Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/u6WVs0g7nQxvCTiH6Cipo2BK_aU.roa
File: u6WVs0g7nQxvCTiH6Cipo2BK_aU.roa (raw, json)
Hash identifier: wVU1RaTXPUKPBXFi6PGivD2uTUeGnKS0az8OKv16brw=
Subject key identifier: BB:A5:95:B3:48:3B:9D:0C:6F:09:38:87:E8:28:A9:A3:60:4A:FD:A5
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 018FE94E3568534B5B609F7084FB876867F7
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/u6WVs0g7nQxvCTiH6Cipo2BK_aU.roa
Signing time: Wed 05 Jun 2024 16:49:27 +0000
ROA not before: Wed 05 Jun 2024 16:49:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199839
IP address blocks: 31.24.249.0/24 maxlen: 32
2001:678:f30::/48 maxlen: 48
2a12:4940::/32 maxlen: 48
2a12:4942:174::/48 maxlen: 48
2a12:4942:4009::/48 maxlen: 48
2a12:4946:1600::/48 maxlen: 48
2a12:4946:1650::/48 maxlen: 48
2a12:4946:1655::/48 maxlen: 48
2a12:4946:1658::/48 maxlen: 48
2a12:4946:1700::/48 maxlen: 48
2a12:4946:1800::/48 maxlen: 48
2a12:4946:1900::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
2a12:4946:8000::/48 maxlen: 48
2a12:4946:8010::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e9:4e:35:68:53:4b:5b:60:9f:70:84:fb:87:68:67:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jun 5 16:49:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bba595b3483b9d0c6f093887e828a9a3604afda5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c5:e9:43:b3:2e:76:a6:63:43:67:36:cd:f1:
69:8f:03:d1:df:e3:18:7f:c7:8c:aa:64:37:90:bd:
52:b7:a3:eb:59:54:29:54:bc:01:7a:91:1c:67:43:
51:0c:35:6d:58:e5:98:a8:f5:10:0e:6d:b7:48:f2:
98:ac:bc:68:82:45:63:f0:28:19:e6:db:1b:b6:a4:
d5:50:6a:68:19:a2:04:bf:bf:17:24:a9:ee:d1:7d:
65:9f:90:12:73:9c:53:f7:f6:f0:f7:e8:64:f1:3c:
d4:40:dc:3e:b0:74:c6:32:13:f1:af:b7:3f:3e:7c:
2d:35:09:f8:2b:cd:63:27:ff:14:1c:d0:d1:a9:70:
88:3d:be:7e:b4:49:32:52:f1:9d:18:8d:4a:c9:dd:
66:4a:0b:bf:6a:f6:92:25:6f:c1:da:a9:67:6f:5e:
9f:11:03:66:14:97:20:47:c7:df:94:3c:6e:5e:11:
9c:a2:63:7f:b7:4c:5b:ae:f3:6e:20:54:d5:7e:73:
39:85:73:cb:e1:6f:d1:6b:fd:49:4c:38:b2:2c:ba:
12:38:ff:00:db:cb:e4:a7:ff:45:dd:44:ff:ec:c8:
8f:7e:f8:41:1e:a7:f5:e5:61:4b:e3:fa:8e:84:7b:
91:da:7e:ca:d1:86:40:d7:1c:00:8e:54:83:97:58:
e6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A5:95:B3:48:3B:9D:0C:6F:09:38:87:E8:28:A9:A3:60:4A:FD:A5
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/u6WVs0g7nQxvCTiH6Cipo2BK_aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2001:678:f30::/48
2a12:4940::/32
2a12:4942:174::/48
2a12:4942:4009::/48
2a12:4946:1600::/48
2a12:4946:1650::/48
2a12:4946:1655::/48
2a12:4946:1658::/48
2a12:4946:1700::/48
2a12:4946:1800::/48
2a12:4946:1900::/48
2a12:4946:3000::/48
