Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/Sw62IldNSUfgh5SzmwYQA1fxe1M.roa
File: Sw62IldNSUfgh5SzmwYQA1fxe1M.roa (raw, json)
Hash identifier: yMb8/wbBiuaCnwDEGz6uCONG8fmPh0zHxKd0RijEVRk=
Subject key identifier: 4B:0E:B6:22:57:4D:49:47:E0:87:94:B3:9B:06:10:03:57:F1:7B:53
Certificate issuer: /CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Certificate serial: 018CC9BCC46743F5B15986AC48E8848EF40B
Authority key identifier: 83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/Sw62IldNSUfgh5SzmwYQA1fxe1M.roa
Signing time: Tue 02 Jan 2024 10:34:00 +0000
ROA not before: Tue 02 Jan 2024 10:34:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57724
IP address blocks: 185.226.160.0/24 maxlen: 24
185.226.163.0/24 maxlen: 24
185.226.161.0/24 maxlen: 24
185.226.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/g2CfK50khvNujNKd-ip1akjefFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/g2CfK50khvNujNKd-ip1akjefFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 01:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:c4:67:43:f5:b1:59:86:ac:48:e8:84:8e:f4:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Validity
Not Before: Jan 2 10:34:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b0eb622574d4947e08794b39b06100357f17b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:eb:7e:6d:03:95:e2:23:e5:b1:85:8e:9d:26:
1c:34:db:ee:52:b6:e6:7b:55:73:f3:f5:cf:54:b8:
09:27:0e:fa:9f:3c:f7:78:09:2c:a8:2a:3b:55:7b:
4a:36:b8:7b:c7:ed:52:9b:6f:17:c5:07:ec:77:13:
b6:b5:4b:ce:6c:fd:ec:d1:f1:2d:91:97:08:df:9c:
7e:32:74:89:0a:ca:46:62:93:ea:ee:9b:67:dd:ea:
04:ec:26:1b:3a:bc:42:a4:57:5b:d4:9b:04:cf:81:
ee:e5:b3:0b:a0:cc:55:1d:fa:69:81:cb:9d:ab:4b:
8f:52:aa:9d:36:9d:bc:91:7a:8b:34:81:19:d0:7a:
45:1f:24:21:3a:de:fb:a9:71:58:dd:58:ae:44:aa:
13:6a:3a:91:70:1c:ff:02:40:e2:48:eb:d0:9d:b6:
09:63:8c:b8:00:9a:af:ac:18:01:99:ea:14:51:7f:
ed:16:ec:df:50:10:ce:28:4c:0a:da:fb:38:09:53:
bd:b2:1b:59:73:99:83:f0:6c:70:18:95:1b:b8:f2:
dd:7a:1c:44:88:00:2e:11:74:c3:5e:eb:0a:02:50:
e8:71:8c:bb:ec:e0:bb:bd:e7:2f:b9:f9:77:63:76:
df:aa:15:a9:7d:c9:8f:0b:cd:24:fe:5d:c3:f5:54:
98:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0E:B6:22:57:4D:49:47:E0:87:94:B3:9B:06:10:03:57:F1:7B:53
X509v3 Authority Key Identifier:
keyid:83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/Sw62IldNSUfgh5SzmwYQA1fxe1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/g2CfK50khvNujNKd-ip1akjefFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.160.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:6a:6e:5c:a7:c9:4e:10:19:d0:b2:ed:b5:c7:73:40:1b:31:
