Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/SrjhWUXPib27kudiepGJJBxMKHw.roa
File: SrjhWUXPib27kudiepGJJBxMKHw.roa (raw, json)
Hash identifier: JjTa+nvSVz2oxEx3psBpa35w11t61tvV+BYEwaBMCWg=
Subject key identifier: 4A:B8:E1:59:45:CF:89:BD:BB:92:E7:62:7A:91:89:24:1C:4C:28:7C
Certificate issuer: /CN=40ec5d82a8eb5d98ce76e61dafe517661fc4e675
Certificate serial: 018CC8011280AD84D8B360FD9922D7995D72
Authority key identifier: 40:EC:5D:82:A8:EB:5D:98:CE:76:E6:1D:AF:E5:17:66:1F:C4:E6:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOxdgqjrXZjOduYdr-UXZh_E5nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/SrjhWUXPib27kudiepGJJBxMKHw.roa
Signing time: Tue 02 Jan 2024 02:29:22 +0000
ROA not before: Tue 02 Jan 2024 02:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198436
IP address blocks: 37.72.54.0/24 maxlen: 24
37.72.55.0/24 maxlen: 24
37.72.56.0/24 maxlen: 24
37.72.57.0/24 maxlen: 24
37.72.58.0/24 maxlen: 24
37.72.52.0/24 maxlen: 24
37.72.53.0/24 maxlen: 24
37.72.61.0/24 maxlen: 24
37.72.62.0/24 maxlen: 24
37.72.63.0/24 maxlen: 24
37.72.59.0/24 maxlen: 24
37.72.60.0/24 maxlen: 24
37.72.48.0/24 maxlen: 24
37.72.49.0/24 maxlen: 24
37.72.50.0/24 maxlen: 24
37.72.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/QOxdgqjrXZjOduYdr-UXZh_E5nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/QOxdgqjrXZjOduYdr-UXZh_E5nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOxdgqjrXZjOduYdr-UXZh_E5nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:12:80:ad:84:d8:b3:60:fd:99:22:d7:99:5d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ec5d82a8eb5d98ce76e61dafe517661fc4e675
Validity
Not Before: Jan 2 02:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ab8e15945cf89bdbb92e7627a9189241c4c287c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0c:88:73:67:4c:ff:fa:3c:17:bf:52:85:c9:
a2:b3:64:fa:f1:8b:a6:bd:5b:e7:5b:5b:93:bc:a2:
29:9e:0f:0c:14:cb:de:d9:6d:e6:67:c4:0f:bb:61:
69:f2:04:c6:9f:27:41:1d:1d:93:a3:bc:ea:4e:b9:
08:72:44:b8:83:ea:03:8a:e8:e4:90:60:1c:d5:f6:
57:3d:d4:01:e2:b3:05:e4:35:1c:84:30:eb:ba:92:
e5:c4:5e:2c:8c:ce:3f:dc:ea:33:5d:ab:ab:03:22:
c2:36:16:91:b5:2b:82:aa:a0:f2:d8:30:9b:23:7c:
50:6e:5f:94:2c:5b:ac:69:a0:01:cd:e4:66:1e:67:
15:36:0d:fc:c5:e1:b4:80:f0:4e:76:76:4f:0a:e3:
fa:39:15:c6:ad:14:84:2b:66:8f:b8:a9:f5:08:73:
6d:d1:1f:ec:75:17:f2:ac:67:86:9e:b1:95:8a:6c:
a1:89:e1:71:56:fb:5a:43:bd:0e:e7:12:44:e9:bc:
44:f4:75:9e:c3:4e:b0:33:1d:d8:f7:ff:c9:59:fd:
cd:d2:93:7d:e0:5b:91:55:56:2b:80:3f:d9:2b:51:
81:ee:f9:c0:e0:21:74:16:96:9e:a5:d2:f1:b0:0a:
6f:37:86:0e:3b:08:00:06:1a:df:0a:eb:56:07:ad:
6f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B8:E1:59:45:CF:89:BD:BB:92:E7:62:7A:91:89:24:1C:4C:28:7C
X509v3 Authority Key Identifier:
