Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/iOqZl-oV7C7HL-aOjU1N-qaJHKs.roa
File: iOqZl-oV7C7HL-aOjU1N-qaJHKs.roa (raw, json)
Hash identifier: C2Y3Op3ydrtcH4bB2ybz/LxFrU79pXKGc1jr/AG5S78=
Subject key identifier: 88:EA:99:97:EA:15:EC:2E:C7:2F:E6:8E:8D:4D:4D:FA:A6:89:1C:AB
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 0192052AE0E4CD89B284777F44855A43F14E
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/iOqZl-oV7C7HL-aOjU1N-qaJHKs.roa
Signing time: Wed 18 Sep 2024 12:45:48 +0000
ROA not before: Wed 18 Sep 2024 12:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 46.244.18.0/23 maxlen: 24
46.244.18.0/24 maxlen: 24
46.244.19.0/24 maxlen: 24
46.244.97.0/24 maxlen: 24
46.244.108.0/23 maxlen: 24
46.244.108.0/24 maxlen: 24
46.244.109.0/24 maxlen: 24
46.244.110.0/24 maxlen: 24
46.244.111.0/24 maxlen: 24
46.244.114.0/23 maxlen: 24
46.244.114.0/24 maxlen: 24
46.244.115.0/24 maxlen: 24
92.240.144.0/22 maxlen: 24
92.240.149.0/24 maxlen: 24
92.240.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:05:2a:e0:e4:cd:89:b2:84:77:7f:44:85:5a:43:f1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Sep 18 12:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88ea9997ea15ec2ec72fe68e8d4d4dfaa6891cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e0:55:0b:ce:c1:08:29:35:a6:34:a5:d7:50:
c7:88:65:89:29:b6:45:66:aa:24:8c:15:31:e7:08:
8f:06:c6:f5:db:7c:57:ce:e6:1f:e9:48:12:a7:bb:
dc:1e:2c:9a:3c:6f:0b:45:34:45:fd:5e:da:97:60:
b7:0d:e1:9f:33:6a:05:4b:d7:2f:ed:3b:6b:af:43:
3d:60:0c:85:86:19:15:ee:79:80:3e:61:89:b7:61:
55:be:4e:b4:d1:cd:b5:06:83:6a:11:f2:ee:c0:e2:
83:96:d7:0d:a2:1e:56:4f:a1:7c:3a:2d:f4:7c:fa:
92:56:29:f4:1b:5a:dd:be:5c:2c:90:f9:c4:66:e8:
8d:a7:61:9e:51:ca:65:ab:6c:e5:35:e2:c5:fa:81:
be:ae:1a:cc:93:ba:44:2f:0e:29:da:74:07:79:94:
14:81:64:8a:8d:3f:6f:d0:2a:47:97:07:0e:6c:f9:
4c:0a:63:15:9d:62:11:d4:92:f2:77:0d:85:df:3f:
8e:d0:92:15:38:0c:b1:01:d9:72:b0:eb:64:7f:95:
4e:7e:f5:46:ab:33:ff:cf:24:cd:cd:22:a7:00:4a:
c9:af:25:29:d9:86:e4:b3:a8:01:96:bd:04:63:05:
88:46:22:53:08:8b:5d:33:29:77:68:0d:1e:c5:08:
59:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:EA:99:97:EA:15:EC:2E:C7:2F:E6:8E:8D:4D:4D:FA:A6:89:1C:AB
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/iOqZl-oV7C7HL-aOjU1N-qaJHKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.244.18.0/23
46.244.97.0/24
46.244.108.0/22
46.244.114.0/23
92.240.144.0/22
92.240.149.0/24
92.240.151.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f7:55:01:51:21:ad:28:e3:6e:04:99:7e:04:a0:02:27:a4:
