Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/NSQENbaUV-eBYjgBvOkRiP8j4Oo.roa
File: NSQENbaUV-eBYjgBvOkRiP8j4Oo.roa (raw, json)
Hash identifier: wF4ku7o0B4KalOgauhLqFBoaN2au3VGSpsLO22KKXjs=
Subject key identifier: 35:24:04:35:B6:94:57:E7:81:62:38:01:BC:E9:11:88:FF:23:E0:EA
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 018FD9C61317C748827B20BA408A2ECFF862
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/NSQENbaUV-eBYjgBvOkRiP8j4Oo.roa
Signing time: Sun 02 Jun 2024 16:26:27 +0000
ROA not before: Sun 02 Jun 2024 16:26:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211398
IP address blocks: 31.24.249.0/24 maxlen: 32
2001:678:f30::/48 maxlen: 48
2a12:4940::/32 maxlen: 48
2a12:4942::/31 maxlen: 48
2a12:4942:174::/48 maxlen: 48
2a12:4946:1600::/48 maxlen: 48
2a12:4946:1650::/48 maxlen: 48
2a12:4946:1655::/48 maxlen: 48
2a12:4946:1658::/48 maxlen: 48
2a12:4946:1700::/48 maxlen: 48
2a12:4946:1800::/48 maxlen: 48
2a12:4946:1900::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
2a12:4946:3005::/48 maxlen: 48
2a12:4946:6960::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d9:c6:13:17:c7:48:82:7b:20:ba:40:8a:2e:cf:f8:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jun 2 16:26:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35240435b69457e781623801bce91188ff23e0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:88:78:51:a8:f7:73:f1:64:05:0d:3e:80:9b:
3d:e1:de:4c:63:10:a8:3d:26:9e:22:a5:39:85:4c:
62:ea:32:0c:dd:b2:b9:3f:1e:fc:0a:6b:67:6c:5b:
65:27:56:fb:11:db:59:df:72:28:7b:ca:b2:e8:5b:
24:e6:84:a7:ae:a8:05:63:c9:25:01:a4:4e:2b:2d:
b5:a0:19:34:e1:f9:2f:4a:d9:ff:c2:68:f6:23:e2:
19:b6:7c:13:df:a6:38:ca:ce:8f:84:14:6f:97:02:
9b:a2:d8:b7:f3:0e:dc:e7:19:7e:17:60:10:e7:85:
27:11:2a:5d:ab:42:24:e8:3d:1d:d4:8b:8b:56:ea:
0c:d0:b6:95:d7:4a:d5:3c:a1:1e:ce:c0:47:27:85:
06:9e:fc:96:c2:30:66:aa:c3:35:a9:42:43:08:f4:
ac:07:d2:c0:84:2f:b4:b2:38:1f:9b:50:98:7f:b2:
06:a4:e3:76:16:d4:27:9c:07:b1:57:bf:2e:fd:14:
2d:2c:18:50:a9:34:39:88:ad:e8:2d:bc:cb:e2:4c:
66:6b:5b:3b:b2:c1:93:9b:9c:af:9d:2e:57:44:ea:
68:7e:44:04:be:8f:1e:07:06:77:82:a8:1c:ad:41:
4f:70:34:59:65:70:43:cf:f1:6b:88:df:cd:9b:ae:
0f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:24:04:35:B6:94:57:E7:81:62:38:01:BC:E9:11:88:FF:23:E0:EA
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/NSQENbaUV-eBYjgBvOkRiP8j4Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2001:678:f30::/48
2a12:4940::/32
2a12:4942::/31
2a12:4946:1600::/48
2a12:4946:1650::/48
2a12:4946:1655::/48
2a12:4946:1658::/48
2a12:4946:1700::/48
2a12:4946:1800::/48
2a12:4946:1900::/48
2a12:4946:3000::/48
