Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0251f2-a1bb-44fb-b908-48d5ff4ba255/1/uyPP9Cy4j_1C2uUAvs8RY70q2Rk.roa
File: uyPP9Cy4j_1C2uUAvs8RY70q2Rk.roa (raw, json)
Hash identifier: 1nUlX07lN7NlMAgs0z2YZaZQVm5lKn1DTFtU74yAIzo=
Subject key identifier: BB:23:CF:F4:2C:B8:8F:FD:42:DA:E5:00:BE:CF:11:63:BD:2A:D9:19
Certificate issuer: /CN=9a24b27d9f3df6e14ebc79e146e8be32754bf800
Certificate serial: 018FF28BED238647639E8ED39B1C591505ED
Authority key identifier: 9A:24:B2:7D:9F:3D:F6:E1:4E:BC:79:E1:46:E8:BE:32:75:4B:F8:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/miSyfZ899uFOvHnhRui-MnVL-AA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0251f2-a1bb-44fb-b908-48d5ff4ba255/1/uyPP9Cy4j_1C2uUAvs8RY70q2Rk.roa
Signing time: Fri 07 Jun 2024 11:53:27 +0000
ROA not before: Fri 07 Jun 2024 11:53:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209854
IP address blocks: 92.249.36.0/24 maxlen: 24
92.249.37.0/24 maxlen: 24
92.249.38.0/24 maxlen: 24
92.249.39.0/24 maxlen: 24
203.21.66.0/24 maxlen: 24
2a09:a700::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0251f2-a1bb-44fb-b908-48d5ff4ba255/1/miSyfZ899uFOvHnhRui-MnVL-AA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0251f2-a1bb-44fb-b908-48d5ff4ba255/1/miSyfZ899uFOvHnhRui-MnVL-AA.mft
rsync://rpki.ripe.net/repository/DEFAULT/miSyfZ899uFOvHnhRui-MnVL-AA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f2:8b:ed:23:86:47:63:9e:8e:d3:9b:1c:59:15:05:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a24b27d9f3df6e14ebc79e146e8be32754bf800
Validity
Not Before: Jun 7 11:53:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb23cff42cb88ffd42dae500becf1163bd2ad919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:81:db:85:fa:14:bc:cb:6f:96:b7:a8:80:d4:
35:ee:d5:64:e1:0c:e4:31:9f:97:a7:fa:95:73:92:
66:f8:9f:2d:76:fc:0b:d7:4f:3e:7b:35:36:11:ae:
43:24:85:74:a4:0c:6f:c4:ba:3a:59:28:96:f0:78:
c0:e2:65:36:08:01:09:17:a7:5b:c5:ee:3a:d5:7f:
07:b4:e7:b2:01:64:4b:9b:e1:58:8f:99:7b:38:47:
d9:a3:64:e8:4e:fe:5a:c6:14:89:a3:91:05:d2:d0:
63:4d:ab:4d:92:6a:56:f6:3e:47:ab:51:c6:84:7e:
94:2b:8d:0b:f5:70:ba:ba:91:02:69:1f:a2:16:da:
ad:3c:6d:e5:bd:25:3e:cc:63:2f:79:41:13:28:c4:
15:9b:37:36:35:57:ad:53:99:e3:5a:13:d2:bf:fc:
f1:f5:21:8e:b6:92:85:ec:d4:7a:15:32:01:51:af:
99:70:0f:c7:3b:38:59:66:76:7c:28:d0:36:ac:ed:
fd:f6:7e:35:69:1b:79:f6:0f:fd:ee:05:4d:5c:4f:
66:15:af:5f:bd:c4:e0:d5:08:80:47:74:50:87:04:
e8:15:20:76:98:77:8f:87:be:1f:43:4a:1c:68:a5:
ea:0a:f0:21:36:cd:cc:e3:bf:c5:69:6c:4d:72:aa:
bd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:23:CF:F4:2C:B8:8F:FD:42:DA:E5:00:BE:CF:11:63:BD:2A:D9:19
X509v3 Authority Key Identifier:
keyid:9A:24:B2:7D:9F:3D:F6:E1:4E:BC:79:E1:46:E8:BE:32:75:4B:F8:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miSyfZ899uFOvHnhRui-MnVL-AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0251f2-a1bb-44fb-b908-48d5ff4ba255/1/uyPP9Cy4j_1C2uUAvs8RY70q2Rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0251f2-a1bb-44fb-b908-48d5ff4ba255/1/miSyfZ899uFOvHnhRui-MnVL-AA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.36.0/22
203.21.66.0/24
IPv6:
2a09:a700::/29
Signature Algorithm: sha256WithRSAEncryption
12:e0:e0:fd:c2:2f:39:0d:82:32:c0:11:87:8a:f8:ff:e5:8e:
a8:58:3f:15:66:7b:27:98:09:c9:b0:a2:6c:43:7f:87:50:48:
9e:bd:0b:51:05:c7:36:72:10:fa:01:e4:5d:c3:ef:4e:17:77:
c0:7c:e2:22:9b:09:8d:81:d8:1d:3d:4b:10:0d:17:71:53:81:
5e:6c:b1:73:7e:45:f4:e6:3c:6c:ea:aa:33:7f:fd:f3:d3:0f:
3d:f3:ac:22:d9:19:17:a6:da:04:3c:48:f6:38:a9:5f:5b:61:
ff:15:11:1e:12:1d:ea:04:69:70:9c:93:9c:d9:28:b6:74:75:
40:37:25:e1:16:ab:b6:39:19:ea:c0:29:b3:af:3f:04:8c:f0:
39:01:30:9e:f3:6b:30:60:04:13:5a:0b:58:61:ef:c9:00:4d:
99:d9:44:86:7a:5e:4a:34:20:45:27:b0:2a:66:ba:11:3b:ea:
6c:e7:7a:99:5d:07:7b:a6:dd:72:e9:88:ce:59:60:25:3e:d8:
28:61:b9:c4:b0:54:f1:8b:b8:16:b1:a7:b5:d2:8f:4f:5b:68:
7b:25:07:70:88:cf:9c:88:d9:77:93:18:50:c4:05:97:00:2a:
74:26:24:e0:4a:ba:30:64:3e:eb:92:d1:7f:ed:00:92:69:2f:
f6:64:69:00
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAY/yi+0jhkdjno7TmxxZFQXtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhMjRiMjdkOWYzZGY2ZTE0ZWJjNzllMTQ2ZThiZTMyNzU0
YmY4MDAwHhcNMjQwNjA3MTE1MzI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjIzY2ZmNDJjYjg4ZmZkNDJkYWU1MDBiZWNmMTE2M2JkMmFkOTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oHbhfoUvMtvlreogNQ17tVk4Qzk
MZ+Xp/qVc5Jm+J8tdvwL108+ezU2Ea5DJIV0pAxvxLo6WSiW8HjA4mU2CAEJF6db
xe461X8HtOeyAWRLm+FYj5l7OEfZo2ToTv5axhSJo5EF0tBjTatNkmpW9j5Hq1HG
hH6UK40L9XC6upECaR+iFtqtPG3lvSU+zGMveUETKMQVmzc2NVetU5njWhPSv/zx
9SGOtpKF7NR6FTIBUa+ZcA/HOzhZZnZ8KNA2rO399n41aRt59g/97gVNXE9mFa9f
vcTg1QiAR3RQhwToFSB2mHePh74fQ0ocaKXqCvAhNs3M47/FaWxNcqq9XQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFLsjz/QsuI/9QtrlAL7PEWO9KtkZMB8GA1UdIwQY
MBaAFJoksn2fPfbhTrx54UbovjJ1S/gAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWlTeWZaODk5dUZPdkhuaFJ1aS1NblZMLUFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wMjUxZjItYTFiYi00NGZiLWI5MDgt
NDhkNWZmNGJhMjU1LzEvdXlQUDlDeTRqXzFDMnVVQXZzOFJZNzBxMlJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8wMjUxZjItYTFiYi00NGZiLWI5MDgtNDhkNWZmNGJhMjU1
LzEvbWlTeWZaODk5dUZPdkhuaFJ1aS1NblZMLUFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCXPkkAwQA
yxVCMA0EAgACMAcDBQMqCacAMA0GCSqGSIb3DQEBCwUAA4IBAQAS4OD9wi85DYIy
wBGHivj/5Y6oWD8VZnsnmAnJsKJsQ3+HUEievQtRBcc2chD6AeRdw+9OF3fAfOIi
mwmNgdgdPUsQDRdxU4FebLFzfkX05jxs6qozf/3z0w8986wi2RkXptoEPEj2OKlf
W2H/FREeEh3qBGlwnJOc2Si2dHVANyXhFqu2ORnqwCmzrz8EjPA5ATCe82swYAQT
WgtYYe/JAE2Z2USGel5KNCBFJ7AqZroRO+ps53qZXQd7pt1y6YjOWWAlPtgoYbnE
sFTxi7gWsae10o9PW2h7JQdwiM+ciNl3kxhQxAWXACp0JiTgSrowZD7rktF/7QCS
aS/2ZGkA
-----END CERTIFICATE-----
Generated at Sun Jun 23 01:45:34 2024 by rpki-client on console-fra.rpki-client.org