bb:5d:46:0c:71:4a:1d:a8:d5:4d:29:b2:cd:38:15:22:1c:86:
9f:f0:1b:78:86:f9:29:a4:1f:1f:7e:f3:6f:37:d4:9c:a2:25:
3a:f5:c8:96:ac:8f:ee:18:75:50:6a:97:c0:f3:ab:2c:1a:2b:
65:07:44:31:f5:78:66:c9:e6:b3:10:97:10:33:00:43:9e:22:
3e:22:57:da:e6:b0:1d:25:64:c8:b8:13:13:d7:1e:aa:76:ad:
2a:7d:dc:35:4a:9c:40:cd:b7:30:87:1b:9c:bb:9f:3c:42:5c:
29:37:0b:80:ac:96:91:26:26:be:1a:6f:14:b5:61:67:93:30:
e6:f7:8a:70:50:1c:c1:2e:19:91:e9:ba:30:e4:9e:32:0d:f0:
1c:14:08:1f:30:15:5b:0a:2e:d1:03:66:d2:52:79:a9:b7:c5:
c3:9d:e2:57:c7:e7:0c:11:05:65:1b:21:74:cc:e8:07:7c:d3:
7c:82:54:e4:f1:d3:18:1f:de:be:28:25:0b:15:48:9f:2c:85:
97:b1:9b:d0:d6:cc:20:f3:5f:cd:60:9e:f4:7c:91:74:ac:27:
1a:e5:f1:44:b7:af:57:02:bc:2f:41:22:f5:c7:af:d4:1e:7f:
11:ff:ab:61
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAZIFKuDkzYmyhHd/RIVaQ/FOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlNjI2YzkwOWViNDk1MTE1NGJjZWU4MjIxZTQzOTUxYjQy
NTc2MjQwHhcNMjQwOTE4MTI0NTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGVhOTk5N2VhMTVlYzJlYzcyZmU2OGU4ZDRkNGRmYWE2ODkxY2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuBVC87BCCk1pjSl11DHiGWJKbZF
ZqokjBUx5wiPBsb123xXzuYf6UgSp7vcHiyaPG8LRTRF/V7al2C3DeGfM2oFS9cv
7Ttrr0M9YAyFhhkV7nmAPmGJt2FVvk600c21BoNqEfLuwOKDltcNoh5WT6F8Oi30
fPqSVin0G1rdvlwskPnEZuiNp2GeUcplq2zlNeLF+oG+rhrMk7pELw4p2nQHeZQU
gWSKjT9v0CpHlwcObPlMCmMVnWIR1JLydw2F3z+O0JIVOAyxAdlysOtkf5VOfvVG
qzP/zyTNzSKnAErJryUp2Ybks6gBlr0EYwWIRiJTCItdMyl3aA0exQhZqQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFIjqmZfqFewuxy/mjo1NTfqmiRyrMB8GA1UdIwQY
MBaAFI5ibJCetJURVLzugiHkOVG0JXYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvam1Kc2tKNjBsUkZVdk82Q0llUTVVYlFsZGlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9mZTQyNjYtN2Y1NC00ZmIzLWI4MTAt
ZTk3ZDFkMDIyMGFmLzEvaU9xWmwtb1Y3QzdITC1hT2pVMU4tcWFKSEtzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9mZTQyNjYtN2Y1NC00ZmIzLWI4MTAtZTk3ZDFkMDIyMGFm
LzEvam1Kc2tKNjBsUkZVdk82Q0llUTVVYlFsZGlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBLvQSAwQA
LvRhAwQCLvRsAwQBLvRyAwQCXPCQAwQAXPCVAwQAXPCXMA0GCSqGSIb3DQEBCwUA
A4IBAQAW91UBUSGtKONuBJl+BKACJ6S7XUYMcUodqNVNKbLNOBUiHIaf8Bt4hvkp
pB8ffvNvN9ScoiU69ciWrI/uGHVQapfA86ssGitlB0Qx9XhmyeazEJcQMwBDniI+
Ilfa5rAdJWTIuBMT1x6qdq0qfdw1SpxAzbcwhxucu588QlwpNwuArJaRJia+Gm8U
tWFnkzDm94pwUBzBLhmR6bow5J4yDfAcFAgfMBVbCi7RA2bSUnmpt8XDneJXx+cM
EQVlGyF0zOgHfNN8glTk8dMYH96+KCULFUifLIWXsZvQ1swg81/NYJ70fJF0rCca
5fFEt69XArwvQSL1x6/UHn8R/6th
-----END CERTIFICATE-----
Generated at Fri Nov 22 19:50:32 2024 by rpki-client on console-fra.rpki-client.org