Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Uwt_z2snju0fVN2RtqXaBESvHEs.roa
File: Uwt_z2snju0fVN2RtqXaBESvHEs.roa (raw, json)
Hash identifier: TxYkVhgwab24xXcY8fWSDd5PRdR5o6TEs5latOOgt7c=
Subject key identifier: 53:0B:7F:CF:6B:27:8E:ED:1F:54:DD:91:B6:A5:DA:04:44:AF:1C:4B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019173EA5688F8CCD298934020E137488534
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Uwt_z2snju0fVN2RtqXaBESvHEs.roa
Signing time: Wed 21 Aug 2024 07:50:23 +0000
ROA not before: Wed 21 Aug 2024 07:50:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 401110
IP address blocks: 81.161.230.0/24 maxlen: 24
109.206.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:73:ea:56:88:f8:cc:d2:98:93:40:20:e1:37:48:85:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 21 07:50:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=530b7fcf6b278eed1f54dd91b6a5da0444af1c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a9:de:46:52:97:30:cd:5d:6a:1f:22:b1:ad:
ef:82:65:f2:e3:50:eb:7c:29:4c:9a:67:9b:8a:e2:
08:1e:95:38:23:a3:00:b3:29:0d:9f:5c:c7:48:2c:
5d:63:6b:6d:5f:3c:f9:f6:6f:5e:88:ff:61:65:d6:
3d:01:ad:44:ff:52:fb:54:80:25:fa:a4:96:7b:cf:
3a:f0:98:84:68:7a:69:81:b3:3b:b4:c4:1c:70:dd:
23:22:28:08:e0:94:71:35:df:7d:b2:85:e8:8c:a8:
09:90:32:4a:60:24:08:a1:4e:38:00:0a:f7:b7:0a:
59:05:64:c2:2e:40:81:0c:39:ee:ad:a7:ba:68:6a:
33:ca:63:02:93:ed:db:a2:aa:ba:8b:d7:31:10:e3:
db:c1:02:18:2f:43:fa:9b:dd:1f:32:7e:8d:b4:a0:
da:ca:7e:cf:31:f6:8a:6b:fd:8a:9b:f7:ce:af:c4:
0d:0d:b8:f8:32:0c:ca:1c:d7:49:f6:4f:90:ad:22:
70:43:9a:9a:b6:46:5a:55:6a:1c:7a:e4:94:3a:f8:
ed:e5:67:0a:e3:98:5a:8f:61:5c:ed:68:ab:41:9e:
7f:d5:d1:18:f0:10:36:09:4f:cf:8c:6a:77:b5:b9:
e6:6e:9c:b7:40:0f:68:cf:ba:4f:a9:44:e6:95:4a:
ed:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0B:7F:CF:6B:27:8E:ED:1F:54:DD:91:B6:A5:DA:04:44:AF:1C:4B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Uwt_z2snju0fVN2RtqXaBESvHEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.161.230.0/24
109.206.237.0/24
Signature Algorithm: sha256WithRSAEncryption
68:2c:a2:99:69:ae:3e:f6:e7:ca:7f:06:91:e8:c6:51:4c:5f:
cf:98:08:6f:88:14:da:51:bf:22:9c:d7:1a:08:dd:94:3e:29:
23:73:56:6b:e7:2e:ca:91:af:94:20:95:84:b4:52:33:eb:95:
52:33:17:3e:1c:b0:0a:f1:3a:4c:7d:e5:ff:75:de:23:0f:03:
57:a9:54:11:ef:6e:c9:50:a4:7b:ed:9f:41:af:65:6d:16:a2:
e8:b4:83:ff:cf:3d:0b:8b:b3:b1:bd:d8:c6:22:aa:cd:69:5e:
6e:42:3d:74:d3:29:44:46:22:5a:fc:0e:40:9c:a7:fe:2f:ae:
c0:e1:28:a3:ba:3e:80:14:30:7b:60:07:bd:be:59:7b:a2:74:
b5:36:f7:41:a2:4e:2e:fd:a4:a9:f5:2e:d9:10:68:ff:de:43:
de:22:d4:3f:0b:86:f5:76:bb:c7:a2:19:33:11:63:88:03:7c:
c9:64:2c:08:8b:dc:d2:b6:58:06:45:f1:11:31:b5:4e:20:95:
26:fd:cc:0b:c4:e4:a4:3e:f0:91:3d:f2:0c:e6:45:29:02:1b:
8d:d0:f4:4f:11:2c:49:25:cc:9e:b3:d5:57:0f:08:f6:77:de:
4e:e1:5a:10:92:54:62:4b:b0:8f:2e:fe:1b:08:e6:32:ba:42:
36:6f:09:68
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFz6laI+MzSmJNAIOE3SIU0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwODIxMDc1MDIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzBiN2ZjZjZiMjc4ZWVkMWY1NGRkOTFiNmE1ZGEwNDQ0YWYxYzRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6neRlKXMM1dah8isa3vgmXy41Dr
fClMmmebiuIIHpU4I6MAsykNn1zHSCxdY2ttXzz59m9eiP9hZdY9Aa1E/1L7VIAl
+qSWe8868JiEaHppgbM7tMQccN0jIigI4JRxNd99soXojKgJkDJKYCQIoU44AAr3
twpZBWTCLkCBDDnurae6aGozymMCk+3boqq6i9cxEOPbwQIYL0P6m90fMn6NtKDa
yn7PMfaKa/2Km/fOr8QNDbj4MgzKHNdJ9k+QrSJwQ5qatkZaVWoceuSUOvjt5WcK
45haj2Fc7WirQZ5/1dEY8BA2CU/PjGp3tbnmbpy3QA9oz7pPqUTmlUrtrwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFMLf89rJ47tH1Tdkbal2gRErxxLMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvVXd0X3oyc25qdTBmVk4yUnRxWGFCRVN2SEVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUaHmAwQA
bc7tMA0GCSqGSIb3DQEBCwUAA4IBAQBoLKKZaa4+9ufKfwaR6MZRTF/PmAhviBTa
Ub8inNcaCN2UPikjc1Zr5y7Kka+UIJWEtFIz65VSMxc+HLAK8TpMfeX/dd4jDwNX
qVQR727JUKR77Z9Br2VtFqLotIP/zz0Li7OxvdjGIqrNaV5uQj100ylERiJa/A5A
nKf+L67A4Sijuj6AFDB7YAe9vll7onS1NvdBok4u/aSp9S7ZEGj/3kPeItQ/C4b1
drvHohkzEWOIA3zJZCwIi9zStlgGRfERMbVOIJUm/cwLxOSkPvCRPfIM5kUpAhuN
0PRPESxJJcyes9VXDwj2d95O4VoQklRiS7CPLv4bCOYyukI2bwlo
-----END CERTIFICATE-----
Generated at Fri Nov 22 13:38:39 2024 by rpki-client on console-fra.rpki-client.org