Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/1-Xj33JV0q4r4P0dX1XJohK06_JQ.roa
File: 1-Xj33JV0q4r4P0dX1XJohK06_JQ.roa (raw, json)
Hash identifier: diLw0b33k8yH1XZ/7nrgsajXrGaHAOfONHiMF7auL98=
Subject key identifier: F9:78:F7:DC:95:74:AB:8A:F8:3F:47:57:D5:72:68:84:AD:3A:FC:94
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018CC649E27F29DD633709E2BFEE3C50C7FB
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/1-Xj33JV0q4r4P0dX1XJohK06_JQ.roa
Signing time: Mon 01 Jan 2024 18:29:40 +0000
ROA not before: Mon 01 Jan 2024 18:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59484
IP address blocks: 151.251.42.0/24 maxlen: 24
151.251.40.0/24 maxlen: 24
151.251.41.0/24 maxlen: 24
151.251.60.0/24 maxlen: 24
87.227.140.0/24 maxlen: 24
151.251.32.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:e2:7f:29:dd:63:37:09:e2:bf:ee:3c:50:c7:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 1 18:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f978f7dc9574ab8af83f4757d5726884ad3afc94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:38:96:5d:20:c8:a3:7b:41:60:44:2a:7d:9c:
77:d4:1f:b2:26:7f:10:6f:bb:8a:4e:57:1e:bd:d8:
0d:e4:cc:8c:cd:b8:32:56:85:c7:36:b4:8f:4a:34:
ca:0e:ae:46:96:6e:6f:e7:20:b9:76:d9:45:19:20:
bf:46:32:70:84:0d:fb:78:d2:8a:d3:94:d8:1a:86:
01:b9:38:b5:e8:32:cf:5a:03:39:51:6d:7d:80:a8:
35:64:a2:58:14:a8:99:a7:9b:03:13:a9:4a:8a:39:
bf:b2:b6:6e:02:95:b9:36:59:df:c2:bb:78:b2:1a:
3f:bf:83:a6:ee:06:92:85:84:5c:64:20:0c:4b:e8:
31:9b:10:c9:73:fa:6e:cb:f4:4b:9b:9a:b8:0d:40:
54:64:77:3e:de:d8:36:8c:62:f7:e5:14:31:12:42:
55:b4:6a:ec:74:3c:7f:53:c3:cf:7f:5e:c8:7a:bd:
41:d5:79:ed:d4:bb:53:16:72:bc:09:bb:8d:29:1a:
ac:c8:2f:1a:82:b1:6e:05:b0:e2:35:1c:d0:bb:48:
3f:91:82:7d:7c:fc:78:4a:6f:ac:53:d0:c9:95:9a:
2d:41:65:96:23:e4:f7:3d:20:56:78:ed:c1:7f:83:
75:47:f7:be:83:49:b5:b0:c9:a8:17:16:d9:0c:77:
79:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:78:F7:DC:95:74:AB:8A:F8:3F:47:57:D5:72:68:84:AD:3A:FC:94
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/1-Xj33JV0q4r4P0dX1XJohK06_JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.227.140.0/24
151.251.32.0/22
151.251.40.0-151.251.42.255
151.251.60.0/24
Signature Algorithm: sha256WithRSAEncryption
68:5b:62:89:cc:0c:6c:7a:d2:ec:e5:9c:8c:b5:48:64:a5:a1:
9f:48:af:2a:8c:31:97:65:67:72:a7:19:06:73:54:8f:c1:0a:
f5:af:16:36:39:24:cb:be:31:d0:98:78:29:98:82:b1:60:62:
6b:e1:d4:62:f0:60:aa:bb:b2:5b:18:46:d9:4a:3d:80:a7:74:
ce:b6:17:b6:d0:15:0d:41:55:cf:2e:57:be:c9:08:5b:a7:78:
9f:c6:07:87:69:27:b1:0d:f1:bd:63:26:60:d9:fd:17:5c:5a:
1d:ad:56:e7:ad:45:7e:46:d3:1b:8e:5c:da:a2:38:4e:10:bf:
f5:65:cd:4b:de:8e:9e:56:e5:e4:33:9e:07:6f:6d:94:2b:e5:
a8:07:3b:4b:35:09:cf:79:7e:81:13:2c:55:d2:78:4e:7a:07:
56:9b:1f:0e:d7:57:e4:c1:56:b1:85:20:01:f9:0a:b3:f7:16:
af:4b:7b:89:e4:51:d0:89:a0:18:92:83:e6:a8:77:7f:6f:4e:
2b:03:39:fe:dd:c0:05:df:f1:3f:66:c1:69:fd:02:84:cd:b3:
f7:32:32:4e:ee:b9:54:1d:7a:38:b4:40:b9:a2:46:94:0f:78:
1c:0b:62:c4:f5:6c:9c:3a:a1:56:f4:c1:20:13:40:dd:90:e9:
6d:79:88:f5
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYzGSeJ/Kd1jNwniv+48UMf7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjQwMTAxMTgyOTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTc4ZjdkYzk1NzRhYjhhZjgzZjQ3NTdkNTcyNjg4NGFkM2FmYzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DiWXSDIo3tBYEQqfZx31B+yJn8Q
b7uKTlcevdgN5MyMzbgyVoXHNrSPSjTKDq5Glm5v5yC5dtlFGSC/RjJwhA37eNKK
05TYGoYBuTi16DLPWgM5UW19gKg1ZKJYFKiZp5sDE6lKijm/srZuApW5Nlnfwrt4
sho/v4Om7gaShYRcZCAMS+gxmxDJc/puy/RLm5q4DUBUZHc+3tg2jGL35RQxEkJV
tGrsdDx/U8PPf17Ier1B1Xnt1LtTFnK8CbuNKRqsyC8agrFuBbDiNRzQu0g/kYJ9
fPx4Sm+sU9DJlZotQWWWI+T3PSBWeO3Bf4N1R/e+g0m1sMmoFxbZDHd5eQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFPl499yVdKuK+D9HV9VyaIStOvyUMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvMS1YajMzSlYwcTRyNFAwZFgxWEpvaEswNl9KUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQz
Ny8xL0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjA5BggrBgEFBQcBBwEB/wQqMCgwJgQCAAEwIAMEAFfjjAME
Apf7IDAMAwQDl/soAwQAl/sqAwQAl/s8MA0GCSqGSIb3DQEBCwUAA4IBAQBoW2KJ
zAxsetLs5ZyMtUhkpaGfSK8qjDGXZWdypxkGc1SPwQr1rxY2OSTLvjHQmHgpmIKx
YGJr4dRi8GCqu7JbGEbZSj2Ap3TOthe20BUNQVXPLle+yQhbp3ifxgeHaSexDfG9
YyZg2f0XXFodrVbnrUV+RtMbjlzaojhOEL/1Zc1L3o6eVuXkM54Hb22UK+WoBztL
NQnPeX6BEyxV0nhOegdWmx8O11fkwVaxhSAB+Qqz9xavS3uJ5FHQiaAYkoPmqHd/
b04rAzn+3cAF3/E/ZsFp/QKEzbP3MjJO7rlUHXo4tEC5okaUD3gcC2LE9WycOqFW
9MEgE0DdkOlteYj1
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:31:49 2024 by rpki-client on console-ams.rpki-client.org