Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/O7iE2lCEeqi1T31LoFi3ncbBOp0.roa
File: O7iE2lCEeqi1T31LoFi3ncbBOp0.roa (raw, json)
Hash identifier: 8sjHFEbbWEh/v5XlHuNdJrF5ZRvi5zTT1r6GLPaJ3i8=
Subject key identifier: 3B:B8:84:DA:50:84:7A:A8:B5:4F:7D:4B:A0:58:B7:9D:C6:C1:3A:9D
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CC9BC23E0DAC0805C53105DEF11E6A4CC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/O7iE2lCEeqi1T31LoFi3ncbBOp0.roa
Signing time: Tue 02 Jan 2024 10:33:19 +0000
ROA not before: Tue 02 Jan 2024 10:33:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43350
IP address blocks: 45.13.184.0/24 maxlen: 24
84.21.189.0/24 maxlen: 24
84.21.190.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
185.214.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:23:e0:da:c0:80:5c:53:10:5d:ef:11:e6:a4:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 2 10:33:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3bb884da50847aa8b54f7d4ba058b79dc6c13a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:db:19:de:4b:f6:14:10:27:47:f1:9b:28:05:
01:aa:c1:d9:95:5b:23:2e:86:ca:37:ca:39:0c:4d:
75:00:70:66:b1:8d:a8:11:a1:eb:62:29:7b:0d:04:
fc:f1:21:98:e5:14:28:c5:f9:d5:c8:2a:1a:b7:85:
c1:7b:3b:36:52:a4:61:dd:30:0a:27:b3:4b:19:c5:
3f:11:8c:7a:a9:aa:8e:94:98:cf:f5:ee:05:d5:0b:
8c:fb:84:72:8d:6e:be:0b:3a:7e:f4:24:54:ac:51:
84:51:2d:9a:e7:1b:5c:c4:45:34:bb:9d:60:33:ae:
04:b1:51:18:b3:ab:27:15:32:bc:d9:fa:dd:14:c6:
10:c6:02:69:92:24:36:81:bc:bc:e4:7b:e2:bf:a6:
39:54:fc:ab:3e:8c:b7:95:14:51:af:1b:0d:21:2a:
68:c0:4f:06:60:88:48:38:d7:dc:b7:a5:60:ca:2d:
de:9e:f3:c0:41:27:66:b4:f6:61:fc:22:7d:fb:1d:
55:cd:b5:44:62:bd:74:53:89:31:42:b3:d5:4f:e7:
d4:79:e9:08:e9:50:11:3d:1a:7c:96:d7:74:c3:1d:
45:bf:51:7f:71:3f:d3:5b:3f:f2:c7:18:75:8c:f0:
09:00:e9:7f:ef:bd:fc:08:34:65:e6:d9:3a:ec:33:
f6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B8:84:DA:50:84:7A:A8:B5:4F:7D:4B:A0:58:B7:9D:C6:C1:3A:9D
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/O7iE2lCEeqi1T31LoFi3ncbBOp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.184.0/24
45.128.77.0/24
84.21.189.0-84.21.190.255
185.136.204.0/24
185.214.74.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:83:55:85:20:eb:4f:1a:bb:d7:0b:66:b8:55:f9:38:cd:14:
00:4c:c1:2d:90:1d:4f:79:db:af:83:ba:1e:b5:35:5f:12:89:
2c:5a:32:80:0d:72:f6:16:f7:d8:d9:a5:12:50:50:e0:6e:4b:
a8:e3:d1:61:ea:09:0e:f4:93:13:dc:f3:61:8b:d4:c4:c4:1c:
70:6b:40:d7:5d:33:bf:e8:4a:6d:38:60:95:62:17:55:67:da:
bd:b4:58:6c:06:e2:3e:fd:97:91:55:ed:a4:75:e9:88:c5:09:
77:52:6c:35:a9:d7:fc:bd:1b:a5:3d:42:61:7d:e1:37:3a:b1:
29:de:45:f0:73:39:d8:52:8e:b7:75:6e:0a:51:51:62:3e:91:
c0:36:92:c6:07:d5:48:5a:f4:8f:07:e9:c6:8d:21:a3:9b:39:
b1:3d:2d:e6:35:1c:57:7f:a6:e1:f1:82:31:7e:22:39:4a:b8:
9c:90:ba:90:4d:e9:bb:89:ce:9c:9d:30:f4:62:5f:3d:68:b0:
3e:2c:4f:4f:22:65:f5:77:4b:6f:18:4a:51:91:6b:6f:62:68:
d7:07:07:8e:39:62:31:0d:08:a7:a6:25:b1:87:93:d5:94:e6:
ff:8b:0d:31:6b:41:88:4a:32:2c:d3:46:77:83:8b:08:30:73:
77:34:5f:8d
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYzJvCPg2sCAXFMQXe8R5qTMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwMTAyMTAzMzE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYmI4ODRkYTUwODQ3YWE4YjU0ZjdkNGJhMDU4Yjc5ZGM2YzEzYTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA09sZ3kv2FBAnR/GbKAUBqsHZlVsj
LobKN8o5DE11AHBmsY2oEaHrYil7DQT88SGY5RQoxfnVyCoat4XBezs2UqRh3TAK
J7NLGcU/EYx6qaqOlJjP9e4F1QuM+4RyjW6+Czp+9CRUrFGEUS2a5xtcxEU0u51g
M64EsVEYs6snFTK82frdFMYQxgJpkiQ2gby85Hviv6Y5VPyrPoy3lRRRrxsNISpo
wE8GYIhIONfct6Vgyi3envPAQSdmtPZh/CJ9+x1VzbVEYr10U4kxQrPVT+fUeekI
6VARPRp8ltd0wx1Fv1F/cT/TWz/yxxh1jPAJAOl/7738CDRl5tk67DP2uwIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFDu4hNpQhHqotU99S6BYt53GwTqdMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvTzdpRTJsQ0VlcWkxVDMxTG9GaTNuY2JCT3AwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQALQ24AwQA
LYBNMAwDBABUFb0DBABUFb4DBAC5iMwDBAC51kowDQYJKoZIhvcNAQELBQADggEB
AMqDVYUg608au9cLZrhV+TjNFABMwS2QHU9526+Duh61NV8SiSxaMoANcvYW99jZ
pRJQUOBuS6jj0WHqCQ70kxPc82GL1MTEHHBrQNddM7/oSm04YJViF1Vn2r20WGwG
4j79l5FV7aR16YjFCXdSbDWp1/y9G6U9QmF94Tc6sSneRfBzOdhSjrd1bgpRUWI+
kcA2ksYH1Uha9I8H6caNIaObObE9LeY1HFd/puHxgjF+IjlKuJyQupBN6buJzpyd
MPRiXz1osD4sT08iZfV3S28YSlGRa29iaNcHB445YjENCKemJbGHk9WU5v+LDTFr
QYhKMizTRneDiwgwc3c0X40=
-----END CERTIFICATE-----
Generated at Sun May 5 14:36:14 2024 by rpki-client on console-ams.rpki-client.org