Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/asqoGxCUeTc_y4lKgJIttAYpyck.roa
File: asqoGxCUeTc_y4lKgJIttAYpyck.roa (raw, json)
Hash identifier: m3PU3yfmOsCN8uugmMYqG5W8BK837mkHpLFoad3vTZc=
Subject key identifier: 6A:CA:A8:1B:10:94:79:37:3F:CB:89:4A:80:92:2D:B4:06:29:C9:C9
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 0194282814DCE4302E36DBAA7B264843D658
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/asqoGxCUeTc_y4lKgJIttAYpyck.roa
Signing time: Thu 02 Jan 2025 17:55:02 +0000
ROA not before: Thu 02 Jan 2025 17:55:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42086
IP address blocks: 62.204.141.0/24 maxlen: 24
62.204.156.0/23 maxlen: 23
82.103.87.0/24 maxlen: 24
212.91.190.0/24 maxlen: 24
213.169.52.0/24 maxlen: 24
213.169.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:14:dc:e4:30:2e:36:db:aa:7b:26:48:43:d6:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6acaa81b109479373fcb894a80922db40629c9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8c:4f:99:9d:8d:81:f1:1d:79:33:39:76:e4:
90:a2:69:31:91:20:a4:80:2d:17:a8:58:4f:01:d0:
1b:bd:6e:17:30:e5:9e:9e:b4:17:dc:c0:17:e6:76:
85:42:3e:12:7e:78:5b:29:ea:43:a2:c2:71:52:d5:
44:0b:d1:70:ba:5e:b4:11:7c:70:0c:ce:d5:b9:78:
5a:4a:ea:98:e9:0d:62:25:b7:8d:e7:51:2b:08:45:
3d:d9:3e:23:e4:f9:6d:49:6b:9d:a2:46:13:0c:9e:
1b:d0:a9:f4:ad:df:5b:20:0f:d8:5d:9a:18:06:99:
21:7e:17:66:6f:9e:9d:ef:98:c4:de:55:6e:59:23:
f6:ef:16:19:a0:e1:1c:6e:4c:29:14:15:d5:80:76:
7c:33:e3:71:2f:d6:f0:35:c1:a5:9c:6b:c9:df:d2:
5a:74:1a:0a:78:d1:3e:55:f7:9c:9b:23:45:0d:54:
0b:22:f9:9f:57:b9:26:c5:d9:aa:2e:20:36:e1:5d:
07:ae:a6:3a:40:c1:30:8f:90:cb:26:f8:3a:77:15:
f2:f4:a0:b0:2c:b7:da:4c:39:5f:06:53:b6:24:ca:
25:58:9d:02:1d:80:38:18:85:68:2e:2e:85:aa:a9:
16:bf:f4:56:52:ba:1f:38:b7:65:91:0c:6e:6d:41:
2a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CA:A8:1B:10:94:79:37:3F:CB:89:4A:80:92:2D:B4:06:29:C9:C9
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/asqoGxCUeTc_y4lKgJIttAYpyck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.141.0/24
62.204.156.0/23
82.103.87.0/24
212.91.190.0/24
213.169.52.0/23
Signature Algorithm: sha256WithRSAEncryption
52:94:e2:d6:3a:d0:c2:a4:1c:22:a8:c4:34:af:bb:d5:bc:22:
6e:3f:25:c2:cf:53:46:c1:1f:69:ba:e3:aa:7a:c8:58:a8:eb:
05:eb:ad:db:28:27:28:74:19:db:ea:33:46:ea:d8:2d:98:fa:
83:d0:11:37:d7:e5:d6:89:ab:ea:02:00:d4:19:0c:22:88:33:
0e:c2:2b:1d:e0:0a:53:b4:dd:00:18:2d:55:9c:e3:1e:e5:75:
a0:0e:6c:c9:bc:08:d0:93:09:c5:df:31:4a:4a:42:f4:5c:0f:
dc:75:86:35:43:1c:e2:85:c2:08:81:8e:4d:bc:c7:61:81:e8:
66:eb:fc:26:9e:a5:31:38:68:e6:3c:f5:0b:d2:46:2d:3a:c4:
60:dd:49:41:7a:97:cf:e6:01:a5:e3:e3:4f:1b:b5:34:ee:56:
33:7b:4c:a2:43:9e:8b:8f:d0:32:e9:e0:25:16:99:dd:5a:cb:
be:77:13:5c:5d:bb:fa:51:89:78:d6:20:4d:bd:a6:9e:61:3a:
28:fb:39:4f:45:69:b3:db:75:26:52:40:ba:71:d0:10:39:a2:
c6:8f:10:f7:bf:00:20:de:33:67:e0:87:d2:d5:af:29:da:ad:
de:93:3a:8a:f3:52:af:a7:3e:0a:2d:97:d0:28:1f:63:44:7a:
b2:45:67:48
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZQoKBTc5DAuNtuqeyZIQ9ZYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjUwMTAyMTc1NTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWNhYTgxYjEwOTQ3OTM3M2ZjYjg5NGE4MDkyMmRiNDA2MjljOWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4xPmZ2NgfEdeTM5duSQomkxkSCk
gC0XqFhPAdAbvW4XMOWenrQX3MAX5naFQj4SfnhbKepDosJxUtVEC9Fwul60EXxw
DM7VuXhaSuqY6Q1iJbeN51ErCEU92T4j5PltSWudokYTDJ4b0Kn0rd9bIA/YXZoY
Bpkhfhdmb56d75jE3lVuWSP27xYZoOEcbkwpFBXVgHZ8M+NxL9bwNcGlnGvJ39Ja
dBoKeNE+VfecmyNFDVQLIvmfV7kmxdmqLiA24V0HrqY6QMEwj5DLJvg6dxXy9KCw
LLfaTDlfBlO2JMolWJ0CHYA4GIVoLi6FqqkWv/RWUrofOLdlkQxubUEq1wIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFGrKqBsQlHk3P8uJSoCSLbQGKcnJMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvYXNxb0d4Q1VlVGNfeTRsS2dKSXR0QVlweWNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAPsyNAwQB
PsycAwQAUmdXAwQA1Fu+AwQB1ak0MA0GCSqGSIb3DQEBCwUAA4IBAQBSlOLWOtDC
pBwiqMQ0r7vVvCJuPyXCz1NGwR9puuOqeshYqOsF663bKCcodBnb6jNG6tgtmPqD
0BE31+XWiavqAgDUGQwiiDMOwisd4ApTtN0AGC1VnOMe5XWgDmzJvAjQkwnF3zFK
SkL0XA/cdYY1QxzihcIIgY5NvMdhgehm6/wmnqUxOGjmPPUL0kYtOsRg3UlBepfP
5gGl4+NPG7U07lYze0yiQ56Lj9Ay6eAlFpndWsu+dxNcXbv6UYl41iBNvaaeYToo
+zlPRWmz23UmUkC6cdAQOaLGjxD3vwAg3jNn4IfS1a8p2q3ekzqK81Kvpz4KLZfQ
KB9jRHqyRWdI
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:44:59 2025 by rpki-client