Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/4b63ea-e4f0-44b0-bd2e-9e19d08cb71f/1/iIth02ryJ-u0HfVHv9I3vEQaASM.roa
File: iIth02ryJ-u0HfVHv9I3vEQaASM.roa (raw, json)
Hash identifier: iLxaSc1KdmRHQlYEFK5vvcjwvNsIKCe7xCTSFi51jBc=
Subject key identifier: 88:8B:61:D3:6A:F2:27:EB:B4:1D:F5:47:BF:D2:37:BC:44:1A:01:23
Certificate issuer: /CN=bd02616554632356450bc4bb4b6dacfc79df3025
Certificate serial: 018E654E2A97A9CC181DBEE182A524CAAC4D
Authority key identifier: BD:02:61:65:54:63:23:56:45:0B:C4:BB:4B:6D:AC:FC:79:DF:30:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vQJhZVRjI1ZFC8S7S22s_HnfMCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/4b63ea-e4f0-44b0-bd2e-9e19d08cb71f/1/iIth02ryJ-u0HfVHv9I3vEQaASM.roa
Signing time: Fri 22 Mar 2024 08:36:45 +0000
ROA not before: Fri 22 Mar 2024 08:36:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209282
IP address blocks: 5.61.211.0/24 maxlen: 24
77.87.184.0/24 maxlen: 24
2a12:90c0:a0::/48 maxlen: 48
2a12:90c0:b0::/48 maxlen: 48
2a12:90c1::/40 maxlen: 40
2a12:90c1:a::/48 maxlen: 48
2a12:90c1:100::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/4b63ea-e4f0-44b0-bd2e-9e19d08cb71f/1/vQJhZVRjI1ZFC8S7S22s_HnfMCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/4b63ea-e4f0-44b0-bd2e-9e19d08cb71f/1/vQJhZVRjI1ZFC8S7S22s_HnfMCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/vQJhZVRjI1ZFC8S7S22s_HnfMCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:65:4e:2a:97:a9:cc:18:1d:be:e1:82:a5:24:ca:ac:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd02616554632356450bc4bb4b6dacfc79df3025
Validity
Not Before: Mar 22 08:36:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=888b61d36af227ebb41df547bfd237bc441a0123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:26:33:0e:d6:48:4c:c7:c0:a7:07:48:12:0b:
c7:12:c0:ee:3a:40:b5:5f:25:77:82:43:9b:ba:f7:
b9:d3:b6:74:0f:1c:94:bd:93:75:5c:f6:77:8f:42:
e3:cf:b3:43:50:ad:6d:f9:e2:82:91:ef:6f:6f:d6:
87:04:e6:0b:8f:3d:40:de:bb:da:ce:55:31:65:39:
52:72:9d:03:71:b1:34:a1:5a:55:62:1e:f1:50:7c:
f5:30:47:5a:9e:ee:e6:04:b6:93:f5:a5:e2:da:99:
a1:43:3a:47:18:ba:7a:7f:e5:98:8a:e2:46:49:f9:
32:7e:a6:c7:3c:58:ef:72:49:9c:9c:02:a8:ea:12:
ed:57:1d:f3:4d:be:26:4d:1e:aa:b0:38:ff:fe:e8:
40:a3:3c:8a:ab:30:e1:23:45:c5:bb:41:eb:33:f1:
20:1c:e6:1a:03:56:da:da:97:ee:6a:a1:a6:a6:10:
d9:7b:51:9d:1d:1d:3f:28:14:63:45:51:61:16:ec:
9c:c6:40:e0:ee:af:cc:54:ad:6e:51:ae:e7:1e:3f:
46:82:62:e0:7f:d4:bf:10:05:4d:86:f0:4f:2d:4a:
92:6b:e2:50:b2:13:c5:c9:e0:24:0b:69:27:af:c2:
19:69:fe:9d:3e:92:84:25:8e:b4:d8:52:ec:0d:2d:
4b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:8B:61:D3:6A:F2:27:EB:B4:1D:F5:47:BF:D2:37:BC:44:1A:01:23
X509v3 Authority Key Identifier:
keyid:BD:02:61:65:54:63:23:56:45:0B:C4:BB:4B:6D:AC:FC:79:DF:30:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vQJhZVRjI1ZFC8S7S22s_HnfMCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/4b63ea-e4f0-44b0-bd2e-9e19d08cb71f/1/iIth02ryJ-u0HfVHv9I3vEQaASM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/4b63ea-e4f0-44b0-bd2e-9e19d08cb71f/1/vQJhZVRjI1ZFC8S7S22s_HnfMCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.211.0/24
