Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/AlvMn_yPKgvyROwezvyWtxIK-kk.roa
File: AlvMn_yPKgvyROwezvyWtxIK-kk.roa (raw, json)
Hash identifier: Iruzz+Ph8s6kqnhbf2bOn6KXM2zHb/ZcMBEYDYbuyfQ=
Subject key identifier: 02:5B:CC:9F:FC:8F:2A:0B:F2:44:EC:1E:CE:FC:96:B7:12:0A:FA:49
Certificate issuer: /CN=6ccf360df9a1f61e23327da0d2c09112e0a9bd69
Certificate serial: 018EBCCF6CF8351CC8992EECF48CA8EAB764
Authority key identifier: 6C:CF:36:0D:F9:A1:F6:1E:23:32:7D:A0:D2:C0:91:12:E0:A9:BD:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM82Dfmh9h4jMn2g0sCREuCpvWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/AlvMn_yPKgvyROwezvyWtxIK-kk.roa
Signing time: Mon 08 Apr 2024 08:24:54 +0000
ROA not before: Mon 08 Apr 2024 08:24:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61315
IP address blocks: 93.101.0.0/20 maxlen: 24
93.101.4.0/24 maxlen: 24
93.101.5.0/24 maxlen: 24
93.101.16.0/20 maxlen: 24
93.101.32.0/20 maxlen: 24
93.101.48.0/20 maxlen: 24
93.101.64.0/20 maxlen: 24
93.101.80.0/20 maxlen: 24
93.101.96.0/20 maxlen: 24
93.101.112.0/20 maxlen: 24
93.101.128.0/20 maxlen: 24
93.101.144.0/20 maxlen: 24
93.101.160.0/20 maxlen: 24
93.101.176.0/20 maxlen: 24
93.101.192.0/20 maxlen: 24
93.101.208.0/20 maxlen: 24
93.101.224.0/20 maxlen: 24
93.101.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/bM82Dfmh9h4jMn2g0sCREuCpvWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/bM82Dfmh9h4jMn2g0sCREuCpvWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bM82Dfmh9h4jMn2g0sCREuCpvWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 05:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:cf:6c:f8:35:1c:c8:99:2e:ec:f4:8c:a8:ea:b7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ccf360df9a1f61e23327da0d2c09112e0a9bd69
Validity
Not Before: Apr 8 08:24:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=025bcc9ffc8f2a0bf244ec1ecefc96b7120afa49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:07:d4:ea:cb:ff:fe:10:31:da:97:0f:ab:19:
cf:3b:0d:8c:87:e5:07:cc:89:dc:68:00:c2:50:30:
53:ff:75:f5:85:56:65:69:0b:1b:c1:cc:da:c0:bc:
10:97:b8:1b:6e:c5:d5:01:62:fe:5b:cf:fe:87:f5:
fa:4c:d2:43:70:33:e5:bf:f1:bb:7a:64:42:06:76:
38:d6:43:ec:9d:35:5e:a9:0d:99:e0:c9:76:3d:bd:
fd:c4:ae:a4:f2:1e:49:7e:db:fc:d1:54:0c:64:d4:
b7:0e:8c:90:b8:cc:37:c3:5a:b4:50:17:50:da:22:
df:52:44:67:85:1d:f1:47:b7:32:cc:e4:de:3e:63:
ae:f7:4c:d4:ab:9f:34:b8:74:a3:09:c5:0c:49:f2:
bc:8a:a3:24:e3:6f:43:ff:58:d3:d6:f2:3b:a0:35:
79:1c:35:e6:e7:c0:0f:24:da:39:83:3a:d6:1a:2f:
10:82:0b:ed:6d:6b:36:a2:ba:55:07:b3:61:1c:22:
18:2e:5c:07:bc:af:98:87:06:d8:e0:bb:96:75:ce:
8a:4f:86:2f:84:1c:6a:6a:d6:d7:47:31:40:29:ad:
92:dd:c7:af:46:ce:4c:9d:ee:75:2e:9b:2f:9b:f1:
a0:0c:08:8b:c3:c5:a5:6e:79:ad:96:cb:81:d5:80:
6a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5B:CC:9F:FC:8F:2A:0B:F2:44:EC:1E:CE:FC:96:B7:12:0A:FA:49
X509v3 Authority Key Identifier:
