Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8xEJDLrqYxbmsoHud8_STf0yKRM.roa
File: 8xEJDLrqYxbmsoHud8_STf0yKRM.roa (raw, json)
Hash identifier: K53RV+W487BcTdM+rvdiO/R1qGkJUNw0/+cwGTZZXxI=
Subject key identifier: F3:11:09:0C:BA:EA:63:16:E6:B2:81:EE:77:CF:D2:4D:FD:32:29:13
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018CC26D64930041283E81390675BCA40B27
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8xEJDLrqYxbmsoHud8_STf0yKRM.roa
Signing time: Mon 01 Jan 2024 00:29:58 +0000
ROA not before: Mon 01 Jan 2024 00:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201384
IP address blocks: 46.10.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:64:93:00:41:28:3e:81:39:06:75:bc:a4:0b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 00:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f311090cbaea6316e6b281ee77cfd24dfd322913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f2:d2:0a:af:6c:7f:fc:28:2c:f8:6b:d9:ab:
52:a6:4b:da:84:bd:88:89:2b:6c:a3:7b:93:3b:03:
fe:4d:e0:fd:63:af:c2:f0:72:de:62:7f:80:c6:48:
a9:48:8e:25:6b:81:d2:1e:ff:68:94:d1:5c:58:75:
8c:be:fc:7f:32:ef:6e:44:69:0c:53:36:9b:07:de:
48:03:d9:3e:a7:2e:49:12:c7:72:f5:eb:80:17:21:
59:f9:ad:91:21:82:35:02:df:05:55:4c:f3:f6:37:
f7:3d:f0:eb:4c:91:e9:e5:d9:4e:82:e0:1c:d3:cf:
e1:5f:49:1d:55:da:4f:43:6d:76:94:85:d2:1f:8d:
48:9e:61:ba:0a:0b:72:8a:d2:02:b6:6b:50:7e:2a:
64:52:c3:ef:be:90:69:29:51:a0:11:ed:f3:f3:4c:
30:ea:31:34:94:46:96:76:94:8d:e2:3b:94:d7:4f:
12:c0:83:7b:fe:5a:51:f0:7e:23:99:ae:45:71:0b:
f8:0c:92:d4:5e:02:c7:3b:a1:03:a6:a0:57:23:e1:
b0:f2:43:17:92:d5:cd:2c:46:aa:af:6d:98:50:dd:
39:2c:fc:b2:f9:a7:f2:4b:33:86:c2:e4:94:8a:89:
38:92:a3:c1:a8:38:3e:48:4b:08:0e:c3:b3:1c:f8:
13:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:11:09:0C:BA:EA:63:16:E6:B2:81:EE:77:CF:D2:4D:FD:32:29:13
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8xEJDLrqYxbmsoHud8_STf0yKRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.176.0/24
Signature Algorithm: sha256WithRSAEncryption
95:8f:73:45:d8:8e:a1:08:f5:ec:14:5e:08:82:ff:52:18:61:
66:65:27:57:51:44:14:52:bc:76:62:d1:fd:16:f9:87:86:fe:
51:73:fe:a1:54:c5:d5:84:50:a8:3b:9e:18:6c:38:6c:0a:c4:
ff:9b:de:f0:d1:42:69:14:82:ea:78:21:64:de:20:40:9d:eb:
7e:2a:d3:57:b3:67:36:fd:7e:59:56:ef:4e:74:58:9e:14:8d:
c9:cd:94:19:e9:3a:4f:f0:64:48:a5:59:f1:55:d7:81:f9:fc:
ec:a5:d9:92:0a:8b:55:1a:70:f8:d1:b2:3d:78:c8:d7:03:81:
f6:d7:6d:a0:93:66:c4:39:4e:ac:23:7e:29:90:2c:7f:19:b3:
ba:72:1c:cb:dc:7c:40:a1:7c:fd:4a:5e:f5:06:0f:35:5e:b2:
42:cf:21:ae:79:ad:94:9a:73:61:3d:f8:b0:44:9c:72:4b:48:
15:6c:36:04:65:ce:41:ba:a6:9c:5e:b2:cd:cc:fb:3a:b8:24:
d9:7a:b5:c5:16:02:21:3f:ec:71:ab:30:fb:67:63:46:81:82:
a3:eb:1f:96:d5:68:f9:b2:16:00:47:16:ca:53:58:09:f0:3c:
ce:99:be:bc:b0:fc:70:50:27:53:61:7f:98:77:bf:0a:16:d9:
41:e5:9f:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzCbWSTAEEoPoE5BnW8pAsnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjQwMTAxMDAyOTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzExMDkwY2JhZWE2MzE2ZTZiMjgxZWU3N2NmZDI0ZGZkMzIyOTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPLSCq9sf/woLPhr2atSpkvahL2I
iStso3uTOwP+TeD9Y6/C8HLeYn+AxkipSI4la4HSHv9olNFcWHWMvvx/Mu9uRGkM
UzabB95IA9k+py5JEsdy9euAFyFZ+a2RIYI1At8FVUzz9jf3PfDrTJHp5dlOguAc
08/hX0kdVdpPQ212lIXSH41InmG6CgtyitICtmtQfipkUsPvvpBpKVGgEe3z80ww
6jE0lEaWdpSN4juU108SwIN7/lpR8H4jma5FcQv4DJLUXgLHO6EDpqBXI+Gw8kMX
ktXNLEaqr22YUN05LPyy+afySzOGwuSUiok4kqPBqDg+SEsIDsOzHPgT2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPMRCQy66mMW5rKB7nfP0k39MikTMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvOHhFSkRMcnFZeGJtc29IdWQ4X1NUZjB5S1JNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALgqwMA0G
CSqGSIb3DQEBCwUAA4IBAQCVj3NF2I6hCPXsFF4Igv9SGGFmZSdXUUQUUrx2YtH9
FvmHhv5Rc/6hVMXVhFCoO54YbDhsCsT/m97w0UJpFILqeCFk3iBAnet+KtNXs2c2
/X5ZVu9OdFieFI3JzZQZ6TpP8GRIpVnxVdeB+fzspdmSCotVGnD40bI9eMjXA4H2
122gk2bEOU6sI34pkCx/GbO6chzL3HxAoXz9Sl71Bg81XrJCzyGuea2UmnNhPfiw
RJxyS0gVbDYEZc5BuqacXrLNzPs6uCTZerXFFgIhP+xxqzD7Z2NGgYKj6x+W1Wj5
shYARxbKU1gJ8DzOmb68sPxwUCdTYX+Yd78KFtlB5Z/j
-----END CERTIFICATE-----
Generated at Mon Jun 24 12:11:17 2024 by rpki-client on console-ams.rpki-client.org