Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/bubJ4nFPWXH-a0HnPa_tEgZnpcw.roa
File: bubJ4nFPWXH-a0HnPa_tEgZnpcw.roa (raw, json)
Hash identifier: ITU8dN+M7frfDepe6AnHCYG/315Om/TOfSrsVkA0bQA=
Subject key identifier: 6E:E6:C9:E2:71:4F:59:71:FE:6B:41:E7:3D:AF:ED:12:06:67:A5:CC
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 018CC6B8EA8D09D0AF7EA73B3A2E43EE45C6
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/bubJ4nFPWXH-a0HnPa_tEgZnpcw.roa
Signing time: Mon 01 Jan 2024 20:30:56 +0000
ROA not before: Mon 01 Jan 2024 20:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20845
IP address blocks: 89.107.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:ea:8d:09:d0:af:7e:a7:3b:3a:2e:43:ee:45:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Jan 1 20:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ee6c9e2714f5971fe6b41e73dafed120667a5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:a2:74:a5:d9:42:06:3c:7a:5c:6c:52:10:
a4:87:ef:d5:da:3c:9d:9c:48:58:bb:ba:e4:54:ee:
30:b4:b4:dd:62:c4:83:62:3d:6c:fc:5d:d3:d3:5c:
03:eb:be:74:01:d6:cc:da:9a:fd:8c:c2:dd:4f:20:
78:67:a1:f5:ad:97:cc:94:6d:e6:21:34:ab:8e:40:
2f:78:15:73:b4:84:c2:07:2c:7a:13:0d:47:6c:eb:
a9:5a:96:21:6b:97:a4:42:d1:83:d3:a6:01:7d:aa:
bc:b0:f0:4e:fb:21:2e:cd:10:21:10:b5:d5:df:08:
23:2d:7e:99:ce:69:3c:bf:13:f3:b0:52:7b:03:63:
52:57:55:44:76:c3:4d:a6:cd:4d:09:b5:ba:15:89:
06:ae:b9:f2:5f:ba:e3:80:76:77:87:b8:74:4d:ce:
34:94:cc:0a:18:dd:54:f6:c5:7e:61:58:18:76:86:
d1:b3:be:5f:10:6d:2b:32:3c:2e:b6:25:e0:0e:14:
a2:32:b3:86:26:6d:eb:13:f7:3c:20:a4:76:da:57:
5b:60:8c:43:26:86:31:d7:23:8d:ef:f0:72:d4:1d:
55:82:69:c6:29:f5:37:cf:0b:15:6c:7d:bb:75:a6:
cd:67:2c:4d:e5:0c:f8:77:d9:24:b9:f3:e7:87:36:
25:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:E6:C9:E2:71:4F:59:71:FE:6B:41:E7:3D:AF:ED:12:06:67:A5:CC
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/bubJ4nFPWXH-a0HnPa_tEgZnpcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:81:8a:2e:07:4c:4d:76:35:a1:e7:03:e2:e6:91:d6:3c:be:
f1:3d:49:b4:ca:a2:b0:21:14:5e:5e:92:23:ba:8f:69:b3:2c:
a8:8f:02:52:ff:99:3f:0e:5d:78:de:2f:15:3d:21:37:12:84:
f7:90:b0:26:01:2b:37:03:1e:6c:34:34:b0:b2:de:41:22:be:
bc:0a:e6:05:08:87:de:be:9f:be:db:58:0c:d2:95:12:4d:b3:
04:0a:9d:f3:9e:01:74:c6:4b:2c:89:85:c7:3f:b6:95:bd:1d:
44:17:fb:6b:97:14:be:c3:8b:26:3f:14:59:be:92:da:e9:93:
e6:f1:99:19:75:47:af:70:40:36:15:7e:0e:09:46:81:52:b4:
1c:33:8a:2e:fe:71:ac:cd:21:10:a6:74:ec:01:b8:a5:64:30:
92:6b:8b:21:63:71:18:85:2d:87:df:51:7e:ae:7b:78:a5:a8:
de:f2:ae:39:4d:17:45:ae:64:9d:79:eb:12:d9:b5:fd:34:89:
3d:99:d9:ea:98:60:9a:b9:42:58:73:ca:c5:b2:8f:07:26:12:
4b:6b:f2:85:7b:12:f5:4b:e2:1a:4e:3b:5d:f1:2d:1b:c2:7b:
7d:73:be:d0:76:71:d0:09:9d:3a:3c:6b:30:8c:05:96:8a:71:
c7:67:3c:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGuOqNCdCvfqc7Oi5D7kXGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5YjM1MGEwYWUzMmU3M2U2NjBjNDE2YzNmMTQwNmVkZDM2
MTVmODIwHhcNMjQwMTAxMjAzMDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWU2YzllMjcxNGY1OTcxZmU2YjQxZTczZGFmZWQxMjA2NjdhNWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzKidKXZQgY8elxsUhCkh+/V2jyd
nEhYu7rkVO4wtLTdYsSDYj1s/F3T01wD6750AdbM2pr9jMLdTyB4Z6H1rZfMlG3m
ITSrjkAveBVztITCByx6Ew1HbOupWpYha5ekQtGD06YBfaq8sPBO+yEuzRAhELXV
3wgjLX6Zzmk8vxPzsFJ7A2NSV1VEdsNNps1NCbW6FYkGrrnyX7rjgHZ3h7h0Tc40
lMwKGN1U9sV+YVgYdobRs75fEG0rMjwutiXgDhSiMrOGJm3rE/c8IKR22ldbYIxD
JoYx1yON7/By1B1VgmnGKfU3zwsVbH27dabNZyxN5Qz4d9kkufPnhzYl/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG7myeJxT1lx/mtB5z2v7RIGZ6XMMB8GA1UdIwQY
MBaAFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2Et
ZWY3M2I3YjRjYTNjLzEvYnViSjRuRlBXWEgtYTBIblBhX3RFZ1pucGN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2EtZWY3M2I3YjRjYTNj
LzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWWv4MA0G
CSqGSIb3DQEBCwUAA4IBAQBegYouB0xNdjWh5wPi5pHWPL7xPUm0yqKwIRReXpIj
uo9psyyojwJS/5k/Dl143i8VPSE3EoT3kLAmASs3Ax5sNDSwst5BIr68CuYFCIfe
vp++21gM0pUSTbMECp3zngF0xkssiYXHP7aVvR1EF/trlxS+w4smPxRZvpLa6ZPm
8ZkZdUevcEA2FX4OCUaBUrQcM4ou/nGszSEQpnTsAbilZDCSa4shY3EYhS2H31F+
rnt4paje8q45TRdFrmSdeesS2bX9NIk9mdnqmGCauUJYc8rFso8HJhJLa/KFexL1
S+IaTjtd8S0bwnt9c77QdnHQCZ06PGswjAWWinHHZzy/
-----END CERTIFICATE-----
Generated at Sat Jun 8 02:51:19 2024 by rpki-client on console-ams.rpki-client.org