Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Iu9cbkQR2oc6JSrR2yTlSBzWRvE.roa
File: Iu9cbkQR2oc6JSrR2yTlSBzWRvE.roa (raw, json)
Hash identifier: LZOF//mKTFtxBHcQmOQXi9YFAKOA1qaKvwr4bl82Jc0=
Subject key identifier: 22:EF:5C:6E:44:11:DA:87:3A:25:2A:D1:DB:24:E5:48:1C:D6:46:F1
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01931AD952C9272C65807DE56AD0309F85D3
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Iu9cbkQR2oc6JSrR2yTlSBzWRvE.roa
Signing time: Mon 11 Nov 2024 10:51:10 +0000
ROA not before: Mon 11 Nov 2024 10:51:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1034::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1059::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1074::/48 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:2000::/40 maxlen: 48
2a0c:9a40:2100::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2300::/40 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2e00::/40 maxlen: 48
2a0c:9a40:8a90::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a46:500::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1a:d9:52:c9:27:2c:65:80:7d:e5:6a:d0:30:9f:85:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Nov 11 10:51:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22ef5c6e4411da873a252ad1db24e5481cd646f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:da:93:b8:d7:03:3e:58:69:17:11:63:e2:77:
41:cf:22:86:ae:5b:2a:97:58:87:fc:12:37:a4:09:
72:1b:63:81:c1:3c:f9:7b:02:9e:81:e4:ef:b4:83:
c6:32:92:3b:63:5c:1e:67:14:2d:1d:1e:e7:d4:89:
8d:bd:18:3c:f3:0b:af:f4:07:75:cb:40:fa:f3:03:
da:3b:90:3a:39:66:56:11:c9:86:a4:d3:c6:e8:98:
7e:50:25:ff:54:81:ea:f4:24:6e:c9:98:1c:77:20:
00:a6:2b:2a:3d:8c:af:9a:ab:0a:74:17:c3:c3:64:
25:3a:0b:c1:66:ff:d3:78:c7:ea:60:f6:e7:bf:a4:
7a:7d:e3:72:fe:91:8b:be:f3:10:cd:9a:a0:bf:0e:
5d:48:15:06:f4:40:27:c6:a2:00:4d:6f:af:92:0f:
d4:37:f9:6c:7f:b8:e4:88:29:4b:bf:b5:68:03:9d:
9e:a5:ad:58:e1:9a:e5:f5:91:42:e4:d7:6a:ba:ab:
4e:e9:1d:6b:1a:3a:b3:b3:13:1d:7b:0a:72:41:ca:
26:d2:6c:c8:63:b3:51:85:af:39:97:b4:bf:5e:8a:
df:5d:9e:4b:71:3e:63:ce:c4:e1:0f:56:a7:85:5b:
4b:96:40:fb:e3:a1:dc:1d:35:1f:bc:7a:e8:91:07:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EF:5C:6E:44:11:DA:87:3A:25:2A:D1:DB:24:E5:48:1C:D6:46:F1
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Iu9cbkQR2oc6JSrR2yTlSBzWRvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1059:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2000::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2eff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:8a90::/48