keyid:6C:CF:36:0D:F9:A1:F6:1E:23:32:7D:A0:D2:C0:91:12:E0:A9:BD:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM82Dfmh9h4jMn2g0sCREuCpvWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/AlvMn_yPKgvyROwezvyWtxIK-kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/bM82Dfmh9h4jMn2g0sCREuCpvWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.101.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:ad:7d:8e:14:64:12:83:4c:15:15:41:95:6f:9c:ac:b8:a4:
af:39:60:5b:59:58:98:49:da:25:00:f4:a1:87:10:41:9a:a2:
6c:32:16:1a:6c:6e:dd:71:0c:1c:24:61:ef:41:5e:05:67:ed:
96:b5:89:89:49:2c:3a:71:49:80:c8:07:d6:d8:29:d6:bb:20:
37:2d:bb:d9:09:ae:3c:13:ac:92:87:ff:80:10:f8:38:fe:2c:
36:90:7e:ab:91:d5:d3:65:a4:95:bb:c1:69:d9:0c:60:52:bb:
3d:5d:0c:08:df:fe:b8:9d:00:49:5d:f5:b4:a9:e2:60:e2:a8:
7a:a8:29:4d:1f:f5:6f:09:cd:7c:b0:6d:92:14:11:5a:30:02:
ed:53:42:1b:e3:af:0c:83:2f:17:f6:07:28:5d:95:26:ee:05:
5b:71:08:50:3d:62:98:00:40:9b:d2:4f:f1:24:f8:32:2f:b2:
c8:05:29:2b:3d:a7:2e:bf:4c:44:b1:7c:50:72:85:32:6b:26:
17:68:dc:8f:c8:84:a0:26:bd:7d:2d:93:f3:79:fc:c3:f4:3c:
a2:0d:37:2e:f6:4c:32:37:eb:35:c9:23:72:87:5a:df:26:81:
4a:61:d7:41:9f:cb:6f:79:b2:9f:02:1d:03:19:56:15:f1:da:
4c:e0:cc:f8
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAY68z2z4NRzImS7s9Iyo6rdkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjY2YzNjBkZjlhMWY2MWUyMzMyN2RhMGQyYzA5MTEyZTBh
OWJkNjkwHhcNMjQwNDA4MDgyNDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjViY2M5ZmZjOGYyYTBiZjI0NGVjMWVjZWZjOTZiNzEyMGFmYTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQfU6sv//hAx2pcPqxnPOw2Mh+UH
zIncaADCUDBT/3X1hVZlaQsbwczawLwQl7gbbsXVAWL+W8/+h/X6TNJDcDPlv/G7
emRCBnY41kPsnTVeqQ2Z4Ml2Pb39xK6k8h5Jftv80VQMZNS3DoyQuMw3w1q0UBdQ
2iLfUkRnhR3xR7cyzOTePmOu90zUq580uHSjCcUMSfK8iqMk429D/1jT1vI7oDV5
HDXm58APJNo5gzrWGi8QggvtbWs2orpVB7NhHCIYLlwHvK+YhwbY4LuWdc6KT4Yv
hBxqatbXRzFAKa2S3cevRs5Mne51Lpsvm/GgDAiLw8WlbnmtlsuB1YBqGwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFAJbzJ/8jyoL8kTsHs78lrcSCvpJMB8GA1UdIwQY
MBaAFGzPNg35ofYeIzJ9oNLAkRLgqb1pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk04MkRmbWg5aDRqTW4yZzBzQ1JFdUNwdldrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8wNmFjNGYtOTgzMy00ZThkLWIzNTIt
NzcxNDBkMDk3ODNjLzEvQWx2TW5feVBLZ3Z5Uk93ZXp2eVd0eElLLWtrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8wNmFjNGYtOTgzMy00ZThkLWIzNTItNzcxNDBkMDk3ODNj
LzEvYk04MkRmbWg5aDRqTW4yZzBzQ1JFdUNwdldrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAXWUwDQYJ
KoZIhvcNAQELBQADggEBAE6tfY4UZBKDTBUVQZVvnKy4pK85YFtZWJhJ2iUA9KGH
EEGaomwyFhpsbt1xDBwkYe9BXgVn7Za1iYlJLDpxSYDIB9bYKda7IDctu9kJrjwT
rJKH/4AQ+Dj+LDaQfquR1dNlpJW7wWnZDGBSuz1dDAjf/ridAEld9bSp4mDiqHqo
KU0f9W8JzXywbZIUEVowAu1TQhvjrwyDLxf2ByhdlSbuBVtxCFA9YpgAQJvST/Ek
+DIvssgFKSs9py6/TESxfFByhTJrJhdo3I/IhKAmvX0tk/N5/MP0PKINNy72TDI3
6zXJI3KHWt8mgUph10Gfy295sp8CHQMZVhXx2kzgzPg=
-----END CERTIFICATE-----
Generated at Wed Nov 27 12:30:41 2024 by rpki-client on console-fra.rpki-client.org