72:1c:2c:5d:de:ae:e4:9a:53:15:a9:3c:ef:39:d0:c2:20:88:
72:cf:27:00:01:61:f1:df:4a:1e:c9:88:09:8e:b4:61:5b:5a:
d0:2b:99:63:2a:89:aa:de:2a:e2:24:dc:83:5d:a1:2f:b8:dc:
a7:f1:31:34:12:fe:f7:6f:85:3a:1c:6e:36:ee:46:7e:bb:f5:
a1:ae:ef:25:8f:5f:94:bb:a3:69:be:4c:97:b6:1a:c7:85:fe:
fd:a1:ee:e9:7f:36:1f:73:c7:df:7a:da:e6:5e:3d:eb:4f:87:
a5:58:1d:b9:2a:6f:7b:d2:9c:c9:9f:0f:27:58:35:17:3c:60:
6c:ea:6b:32:4c:3f:bf:c1:13:27:2c:ed:4b:e7:07:58:14:bc:
13:69:13:30:d5:43:9c:8c:36:a6:1e:fb:52:30:37:2a:39:0c:
e2:87:59:9b:3b:b1:34:95:6d:b9:6d:39:ab:e5:1a:b1:a1:d3:
d1:a1:53:8d:43:59:52:fb:bd:e1:cb:a5:55:10:8a:d4:52:55:
7a:c3:f4:0f:25:24:6b:b8:c2:9c:8e:db:b0:31:79:c1:d9:93:
e7:82:16:67:cc:58:77:40:09:3d:3e:35:b0:59:1a:60:9c:b5:
1b:39:bd:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJvMRnQ/WxWYasSOiEjvQLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzNjA5ZjJiOWQyNDg2ZjM2ZThjZDI5ZGZhMmE3NTZhNDhk
ZTdjNTEwHhcNMjQwMTAyMTAzNDAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjBlYjYyMjU3NGQ0OTQ3ZTA4Nzk0YjM5YjA2MTAwMzU3ZjE3YjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOt+bQOV4iPlsYWOnSYcNNvuUrbm
e1Vz8/XPVLgJJw76nzz3eAksqCo7VXtKNrh7x+1Sm28XxQfsdxO2tUvObP3s0fEt
kZcI35x+MnSJCspGYpPq7ptn3eoE7CYbOrxCpFdb1JsEz4Hu5bMLoMxVHfppgcud
q0uPUqqdNp28kXqLNIEZ0HpFHyQhOt77qXFY3ViuRKoTajqRcBz/AkDiSOvQnbYJ
Y4y4AJqvrBgBmeoUUX/tFuzfUBDOKEwK2vs4CVO9shtZc5mD8GxwGJUbuPLdehxE
iAAuEXTDXusKAlDocYy77OC7vecvufl3Y3bfqhWpfcmPC80k/l3D9VSYwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEsOtiJXTUlH4IeUs5sGEANX8XtTMB8GA1UdIwQY
MBaAFINgnyudJIbzbozSnfoqdWpI3nxRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzJDZks1MGtodk51ak5LZC1pcDFha2plZkZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9kNmVjM2ItZTcxNy00YzNkLWIwYWUt
NWU2MGY2ZGEyYjA5LzEvU3c2MklsZE5TVWZnaDVTem13WVFBMWZ4ZTFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9kNmVjM2ItZTcxNy00YzNkLWIwYWUtNWU2MGY2ZGEyYjA5
LzEvZzJDZks1MGtodk51ak5LZC1pcDFha2plZkZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCueKgMA0G
CSqGSIb3DQEBCwUAA4IBAQDHam5cp8lOEBnQsu21x3NAGzFyHCxd3q7kmlMVqTzv
OdDCIIhyzycAAWHx30oeyYgJjrRhW1rQK5ljKomq3iriJNyDXaEvuNyn8TE0Ev73
b4U6HG427kZ+u/Whru8lj1+Uu6NpvkyXthrHhf79oe7pfzYfc8ffetrmXj3rT4el
WB25Km970pzJnw8nWDUXPGBs6msyTD+/wRMnLO1L5wdYFLwTaRMw1UOcjDamHvtS
MDcqOQzih1mbO7E0lW25bTmr5RqxodPRoVONQ1lS+73hy6VVEIrUUlV6w/QPJSRr
uMKcjtuwMXnB2ZPnghZnzFh3QAk9PjWwWRpgnLUbOb1Q
-----END CERTIFICATE-----
Generated at Sat Sep 28 08:04:28 2024 by rpki-client on console-fra.rpki-client.org