Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/plyV6WMwS_bB-vdSosAUGPQHvJI.roa
File: plyV6WMwS_bB-vdSosAUGPQHvJI.roa (raw, json)
Hash identifier: nbBtBVwUjI+q+iG3lzv/KorTCOC1aWcVnUR+a+lJz+4=
Subject key identifier: A6:5C:95:E9:63:30:4B:F6:C1:FA:F7:52:A2:C0:14:18:F4:07:BC:92
Certificate issuer: /CN=465ef7bd2eb3dcdbab04908380d48a8f2febc62c
Certificate serial: 018CC6B933C503DE156510F9B58E12704CA6
Authority key identifier: 46:5E:F7:BD:2E:B3:DC:DB:AB:04:90:83:80:D4:8A:8F:2F:EB:C6:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl73vS6z3NurBJCDgNSKjy_rxiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/plyV6WMwS_bB-vdSosAUGPQHvJI.roa
Signing time: Mon 01 Jan 2024 20:31:15 +0000
ROA not before: Mon 01 Jan 2024 20:31:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210955
IP address blocks: 194.113.61.0/24 maxlen: 24
194.113.70.0/24 maxlen: 24
194.113.92.0/24 maxlen: 24
194.113.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/Rl73vS6z3NurBJCDgNSKjy_rxiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/Rl73vS6z3NurBJCDgNSKjy_rxiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Rl73vS6z3NurBJCDgNSKjy_rxiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 04:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:33:c5:03:de:15:65:10:f9:b5:8e:12:70:4c:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465ef7bd2eb3dcdbab04908380d48a8f2febc62c
Validity
Not Before: Jan 1 20:31:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a65c95e963304bf6c1faf752a2c01418f407bc92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f7:fc:1b:33:44:90:c5:19:2b:a5:48:47:0b:
a7:f9:28:3c:9f:77:5f:35:d3:b2:76:32:0c:92:4e:
24:03:0e:d5:d4:2e:a8:84:f3:36:6e:18:8b:d3:c5:
a6:0f:6d:18:9e:c4:8a:b5:1c:51:41:bb:66:c5:88:
56:82:f6:07:1e:8c:9f:9e:f7:31:f1:08:3d:79:5b:
0e:0b:e5:3d:ef:e6:d7:c6:ee:74:fe:32:c7:a9:9e:
95:db:86:80:11:e6:ca:d6:c2:70:08:cf:3c:18:7c:
37:f6:52:49:a0:a1:6f:4f:ab:c0:4c:72:02:af:2c:
7b:5a:13:ff:0e:ce:35:59:dc:f3:b2:f7:66:e0:bc:
1f:3f:7f:2c:5a:1b:34:c2:7a:e1:bb:32:9d:10:b6:
08:27:46:b0:e8:74:fe:fa:12:56:c1:c4:e7:a6:e4:
bb:af:04:69:e8:e8:59:f3:67:4f:15:04:d9:e4:89:
79:1b:11:ba:7f:7c:eb:d2:58:94:4a:b6:05:ce:6a:
56:c9:88:2e:ea:c5:d8:93:a2:da:34:d5:f7:a3:93:
25:21:92:73:5a:31:75:fd:35:c5:5d:21:e5:96:20:
24:12:e4:44:de:c4:d6:cc:1f:05:38:28:a8:98:73:
9f:b3:13:1d:86:03:d6:a3:f5:16:71:19:ec:80:2d:
34:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5C:95:E9:63:30:4B:F6:C1:FA:F7:52:A2:C0:14:18:F4:07:BC:92
X509v3 Authority Key Identifier:
keyid:46:5E:F7:BD:2E:B3:DC:DB:AB:04:90:83:80:D4:8A:8F:2F:EB:C6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl73vS6z3NurBJCDgNSKjy_rxiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/plyV6WMwS_bB-vdSosAUGPQHvJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/Rl73vS6z3NurBJCDgNSKjy_rxiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.61.0/24