2a0c:9a44::/48
2a0c:9a46:500::/40
Signature Algorithm: sha256WithRSAEncryption
9f:61:1e:2c:e3:72:db:3b:20:ac:25:f2:10:87:e7:70:83:57:
7c:66:1f:1a:03:bf:1e:3c:f0:c1:03:8c:25:ae:80:de:aa:59:
d6:7e:a8:77:b0:f6:51:7a:a5:39:8d:07:1d:67:af:ee:50:d8:
2c:b8:72:6e:68:f7:c7:d0:7d:b9:35:b5:f0:a5:45:b2:5d:58:
4d:e8:0e:1d:81:03:a3:1b:62:cc:6a:d1:95:2e:ff:25:00:5a:
25:30:d0:48:69:2f:1b:0c:89:2b:24:6b:8b:f1:a0:2c:4f:dd:
92:5e:23:7c:a1:cf:f0:96:0d:49:77:6d:cf:04:49:71:01:9f:
7b:80:35:0d:37:8c:bd:56:70:d6:83:9e:58:d2:17:3b:ec:52:
14:56:ab:32:e8:10:ea:7d:ed:65:e2:75:fe:98:c5:b4:39:04:
f1:7b:ee:b8:7a:8a:dd:de:2d:8b:26:d5:da:cc:2f:d8:0c:18:
2f:04:17:92:fe:90:6c:15:83:16:04:24:97:35:9b:b9:c1:a6:
bd:41:76:db:de:eb:7a:65:08:86:04:d8:68:a6:ab:b2:ef:47:
27:6a:e0:23:36:d0:2a:31:94:6b:3b:ad:d0:2d:a2:a5:a3:97:
aa:d6:9d:f3:8e:00:a2:65:59:3f:79:1d:7b:df:c4:10:b1:ff:
78:2d:63:78
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgISAZMa2VLJJyxlgH3latAwn4XTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjQxMTExMTA1MTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmVmNWM2ZTQ0MTFkYTg3M2EyNTJhZDFkYjI0ZTU0ODFjZDY0NmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNqTuNcDPlhpFxFj4ndBzyKGrlsq
l1iH/BI3pAlyG2OBwTz5ewKegeTvtIPGMpI7Y1weZxQtHR7n1ImNvRg88wuv9Ad1
y0D68wPaO5A6OWZWEcmGpNPG6Jh+UCX/VIHq9CRuyZgcdyAApisqPYyvmqsKdBfD
w2QlOgvBZv/TeMfqYPbnv6R6feNy/pGLvvMQzZqgvw5dSBUG9EAnxqIATW+vkg/U
N/lsf7jkiClLv7VoA52epa1Y4Zrl9ZFC5NdquqtO6R1rGjqzsxMdewpyQcom0mzI
Y7NRha85l7S/XorfXZ5LcT5jzsThD1anhVtLlkD746HcHTUfvHrokQeuHQIDAQAB
o4ICzjCCAsowHQYDVR0OBBYEFCLvXG5EEdqHOiUq0dsk5Ugc1kbxMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvSXU5Y2JrUVIyb2M2SlNyUjJ5VGxTQnpXUnZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHjBggrBgEFBQcBBwEB/wSB0zCB0DAeBAIAATAYAwQBLYZY
AwQALYZbAwQAwSWLAwQCwZT4MIGtBAIAAjCBpgMHACoMmkAAAQMHBCoMmkAQAAMH
ACoMmkAQJAMHBCoMmkAQMAMHASoMmkAQUAMHASoMmkAQVDASAwcAKgyaQBBXAwcB
KgyaQBBYAwcAKgyaQBBgMBIDBwQqDJpAEHADBwUqDJpAEIAwEQMGBSoMmkAgAwcA
KgyaQCkAMBADBgEqDJpAKgMGACoMmkAuAwcAKgyaQIqQAwcAKgyaRAAAAwYAKgya
RgUwDQYJKoZIhvcNAQELBQADggEBAJ9hHizjcts7IKwl8hCH53CDV3xmHxoDvx48
8MEDjCWugN6qWdZ+qHew9lF6pTmNBx1nr+5Q2Cy4cm5o98fQfbk1tfClRbJdWE3o
Dh2BA6MbYsxq0ZUu/yUAWiUw0EhpLxsMiSska4vxoCxP3ZJeI3yhz/CWDUl3bc8E
SXEBn3uANQ03jL1WcNaDnljSFzvsUhRWqzLoEOp97WXidf6YxbQ5BPF77rh6it3e
LYsm1drML9gMGC8EF5L+kGwVgxYEJJc1m7nBpr1Bdtve63plCIYE2Gimq7LvRydq
4CM20CoxlGs7rdAtoqWjl6rWnfOOAKJlWT95HXvfxBCx/3gtY3g=
-----END CERTIFICATE-----
Generated at Thu Nov 21 22:41:16 2024 by rpki-client on console-fra.rpki-client.org