Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/75b06d-6bcb-4b19-aebb-415845dc80fb/1/b7bfBcqxRrYOaQxCTmy3DpTNoko.roa
File: b7bfBcqxRrYOaQxCTmy3DpTNoko.roa (raw, json)
Hash identifier: ANIeA+s4i+JCxAPf3Wv/85cf5FnhBGArKOdjsGDqmRw=
Subject key identifier: 6F:B6:DF:05:CA:B1:46:B6:0E:69:0C:42:4E:6C:B7:0E:94:CD:A2:4A
Certificate issuer: /CN=6e63d6d312d65ee4ea28daf43afcc86eced4080f
Certificate serial: 018EA377DB61AB884669D8013B4C4D182008
Authority key identifier: 6E:63:D6:D3:12:D6:5E:E4:EA:28:DA:F4:3A:FC:C8:6E:CE:D4:08:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bmPW0xLWXuTqKNr0OvzIbs7UCA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/75b06d-6bcb-4b19-aebb-415845dc80fb/1/b7bfBcqxRrYOaQxCTmy3DpTNoko.roa
Signing time: Wed 03 Apr 2024 10:18:44 +0000
ROA not before: Wed 03 Apr 2024 10:18:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44032
IP address blocks: 81.162.224.0/24 maxlen: 24
81.162.225.0/24 maxlen: 24
81.162.226.0/24 maxlen: 24
81.162.227.0/24 maxlen: 24
81.162.228.0/24 maxlen: 24
81.162.229.0/24 maxlen: 24
81.162.230.0/24 maxlen: 24
81.162.231.0/24 maxlen: 24
81.162.232.0/24 maxlen: 24
81.162.233.0/24 maxlen: 24
81.162.234.0/24 maxlen: 24
81.162.235.0/24 maxlen: 24
81.162.236.0/24 maxlen: 24
81.162.237.0/24 maxlen: 24
81.162.238.0/24 maxlen: 24
81.162.239.0/24 maxlen: 24
81.162.241.0/24 maxlen: 24
81.162.242.0/24 maxlen: 24
81.162.243.0/24 maxlen: 24
81.162.244.0/24 maxlen: 24
81.162.245.0/24 maxlen: 24
81.162.246.0/24 maxlen: 24
81.162.247.0/24 maxlen: 24
81.162.248.0/24 maxlen: 24
81.162.249.0/24 maxlen: 24
81.162.250.0/24 maxlen: 24
81.162.251.0/24 maxlen: 24
81.162.252.0/24 maxlen: 24
81.162.253.0/24 maxlen: 24
81.162.254.0/24 maxlen: 24
81.162.255.0/24 maxlen: 24
195.2.236.0/24 maxlen: 24
195.2.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/75b06d-6bcb-4b19-aebb-415845dc80fb/1/bmPW0xLWXuTqKNr0OvzIbs7UCA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/75b06d-6bcb-4b19-aebb-415845dc80fb/1/bmPW0xLWXuTqKNr0OvzIbs7UCA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bmPW0xLWXuTqKNr0OvzIbs7UCA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:77:db:61:ab:88:46:69:d8:01:3b:4c:4d:18:20:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e63d6d312d65ee4ea28daf43afcc86eced4080f
Validity
Not Before: Apr 3 10:18:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fb6df05cab146b60e690c424e6cb70e94cda24a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:81:9d:15:af:74:ed:44:93:d6:c9:b3:53:3d:
f1:58:34:61:bf:7f:68:5e:f8:09:b1:95:b1:7b:cf:
23:cd:10:83:53:08:21:7e:ff:55:7e:23:e8:1c:6a:
56:2c:56:59:92:8e:12:6c:87:76:60:2c:42:d0:c9:
56:2b:10:fa:9b:e9:01:3e:ae:e1:eb:b2:ae:d5:40:
2c:98:af:6e:01:b8:4a:4d:73:87:58:a7:40:23:eb:
b1:09:c1:b1:f7:61:14:33:08:07:4f:b5:84:bd:a9:
40:95:49:5c:04:95:a9:75:8c:77:d7:a3:f7:ab:a3:
6f:4e:1b:5a:c4:8b:a9:09:2b:0e:59:68:97:8f:ff:
33:9a:8d:94:3d:cb:a4:a7:54:0e:17:32:77:03:6f:
3e:99:21:7d:10:dd:04:cb:13:a9:4e:8a:fb:47:62:
e9:41:21:ee:e9:13:80:90:88:fd:56:ac:21:98:65:
3e:95:07:26:70:ec:33:f2:72:52:f4:d4:15:f7:a2:
33:a8:0a:f1:f2:ec:da:e5:f1:3a:ea:c8:31:74:52:
b2:63:37:87:46:5d:7e:24:a4:18:09:de:b9:5a:3e:
e4:20:b5:12:b9:c2:b1:d4:26:21:01:2a:d4:87:81:
0d:f1:c0:94:34:77:c6:37:e6:9b:0f:6f:5e:04:03:
65:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B6:DF:05:CA:B1:46:B6:0E:69:0C:42:4E:6C:B7:0E:94:CD:A2:4A
X509v3 Authority Key Identifier:
keyid:6E:63:D6:D3:12:D6:5E:E4:EA:28:DA:F4:3A:FC:C8:6E:CE:D4:08:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bmPW0xLWXuTqKNr0OvzIbs7UCA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/75b06d-6bcb-4b19-aebb-415845dc80fb/1/b7bfBcqxRrYOaQxCTmy3DpTNoko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/75b06d-6bcb-4b19-aebb-415845dc80fb/1/bmPW0xLWXuTqKNr0OvzIbs7UCA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.162.224.0/20
81.162.241.0-81.162.255.255
195.2.236.0/23
Signature Algorithm: sha256WithRSAEncryption
51:8f:b5:4a:27:84:e0:3c:5f:da:f7:53:27:b1:20:b6:b4:00:
a6:20:8c:72:7a:09:11:02:6f:35:78:b9:28:aa:ff:c7:bc:60:
90:2f:ce:c4:8e:6b:c7:88:7a:6d:3c:13:4b:67:c2:63:f3:e0:
3a:7f:7b:2c:8a:f1:64:20:48:76:b8:32:28:53:c6:ae:3e:97:
0f:5d:bf:39:a9:00:06:c2:61:1b:e5:f2:28:9d:29:0d:99:43:
be:bb:71:b4:41:4c:82:0f:db:d6:2d:bd:bf:62:96:8f:50:59:
1b:1e:80:10:ea:8b:b2:b3:b2:9b:9b:e5:5e:ec:47:00:12:4f:
f6:a9:2b:49:26:5c:a0:d4:e8:f8:0a:d1:92:43:22:b3:d2:56:
09:c9:ab:59:7f:af:68:16:b9:07:b0:66:68:5f:4f:81:e1:d9:
3f:16:ba:67:43:7e:9d:2e:f6:fb:9b:82:e4:9d:5c:4b:2c:2d:
f4:59:f6:26:c7:12:e0:ad:87:e4:41:9b:c7:fa:d0:2a:0d:23:
20:e4:1d:f9:20:a7:45:eb:ac:d1:ab:2c:cb:ae:5a:91:8b:e7:
94:fb:7e:e3:78:5e:b1:f6:bb:db:43:dd:28:47:6c:a3:99:98:
e6:30:3e:ca:78:22:37:b8:ec:ce:a1:66:90:9a:1a:e0:c8:70:
d0:18:f7:86
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgISAY6jd9thq4hGadgBO0xNGCAIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlNjNkNmQzMTJkNjVlZTRlYTI4ZGFmNDNhZmNjODZlY2Vk
NDA4MGYwHhcNMjQwNDAzMTAxODQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmI2ZGYwNWNhYjE0NmI2MGU2OTBjNDI0ZTZjYjcwZTk0Y2RhMjRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYGdFa907UST1smzUz3xWDRhv39o
XvgJsZWxe88jzRCDUwghfv9VfiPoHGpWLFZZko4SbId2YCxC0MlWKxD6m+kBPq7h
67Ku1UAsmK9uAbhKTXOHWKdAI+uxCcGx92EUMwgHT7WEvalAlUlcBJWpdYx316P3
q6NvThtaxIupCSsOWWiXj/8zmo2UPcukp1QOFzJ3A28+mSF9EN0EyxOpTor7R2Lp
QSHu6ROAkIj9VqwhmGU+lQcmcOwz8nJS9NQV96IzqArx8uza5fE66sgxdFKyYzeH
Rl1+JKQYCd65Wj7kILUSucKx1CYhASrUh4EN8cCUNHfGN+abD29eBANlQwIDAQAB
o4ICHDCCAhgwHQYDVR0OBBYEFG+23wXKsUa2DmkMQk5stw6UzaJKMB8GA1UdIwQY
MBaAFG5j1tMS1l7k6ija9Dr8yG7O1AgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm1QVzB4TFdYdVRxS05yME92ekliczdVQ0E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS83NWIwNmQtNmJjYi00YjE5LWFlYmIt
NDE1ODQ1ZGM4MGZiLzEvYjdiZkJjcXhScllPYVF4Q1RteTNEcFROb2tvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS83NWIwNmQtNmJjYi00YjE5LWFlYmItNDE1ODQ1ZGM4MGZi
LzEvYm1QVzB4TFdYdVRxS05yME92ekliczdVQ0E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAfBAIAATAZAwQEUaLgMAsD
BABRovEDAwBRogMEAcMC7DANBgkqhkiG9w0BAQsFAAOCAQEAUY+1SieE4Dxf2vdT
J7EgtrQApiCMcnoJEQJvNXi5KKr/x7xgkC/OxI5rx4h6bTwTS2fCY/PgOn97LIrx
ZCBIdrgyKFPGrj6XD12/OakABsJhG+XyKJ0pDZlDvrtxtEFMgg/b1i29v2KWj1BZ
Gx6AEOqLsrOym5vlXuxHABJP9qkrSSZcoNTo+ArRkkMis9JWCcmrWX+vaBa5B7Bm
aF9PgeHZPxa6Z0N+nS72+5uC5J1cSywt9Fn2JscS4K2H5EGbx/rQKg0jIOQd+SCn
Reus0assy65akYvnlPt+43hesfa720PdKEdso5mY5jA+yngiN7jszqFmkJoa4Mhw
0Bj3hg==
-----END CERTIFICATE-----
Generated at Fri Jun 21 17:40:44 2024 by rpki-client on console-fra.rpki-client.org