Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/Btyd_TKHC6qS6TxpgrBbc4ZAY3A.roa
File: Btyd_TKHC6qS6TxpgrBbc4ZAY3A.roa (raw, json)
Hash identifier: VkCGIWG0LRQLTj8QY8E8Vghqa7kP/QOsgROeUASsh3U=
Subject key identifier: 06:DC:9D:FD:32:87:0B:AA:92:E9:3C:69:82:B0:5B:73:86:40:63:70
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 01909CB87E8A642EC9273CA0B0B98C56E08A
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/Btyd_TKHC6qS6TxpgrBbc4ZAY3A.roa
Signing time: Wed 10 Jul 2024 12:57:34 +0000
ROA not before: Wed 10 Jul 2024 12:57:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49824
IP address blocks: 45.12.24.0/24 maxlen: 24
45.12.25.0/24 maxlen: 24
45.12.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9c:b8:7e:8a:64:2e:c9:27:3c:a0:b0:b9:8c:56:e0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jul 10 12:57:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06dc9dfd32870baa92e93c6982b05b7386406370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a5:46:d7:5b:d7:18:c4:f4:5c:9c:40:2d:4f:
1e:01:48:6e:01:86:53:34:17:4b:31:0b:ad:49:aa:
70:1f:38:2b:35:06:e3:3f:76:6f:46:22:56:8e:62:
7c:81:60:15:b8:db:b7:2e:3b:03:69:ef:db:e0:51:
60:50:6f:62:50:e2:23:56:8d:c6:97:0e:c9:b9:81:
0f:99:67:25:7b:6b:19:a4:2a:fe:1e:28:32:2a:22:
4b:f3:46:ea:c2:e3:f6:79:51:1d:ba:20:55:13:be:
69:eb:25:e1:55:10:21:5a:32:e6:6e:6d:c1:db:57:
d4:b0:86:f1:01:f1:5e:b4:e3:4c:28:91:1c:f4:6a:
d1:d7:51:2a:09:e7:1b:04:c3:47:bf:e2:a7:2f:0d:
91:99:5b:2a:53:e2:e0:3e:86:82:18:aa:97:50:b5:
72:0c:c8:b6:7b:9d:f0:3e:fb:fd:ac:0c:31:9c:96:
44:b7:80:69:ff:bd:7d:57:79:6d:da:9e:c2:4d:7c:
e4:1b:4f:b6:fe:33:04:c9:fc:24:88:e8:85:a5:6e:
23:35:61:77:0f:33:88:4a:ce:6f:25:95:0c:4c:e9:
f5:38:b9:39:30:c5:5f:24:e7:b0:a7:1c:38:14:ce:
87:91:7a:b6:ea:52:91:29:c4:6b:6e:64:81:bd:9e:
94:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:DC:9D:FD:32:87:0B:AA:92:E9:3C:69:82:B0:5B:73:86:40:63:70
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/Btyd_TKHC6qS6TxpgrBbc4ZAY3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.24.0-45.12.26.255
Signature Algorithm: sha256WithRSAEncryption
97:27:6b:67:2a:03:ec:e1:d4:80:9e:7a:45:3e:fc:36:d6:cb:
e8:3b:b8:6b:08:69:76:d6:df:d1:8e:06:b7:c2:a0:ab:c3:28:
c3:51:c1:84:2c:c5:20:15:3f:52:d5:69:0d:7f:3f:63:15:be:
79:e2:6e:6e:13:18:3c:e5:17:3a:70:cc:a8:73:7b:c8:e1:78:
52:80:e0:51:d9:35:0d:b2:67:f4:41:ef:33:40:a0:16:32:2a:
19:25:95:04:90:4f:57:68:b9:bd:c6:10:ff:61:1e:6d:e8:e8:
2a:ab:a9:1e:d2:c6:62:b8:23:ec:49:18:f2:e8:ce:f6:8d:06:
ea:36:2d:fa:52:da:7d:44:08:e5:ae:ed:0b:d8:a6:c8:3e:7c:
62:9f:0f:ff:d7:2a:5d:d7:9a:9f:15:72:6b:e7:e2:4c:c9:77:
93:83:1c:e2:50:7a:da:04:e4:59:99:86:e6:a4:4e:8a:ce:9e:
59:a0:83:0f:22:20:3c:f0:87:4c:e8:53:d6:d5:70:78:ee:85:
65:5f:09:0e:0d:47:74:0c:b9:7b:59:55:af:27:78:05:81:d9:
15:65:9c:13:e8:47:19:e3:ef:90:54:30:2a:23:67:f1:6c:15:
6a:70:9d:c9:62:63:8a:c3:f8:a4:b9:b1:2a:33:b4:4a:b7:4c:
47:ce:32:48
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZCcuH6KZC7JJzygsLmMVuCKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiZjU0M2UyM2UyOWZiMDM3NDhkMDkzOTcyNmYzMGZlOWFm
ZmExOWUwHhcNMjQwNzEwMTI1NzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmRjOWRmZDMyODcwYmFhOTJlOTNjNjk4MmIwNWI3Mzg2NDA2MzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKVG11vXGMT0XJxALU8eAUhuAYZT
NBdLMQutSapwHzgrNQbjP3ZvRiJWjmJ8gWAVuNu3LjsDae/b4FFgUG9iUOIjVo3G
lw7JuYEPmWcle2sZpCr+HigyKiJL80bqwuP2eVEduiBVE75p6yXhVRAhWjLmbm3B
21fUsIbxAfFetONMKJEc9GrR11EqCecbBMNHv+KnLw2RmVsqU+LgPoaCGKqXULVy
DMi2e53wPvv9rAwxnJZEt4Bp/719V3lt2p7CTXzkG0+2/jMEyfwkiOiFpW4jNWF3
DzOISs5vJZUMTOn1OLk5MMVfJOewpxw4FM6HkXq26lKRKcRrbmSBvZ6UmQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFAbcnf0yhwuqkuk8aYKwW3OGQGNwMB8GA1UdIwQY
MBaAFAv1Q+I+KfsDdI0JOXJvMP6a/6GeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ19WRDRqNHAtd04walFrNWNtOHdfcHJfb1o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9hZmEzNGMtZjNmMC00MDVjLWIwODMt
YTM1ZmM0MzhkNGNhLzEvQnR5ZF9US0hDNnFTNlR4cGdyQmJjNFpBWTNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS9hZmEzNGMtZjNmMC00MDVjLWIwODMtYTM1ZmM0MzhkNGNh
LzEvQ19WRDRqNHAtd04walFrNWNtOHdfcHJfb1o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAMtDBgD
BAAtDBowDQYJKoZIhvcNAQELBQADggEBAJcna2cqA+zh1ICeekU+/DbWy+g7uGsI
aXbW39GOBrfCoKvDKMNRwYQsxSAVP1LVaQ1/P2MVvnnibm4TGDzlFzpwzKhze8jh
eFKA4FHZNQ2yZ/RB7zNAoBYyKhkllQSQT1doub3GEP9hHm3o6CqrqR7SxmK4I+xJ
GPLozvaNBuo2LfpS2n1ECOWu7QvYpsg+fGKfD//XKl3Xmp8Vcmvn4kzJd5ODHOJQ
etoE5FmZhuakTorOnlmggw8iIDzwh0zoU9bVcHjuhWVfCQ4NR3QMuXtZVa8neAWB
2RVlnBPoRxnj75BUMCojZ/FsFWpwncliY4rD+KS5sSoztEq3TEfOMkg=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:12:42 2024 by rpki-client on console-fra.rpki-client.org