2a12:4946:8000::/48
2a12:4946:8010::/48
Signature Algorithm: sha256WithRSAEncryption
4c:e7:f6:c3:6a:32:89:e7:8f:c7:3d:6b:3f:24:18:4a:b4:90:
4a:c8:3d:92:00:de:00:58:a0:52:82:6c:71:e9:12:23:c3:4a:
df:13:6a:d3:8b:35:20:96:af:48:04:0b:ad:37:b9:bb:85:1c:
ff:6b:08:f6:b9:86:3e:2c:2a:32:2c:8f:74:af:84:11:3f:92:
99:a6:e7:4a:9e:cc:6a:50:8a:43:b6:65:ca:cd:f8:2d:63:d3:
b4:ea:d9:0a:62:2d:cd:1a:e3:35:4e:1c:66:05:da:16:cd:e6:
85:27:17:95:14:a8:0b:67:1d:52:71:af:f7:95:4b:62:76:3d:
be:eb:94:e6:90:1f:90:0d:a1:93:88:ea:5c:43:66:74:58:ce:
b9:42:7a:56:b4:53:d4:b3:49:85:c7:bc:31:a3:ed:bd:1d:71:
b8:be:54:5a:b4:ea:f4:d2:e7:d7:38:a0:54:7f:59:b5:0e:00:
4d:f0:73:25:16:22:8c:f6:8a:93:1b:8e:a1:b1:9e:74:90:cd:
fd:e6:fa:78:13:ea:66:29:ba:4b:06:59:95:2b:e4:f7:01:f0:
36:da:89:09:75:df:fc:f4:39:23:7f:27:e2:e8:f0:0d:15:23:
1f:3f:ef:03:5c:c1:1b:96:f7:ac:46:d2:01:5a:b8:c6:07:86:
15:35:fc:08
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgISAY/pTjVoU0tbYJ9whPuHaGf3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjM5NWMxMjY3MmFkOTU4OTIxYjYyYjlkYzliMmJjZDhh
NjhhOWYwHhcNMjQwNjA1MTY0OTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmE1OTViMzQ4M2I5ZDBjNmYwOTM4ODdlODI4YTlhMzYwNGFmZGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsXpQ7MudqZjQ2c2zfFpjwPR3+MY
f8eMqmQ3kL1St6PrWVQpVLwBepEcZ0NRDDVtWOWYqPUQDm23SPKYrLxogkVj8CgZ
5tsbtqTVUGpoGaIEv78XJKnu0X1ln5ASc5xT9/bw9+hk8TzUQNw+sHTGMhPxr7c/
PnwtNQn4K81jJ/8UHNDRqXCIPb5+tEkyUvGdGI1Kyd1mSgu/avaSJW/B2qlnb16f
EQNmFJcgR8fflDxuXhGcomN/t0xbrvNuIFTVfnM5hXPL4W/Ra/1JTDiyLLoSOP8A
28vkp/9F3UT/7MiPfvhBHqf15WFL4/qOhHuR2n7K0YZA1xwAjlSDl1jmNQIDAQAB
o4ICkTCCAo0wHQYDVR0OBBYEFLullbNIO50Mbwk4h+goqaNgSv2lMB8GA1UdIwQY
MBaAFHRjlcEmcq2ViSG2K53JsrzYpoqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMt
ZmI3NzRhYmRmYWMyLzEvdTZXVnMwZzduUXh2Q1RpSDZDaXBvMkJLX2FVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMtZmI3NzRhYmRmYWMy
LzEvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGmBggrBgEFBQcBBwEB/wSBljCBkzAMBAIAATAGAwQAHxj5
MIGCBAIAAjB8AwcAIAEGeA8wAwUAKhJJQAMHACoSSUIBdAMHACoSSUJACQMHACoS
SUYWAAMHACoSSUYWUAMHACoSSUYWVQMHACoSSUYWWAMHACoSSUYXAAMHACoSSUYY
AAMHACoSSUYZAAMHACoSSUYwAAMHACoSSUaAAAMHACoSSUaAEDANBgkqhkiG9w0B
AQsFAAOCAQEATOf2w2oyieePxz1rPyQYSrSQSsg9kgDeAFigUoJscekSI8NK3xNq
04s1IJavSAQLrTe5u4Uc/2sI9rmGPiwqMiyPdK+EET+SmabnSp7MalCKQ7Zlys34
LWPTtOrZCmItzRrjNU4cZgXaFs3mhScXlRSoC2cdUnGv95VLYnY9vuuU5pAfkA2h
k4jqXENmdFjOuUJ6VrRT1LNJhce8MaPtvR1xuL5UWrTq9NLn1zigVH9ZtQ4ATfBz
JRYijPaKkxuOobGedJDN/eb6eBPqZim6SwZZlSvk9wHwNtqJCXXf/PQ5I38n4ujw
DRUjHz/vA1zBG5b3rEbSAVq4xgeGFTX8CA==
-----END CERTIFICATE-----
Generated at Sun Jun 23 18:22:06 2024 by rpki-client on console-fra.rpki-client.org