keyid:40:EC:5D:82:A8:EB:5D:98:CE:76:E6:1D:AF:E5:17:66:1F:C4:E6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOxdgqjrXZjOduYdr-UXZh_E5nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/SrjhWUXPib27kudiepGJJBxMKHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/QOxdgqjrXZjOduYdr-UXZh_E5nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.48.0/20
Signature Algorithm: sha256WithRSAEncryption
06:eb:15:1b:a9:e3:06:f5:94:d1:33:d9:f5:af:c7:ce:32:85:
c9:0d:c8:6e:00:51:2d:b4:62:d2:4a:5f:00:9d:be:a5:3b:3e:
9e:c7:73:79:6d:6f:ac:b2:c4:74:fc:06:f7:d9:b6:f3:2a:bb:
c0:2b:5e:27:d3:67:15:3f:f2:80:2f:da:85:65:3d:18:9e:01:
bc:a6:12:7a:10:d2:ba:c9:8a:b6:fe:5d:cd:2c:8d:88:e7:a4:
59:8e:38:3d:38:28:98:f0:fe:6b:8c:f3:ee:08:cb:dc:d8:09:
69:6c:3d:9d:d7:d0:6b:84:ad:f1:58:1e:35:42:7b:50:c9:55:
7c:aa:ef:80:0b:c2:b4:81:a0:d8:66:62:58:55:06:1b:0a:fd:
b5:ec:e6:e3:97:65:48:8b:60:2e:a5:3b:6b:0f:c3:ba:64:3b:
11:15:82:4b:ea:f1:76:e2:64:70:72:d6:52:3a:b7:b1:f6:17:
8c:cf:d4:67:3d:59:db:51:8e:c4:3f:42:ec:bd:e3:c9:45:5d:
4e:58:75:b5:8c:86:ef:42:06:06:71:0c:98:ba:aa:4f:45:8f:
10:a5:6a:5e:e1:cb:0a:cc:56:ca:1b:27:ce:1c:0b:b4:1b:5d:
99:85:dd:c5:29:9a:c2:3e:94:98:96:a8:97:0a:04:05:09:8b:
f0:3a:9c:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIARKArYTYs2D9mSLXmV1yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZWM1ZDgyYThlYjVkOThjZTc2ZTYxZGFmZTUxNzY2MWZj
NGU2NzUwHhcNMjQwMTAyMDIyOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWI4ZTE1OTQ1Y2Y4OWJkYmI5MmU3NjI3YTkxODkyNDFjNGMyODdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhwyIc2dM//o8F79Shcmis2T68Yum
vVvnW1uTvKIpng8MFMve2W3mZ8QPu2Fp8gTGnydBHR2To7zqTrkIckS4g+oDiujk
kGAc1fZXPdQB4rMF5DUchDDrupLlxF4sjM4/3OozXaurAyLCNhaRtSuCqqDy2DCb
I3xQbl+ULFusaaABzeRmHmcVNg38xeG0gPBOdnZPCuP6ORXGrRSEK2aPuKn1CHNt
0R/sdRfyrGeGnrGVimyhieFxVvtaQ70O5xJE6bxE9HWew06wMx3Y9//JWf3N0pN9
4FuRVVYrgD/ZK1GB7vnA4CF0FpaepdLxsApvN4YOOwgABhrfCutWB61vmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEq44VlFz4m9u5LnYnqRiSQcTCh8MB8GA1UdIwQY
MBaAFEDsXYKo612YznbmHa/lF2YfxOZ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU94ZGdxanJYWmpPZHVZZHItVVhaaF9FNW5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi82N2U3NTUtM2M1NC00NWRiLTg5YjUt
ZGYzMTc0NWNjMjI5LzEvU3JqaFdVWFBpYjI3a3VkaWVwR0pKQnhNS0h3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi82N2U3NTUtM2M1NC00NWRiLTg5YjUtZGYzMTc0NWNjMjI5
LzEvUU94ZGdxanJYWmpPZHVZZHItVVhaaF9FNW5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEJUgwMA0G
CSqGSIb3DQEBCwUAA4IBAQAG6xUbqeMG9ZTRM9n1r8fOMoXJDchuAFEttGLSSl8A
nb6lOz6ex3N5bW+sssR0/Ab32bbzKrvAK14n02cVP/KAL9qFZT0YngG8phJ6ENK6
yYq2/l3NLI2I56RZjjg9OCiY8P5rjPPuCMvc2AlpbD2d19BrhK3xWB41QntQyVV8
qu+AC8K0gaDYZmJYVQYbCv217Objl2VIi2AupTtrD8O6ZDsRFYJL6vF24mRwctZS
Orex9heMz9RnPVnbUY7EP0LsvePJRV1OWHW1jIbvQgYGcQyYuqpPRY8QpWpe4csK
zFbKGyfOHAu0G12Zhd3FKZrCPpSYlqiXCgQFCYvwOpzq
-----END CERTIFICATE-----
Generated at Tue Nov 26 17:39:08 2024 by rpki-client on console-ams.rpki-client.org