2a12:4946:3005::/48
2a12:4946:6960::/44
Signature Algorithm: sha256WithRSAEncryption
4f:9b:64:06:23:62:e1:ac:85:0e:cc:59:07:8a:6e:62:c3:66:
85:5f:a9:49:6d:a0:82:73:28:0f:73:39:1e:c1:3b:20:f8:2a:
46:3d:cf:b1:44:90:df:8c:48:cf:fe:61:97:04:c5:16:b9:8c:
f2:1f:0c:6a:a1:20:33:74:01:72:83:65:69:a2:eb:de:43:4e:
17:9c:18:ce:86:34:3d:1f:a0:5e:b0:31:b3:1d:a1:1e:e1:68:
90:16:6c:4d:8d:bb:e2:96:41:7c:b1:31:3b:44:b1:93:2f:07:
23:43:d4:d5:f7:04:15:ec:63:a6:db:5c:51:41:73:59:f8:af:
19:af:c6:34:ee:42:8e:cb:43:30:72:b3:c0:10:1d:70:6f:fb:
eb:90:71:6e:ec:1c:61:e0:95:45:2b:ac:dd:29:29:c4:85:70:
45:d5:1f:ec:e0:f7:b0:da:b5:94:5f:28:b5:cf:f9:9b:0e:a1:
25:95:a3:e5:e9:ef:b4:70:0d:ae:55:2a:94:88:0e:6f:7f:43:
16:67:30:4b:81:98:03:e2:be:36:7a:65:09:dc:02:41:db:a2:
07:3c:de:b3:77:c0:ce:37:8b:a2:3b:65:55:0b:5e:b4:51:11:
65:0b:98:9c:54:e3:71:5e:a0:4d:25:c5:e2:1b:59:c6:71:7c:
94:34:80:0e
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAY/ZxhMXx0iCeyC6QIouz/hiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjM5NWMxMjY3MmFkOTU4OTIxYjYyYjlkYzliMmJjZDhh
NjhhOWYwHhcNMjQwNjAyMTYyNjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTI0MDQzNWI2OTQ1N2U3ODE2MjM4MDFiY2U5MTE4OGZmMjNlMGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsoh4Uaj3c/FkBQ0+gJs94d5MYxCo
PSaeIqU5hUxi6jIM3bK5Px78CmtnbFtlJ1b7EdtZ33Ioe8qy6Fsk5oSnrqgFY8kl
AaROKy21oBk04fkvStn/wmj2I+IZtnwT36Y4ys6PhBRvlwKboti38w7c5xl+F2AQ
54UnESpdq0Ik6D0d1IuLVuoM0LaV10rVPKEezsBHJ4UGnvyWwjBmqsM1qUJDCPSs
B9LAhC+0sjgfm1CYf7IGpON2FtQnnAexV78u/RQtLBhQqTQ5iK3oLbzL4kxma1s7
ssGTm5yvnS5XROpofkQEvo8eBwZ3gqgcrUFPcDRZZXBDz/FriN/Nm64PHQIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFDUkBDW2lFfngWI4AbzpEYj/I+DqMB8GA1UdIwQY
MBaAFHRjlcEmcq2ViSG2K53JsrzYpoqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMt
ZmI3NzRhYmRmYWMyLzEvTlNRRU5iYVVWLWVCWWpnQnZPa1JpUDhqNE9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMtZmI3NzRhYmRmYWMy
LzEvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzAMBAIAATAGAwQAHxj5
MHcEAgACMHEDBwAgAQZ4DzADBQAqEklAAwUBKhJJQgMHACoSSUYWAAMHACoSSUYW
UAMHACoSSUYWVQMHACoSSUYWWAMHACoSSUYXAAMHACoSSUYYAAMHACoSSUYZAAMH
ACoSSUYwAAMHACoSSUYwBQMHBCoSSUZpYDANBgkqhkiG9w0BAQsFAAOCAQEAT5tk
BiNi4ayFDsxZB4puYsNmhV+pSW2ggnMoD3M5HsE7IPgqRj3PsUSQ34xIz/5hlwTF
FrmM8h8MaqEgM3QBcoNlaaLr3kNOF5wYzoY0PR+gXrAxsx2hHuFokBZsTY274pZB
fLExO0Sxky8HI0PU1fcEFexjpttcUUFzWfivGa/GNO5CjstDMHKzwBAdcG/765Bx
buwcYeCVRSus3SkpxIVwRdUf7OD3sNq1lF8otc/5mw6hJZWj5envtHANrlUqlIgO
b39DFmcwS4GYA+K+NnplCdwCQduiBzzes3fAzjeLojtlVQtetFERZQuYnFTjcV6g
TSXF4htZxnF8lDSADg==
-----END CERTIFICATE-----
Generated at Sun Jun 23 18:22:06 2024 by rpki-client on console-fra.rpki-client.org