194.113.70.0/24
194.113.92.0/24
194.113.114.0/24
Signature Algorithm: sha256WithRSAEncryption
55:02:43:7b:74:cd:9a:c0:4a:26:d3:26:19:02:41:98:aa:8a:
fa:eb:38:c9:61:a0:7f:ee:92:81:9d:bd:be:ec:40:c7:73:95:
ef:10:01:92:2c:ee:02:02:8e:9d:4f:c3:b8:1d:64:46:fb:1f:
30:66:76:03:70:c6:3f:fd:80:3f:c7:d3:d2:4e:cb:6b:49:a4:
70:ec:78:78:30:0b:5b:f0:78:d6:e0:ce:7c:91:a3:b4:fe:a6:
5e:5a:cf:9e:01:94:ae:51:0a:b8:4b:95:36:9c:37:a5:50:7c:
7e:6e:51:ec:53:28:b4:31:6c:fb:3b:5c:bc:1d:ef:00:b9:19:
40:4b:53:58:a3:92:5a:d4:21:69:f7:c8:f7:a3:fe:de:b4:dd:
3a:ed:49:7e:e7:72:fe:88:7b:d3:7d:b2:77:d9:03:4a:ef:e7:
44:86:52:12:0e:a9:3e:fa:79:b6:44:8a:35:1c:27:f0:8a:de:
2d:95:42:d2:d5:56:55:ac:60:a9:ef:20:1a:51:67:c1:6e:d3:
e2:f1:c4:39:35:c9:54:15:b5:a0:3f:e2:88:6f:af:93:55:ed:
df:94:2b:04:6e:ce:48:0d:1d:6b:4b:e6:c2:8a:cf:ab:30:ae:
cd:16:ff:40:8d:64:da:b2:9b:19:75:20:fe:85:36:42:4a:eb:
29:fa:f6:9b
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYzGuTPFA94VZRD5tY4ScEymMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NWVmN2JkMmViM2RjZGJhYjA0OTA4MzgwZDQ4YThmMmZl
YmM2MmMwHhcNMjQwMTAxMjAzMTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjVjOTVlOTYzMzA0YmY2YzFmYWY3NTJhMmMwMTQxOGY0MDdiYzkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/f8GzNEkMUZK6VIRwun+Sg8n3df
NdOydjIMkk4kAw7V1C6ohPM2bhiL08WmD20YnsSKtRxRQbtmxYhWgvYHHoyfnvcx
8Qg9eVsOC+U97+bXxu50/jLHqZ6V24aAEebK1sJwCM88GHw39lJJoKFvT6vATHIC
ryx7WhP/Ds41Wdzzsvdm4LwfP38sWhs0wnrhuzKdELYIJ0aw6HT++hJWwcTnpuS7
rwRp6OhZ82dPFQTZ5Il5GxG6f3zr0liUSrYFzmpWyYgu6sXYk6LaNNX3o5MlIZJz
WjF1/TXFXSHlliAkEuRE3sTWzB8FOCiomHOfsxMdhgPWo/UWcRnsgC00RQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFKZcleljMEv2wfr3UqLAFBj0B7ySMB8GA1UdIwQY
MBaAFEZe970us9zbqwSQg4DUio8v68YsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmw3M3ZTNnozTnVyQkpDRGdOU0tqeV9yeGl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC80MDk5NDktZjIyOS00OThkLTkzMTUt
MzRiNjdkZjdjYjAzLzEvcGx5VjZXTXdTX2JCLXZkU29zQVVHUFFIdkpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC80MDk5NDktZjIyOS00OThkLTkzMTUtMzRiNjdkZjdjYjAz
LzEvUmw3M3ZTNnozTnVyQkpDRGdOU0tqeV9yeGl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAwnE9AwQA
wnFGAwQAwnFcAwQAwnFyMA0GCSqGSIb3DQEBCwUAA4IBAQBVAkN7dM2awEom0yYZ
AkGYqor66zjJYaB/7pKBnb2+7EDHc5XvEAGSLO4CAo6dT8O4HWRG+x8wZnYDcMY/
/YA/x9PSTstrSaRw7Hh4MAtb8HjW4M58kaO0/qZeWs+eAZSuUQq4S5U2nDelUHx+
blHsUyi0MWz7O1y8He8AuRlAS1NYo5Ja1CFp98j3o/7etN067Ul+53L+iHvTfbJ3
2QNK7+dEhlISDqk++nm2RIo1HCfwit4tlULS1VZVrGCp7yAaUWfBbtPi8cQ5NclU
FbWgP+KIb6+TVe3flCsEbs5IDR1rS+bCis+rMK7NFv9AjWTaspsZdSD+hTZCSusp
+vab
-----END CERTIFICATE-----
Generated at Sun Jun 30 12:42:46 2024 by rpki-client on console-fra.rpki-client.org