77.87.184.0/24
IPv6:
2a12:90c0:a0::/48
2a12:90c0:b0::/48
2a12:90c1::/39
Signature Algorithm: sha256WithRSAEncryption
26:72:f9:5d:47:35:52:1a:14:30:5f:15:7e:f5:ab:54:4c:2d:
10:d0:a2:d2:14:d5:60:1e:cd:bb:32:66:c1:a2:98:14:ea:f2:
24:c6:27:83:59:49:c7:ea:7e:a9:b0:19:42:f2:b1:58:c8:01:
98:b3:28:68:6a:cd:2e:4c:d6:94:2d:d1:2f:cc:3c:84:ba:38:
7a:9d:31:6f:5b:fb:2d:84:b2:70:f7:61:74:11:3c:a2:54:cd:
59:8f:97:5a:3a:16:99:df:b7:05:8f:e3:56:67:21:d4:0c:a3:
57:de:0e:bb:32:12:5d:c6:a3:f3:56:da:e8:ba:43:16:9f:55:
64:55:36:f1:96:74:79:69:64:87:0a:18:ba:f9:36:dc:bc:d5:
68:d0:05:95:0d:9f:07:6b:c4:86:aa:2e:3e:c2:07:05:70:30:
e8:91:c2:43:b9:c2:ea:db:ed:6e:41:3e:5b:25:cc:b9:8f:0d:
23:d7:13:2a:fe:c9:da:ef:42:2e:6b:aa:6d:45:bf:8b:d8:ff:
76:77:c2:c7:14:b3:31:9e:8e:de:ae:d1:7d:32:f9:45:7b:7c:
f6:63:6b:2f:b6:84:b5:42:86:e5:70:4c:ac:33:54:a3:66:b2:
ab:85:e3:6b:12:4c:14:5e:d1:45:fa:5d:c9:b0:15:d2:1e:e4:
cb:86:8b:2b
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgISAY5lTiqXqcwYHb7hgqUkyqxNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMDI2MTY1NTQ2MzIzNTY0NTBiYzRiYjRiNmRhY2ZjNzlk
ZjMwMjUwHhcNMjQwMzIyMDgzNjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODhiNjFkMzZhZjIyN2ViYjQxZGY1NDdiZmQyMzdiYzQ0MWEwMTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCYzDtZITMfApwdIEgvHEsDuOkC1
XyV3gkObuve507Z0DxyUvZN1XPZ3j0Ljz7NDUK1t+eKCke9vb9aHBOYLjz1A3rva
zlUxZTlScp0DcbE0oVpVYh7xUHz1MEdanu7mBLaT9aXi2pmhQzpHGLp6f+WYiuJG
SfkyfqbHPFjvckmcnAKo6hLtVx3zTb4mTR6qsDj//uhAozyKqzDhI0XFu0HrM/Eg
HOYaA1ba2pfuaqGmphDZe1GdHR0/KBRjRVFhFuycxkDg7q/MVK1uUa7nHj9GgmLg
f9S/EAVNhvBPLUqSa+JQshPFyeAkC2knr8IZaf6dPpKEJY602FLsDS1LLwIDAQAB
o4ICMTCCAi0wHQYDVR0OBBYEFIiLYdNq8ifrtB31R7/SN7xEGgEjMB8GA1UdIwQY
MBaAFL0CYWVUYyNWRQvEu0ttrPx53zAlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlFKaFpWUmpJMVpGQzhTN1MyMnNfSG5mTUNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My80YjYzZWEtZTRmMC00NGIwLWJkMmUt
OWUxOWQwOGNiNzFmLzEvaUl0aDAycnlKLXUwSGZWSHY5STN2RVFhQVNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My80YjYzZWEtZTRmMC00NGIwLWJkMmUtOWUxOWQwOGNiNzFm
LzEvdlFKaFpWUmpJMVpGQzhTN1MyMnNfSG5mTUNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjASBAIAATAMAwQABT3TAwQA
TVe4MCAEAgACMBoDBwAqEpDAAKADBwAqEpDAALADBgEqEpDBADANBgkqhkiG9w0B
AQsFAAOCAQEAJnL5XUc1UhoUMF8VfvWrVEwtENCi0hTVYB7NuzJmwaKYFOryJMYn
g1lJx+p+qbAZQvKxWMgBmLMoaGrNLkzWlC3RL8w8hLo4ep0xb1v7LYSycPdhdBE8
olTNWY+XWjoWmd+3BY/jVmch1AyjV94OuzISXcaj81ba6LpDFp9VZFU28ZZ0eWlk
hwoYuvk23LzVaNAFlQ2fB2vEhqouPsIHBXAw6JHCQ7nC6tvtbkE+WyXMuY8NI9cT
Kv7J2u9CLmuqbUW/i9j/dnfCxxSzMZ6O3q7RfTL5RXt89mNrL7aEtUKG5XBMrDNU
o2ayq4XjaxJMFF7RRfpdybAV0h7ky4aLKw==
-----END CERTIFICATE-----
Generated at Sun Jun 23 18:22:13 2024 by rpki-client on console-fra.rpki-client.org