----END CERTIFICATE-----
Generated at Sun Jun 30 15:51:51 2024 by rpki-client on console-fra.rpki-client.org