Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/M2D1icREaoI4PC7SDqIbXPy74iE.roa
File: M2D1icREaoI4PC7SDqIbXPy74iE.roa (raw, json)
Hash identifier: Z2gKwRfNLVEfzBdDGV2KDKu42ujlftyV+IbGhmbeh/A=
Subject key identifier: 33:60:F5:89:C4:44:6A:82:38:3C:2E:D2:0E:A2:1B:5C:FC:BB:E2:21
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018F6D42AB2BB9EBB05ADD522EE5E4AB4439
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/M2D1icREaoI4PC7SDqIbXPy74iE.roa
Signing time: Sun 12 May 2024 14:43:56 +0000
ROA not before: Sun 12 May 2024 14:43:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210538
IP address blocks: 5.180.104.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6d:42:ab:2b:b9:eb:b0:5a:dd:52:2e:e5:e4:ab:44:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: May 12 14:43:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3360f589c4446a82383c2ed20ea21b5cfcbbe221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:47:f5:77:ec:2b:38:58:83:94:e8:a7:6a:22:
32:94:60:27:56:6e:73:5f:cb:a3:21:19:1d:b8:e4:
db:29:b2:c2:78:a4:a0:62:4e:8f:1b:20:9d:cd:37:
91:f3:ad:cd:15:ba:97:20:4b:db:86:ea:aa:f6:b2:
cf:5a:97:ad:1b:34:67:ca:22:1b:34:e5:be:40:d1:
5d:d4:cc:ec:bd:7a:aa:ca:63:f0:51:c5:e8:4e:5a:
7a:c0:03:c7:fd:1f:fb:68:15:0f:ff:e7:b3:da:5e:
37:48:88:71:09:8a:1f:e1:03:0a:36:3f:2d:22:7f:
cd:83:c8:82:a4:3c:86:2a:35:f3:5d:9c:f6:2c:a3:
c0:e9:37:ae:fb:d7:ea:b5:00:23:9c:44:9a:44:9b:
ae:6a:7c:11:9f:15:d4:1a:f0:18:37:f0:7d:c8:21:
7a:0f:c4:67:1a:fb:7b:84:c9:9b:d9:1e:69:e5:94:
86:25:e0:cb:09:09:55:ad:9e:f7:f6:23:c6:55:55:
c2:30:5c:86:f5:4f:79:bc:32:8d:ef:4f:18:ea:17:
6e:28:7c:bc:8f:9c:81:ac:4d:d5:e5:f4:1d:f5:d4:
31:c3:32:d4:cf:fb:b5:50:f6:b8:52:75:77:7d:74:
a3:c1:0b:9a:d3:49:ea:bf:e4:13:63:fa:88:3a:30:
04:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:60:F5:89:C4:44:6A:82:38:3C:2E:D2:0E:A2:1B:5C:FC:BB:E2:21
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/M2D1icREaoI4PC7SDqIbXPy74iE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
45.141.150.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f5:cd:ff:56:b7:73:dd:87:e6:aa:93:a6:b3:1c:ea:6f:6f:
f0:f6:54:7d:5b:df:09:e5:fa:1f:eb:2f:d3:fd:ff:27:a5:84:
40:25:95:92:c2:b1:ed:cc:f6:02:2c:a2:ca:45:c1:56:95:34:
aa:fe:16:ef:69:d4:aa:fd:89:d2:83:cb:ba:00:1e:0b:bb:bf:
f3:53:3b:92:f5:28:55:7b:4b:2a:c7:85:ed:12:b9:b0:da:f2:
b2:85:ff:f5:2b:25:22:31:41:95:9f:c5:7f:77:46:06:1a:3f:
dc:b1:0a:c9:69:f0:13:e3:96:de:d9:f2:ab:7e:3f:f8:24:cb:
bf:19:c0:39:57:14:47:50:86:b0:09:bd:80:01:92:43:c6:a0:
bc:a7:da:39:16:90:8f:3d:b4:68:18:f7:bb:41:04:8d:26:28:
13:d5:61:bd:db:aa:75:2b:eb:27:7f:5a:0c:7b:70:6e:d2:85:
3d:b6:35:49:32:34:87:df:9e:0e:98:0a:9e:bb:04:da:4b:78:
5e:3f:5c:c8:b7:fa:e5:9c:c8:f8:6b:14:dc:64:2b:00:46:8d:
bd:15:ce:87:9e:28:7a:e6:30:39:3f:67:f9:3e:ed:6f:5b:04:
45:72:66:ac:82:a7:df:ce:2f:eb:b3:55:78:e2:0c:25:8b:c5:
c5:f1:62:51
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY9tQqsrueuwWt1SLuXkq0Q5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQwNTEyMTQ0MzU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzYwZjU4OWM0NDQ2YTgyMzgzYzJlZDIwZWEyMWI1Y2ZjYmJlMjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0f1d+wrOFiDlOinaiIylGAnVm5z
X8ujIRkduOTbKbLCeKSgYk6PGyCdzTeR863NFbqXIEvbhuqq9rLPWpetGzRnyiIb
NOW+QNFd1MzsvXqqymPwUcXoTlp6wAPH/R/7aBUP/+ez2l43SIhxCYof4QMKNj8t
In/Ng8iCpDyGKjXzXZz2LKPA6Teu+9fqtQAjnESaRJuuanwRnxXUGvAYN/B9yCF6
D8RnGvt7hMmb2R5p5ZSGJeDLCQlVrZ739iPGVVXCMFyG9U95vDKN708Y6hduKHy8
j5yBrE3V5fQd9dQxwzLUz/u1UPa4UnV3fXSjwQua00nqv+QTY/qIOjAEwQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDNg9YnERGqCODwu0g6iG1z8u+IhMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvTTJEMWljUkVhb0k0UEM3U0RxSWJYUHk3NGlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABbRoAwQA
LY2WMA0GCSqGSIb3DQEBCwUAA4IBAQAr9c3/Vrdz3YfmqpOmsxzqb2/w9lR9W98J
5fof6y/T/f8npYRAJZWSwrHtzPYCLKLKRcFWlTSq/hbvadSq/YnSg8u6AB4Lu7/z
UzuS9ShVe0sqx4XtErmw2vKyhf/1KyUiMUGVn8V/d0YGGj/csQrJafAT45be2fKr
fj/4JMu/GcA5VxRHUIawCb2AAZJDxqC8p9o5FpCPPbRoGPe7QQSNJigT1WG926p1
K+snf1oMe3Bu0oU9tjVJMjSH354OmAqeuwTaS3heP1zIt/rlnMj4axTcZCsARo29
Fc6Hnih65jA5P2f5Pu1vWwRFcmasgqffzi/rs1V44gwli8XF8WJR
-----END CERTIFICATE-----
Generated at Mon Jun 17 10:17:07 2024 by rpki-client on console-ams.rpki-client.org