Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/S7FKchTXU3Nv9MnhIkL1gnDv2KA.roa
File: S7FKchTXU3Nv9MnhIkL1gnDv2KA.roa (raw, json)
Hash identifier: x1b7mXLhrAw2XmElUyP9ZOI8Vggk+7rZP5LW/FsS/Po=
Subject key identifier: 4B:B1:4A:72:14:D7:53:73:6F:F4:C9:E1:22:42:F5:82:70:EF:D8:A0
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019275B99EE2308BAC53D80C4850884F0052
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/S7FKchTXU3Nv9MnhIkL1gnDv2KA.roa
Signing time: Thu 10 Oct 2024 09:19:12 +0000
ROA not before: Thu 10 Oct 2024 09:19:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39582
IP address blocks: 37.77.0.0/19 maxlen: 24
37.77.1.0/24 maxlen: 24
37.77.2.0/24 maxlen: 24
37.77.3.0/24 maxlen: 24
37.77.4.0/24 maxlen: 24
37.77.5.0/24 maxlen: 24
37.77.6.0/24 maxlen: 24
37.77.7.0/24 maxlen: 24
37.77.8.0/24 maxlen: 24
37.77.9.0/24 maxlen: 24
37.77.10.0/24 maxlen: 24
37.77.15.0/24 maxlen: 24
37.77.16.0/24 maxlen: 24
37.77.17.0/24 maxlen: 24
37.77.18.0/24 maxlen: 24
37.77.20.0/24 maxlen: 24
37.77.21.0/24 maxlen: 24
37.77.22.0/24 maxlen: 24
37.77.23.0/24 maxlen: 24
37.77.24.0/24 maxlen: 24
37.77.26.0/24 maxlen: 24
37.77.30.0/24 maxlen: 24
37.77.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:75:b9:9e:e2:30:8b:ac:53:d8:0c:48:50:88:4f:00:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Oct 10 09:19:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bb14a7214d753736ff4c9e12242f58270efd8a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a8:f7:d6:7b:55:39:0e:9c:a0:e5:af:0c:4c:
0a:0f:9f:87:54:2f:1f:49:75:37:5d:33:a7:dc:fa:
0f:64:34:29:b7:e8:cf:aa:d3:f0:6b:46:c1:6a:7a:
a0:a8:f7:26:d1:b3:ef:b8:f2:4f:d0:42:cb:12:3e:
a9:95:50:7a:ee:22:2a:72:52:3b:a5:bd:d6:2f:27:
ea:78:a9:ff:c2:70:a6:f2:32:33:58:2e:e6:3c:82:
ed:17:e5:6b:3d:38:ac:bb:7e:2a:62:18:7a:6d:c7:
02:c4:69:2f:9b:d7:f1:3b:c4:36:09:5e:de:8e:58:
6b:56:4f:4c:d9:67:e8:58:f1:1d:b6:a3:b4:e6:ce:
89:58:72:15:10:7c:6b:3d:51:26:64:9a:a0:14:5e:
d3:6b:07:4d:94:c3:13:d5:3f:44:fa:3a:f6:5c:16:
40:05:ed:b9:15:c4:b1:28:33:a3:1e:85:cd:61:a9:
cf:38:bf:0e:b4:8a:a5:79:15:14:1e:55:a4:c8:20:
e2:ea:19:b7:23:bc:6e:64:59:55:1d:98:10:18:cb:
6a:fd:10:97:e3:b6:fa:76:83:f5:e5:38:30:3d:fd:
51:47:21:4b:e1:93:ac:df:00:8f:d1:f3:e4:91:3e:
16:94:b8:bf:05:9e:6e:31:4b:e4:f6:5d:37:4b:47:
5b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B1:4A:72:14:D7:53:73:6F:F4:C9:E1:22:42:F5:82:70:EF:D8:A0
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/S7FKchTXU3Nv9MnhIkL1gnDv2KA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.0.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:ae:fa:1a:2d:ae:68:95:c9:cd:5c:09:01:ef:fe:75:ee:d0:
c1:d3:93:69:68:8a:f9:2c:ec:bd:71:30:e4:cd:98:b6:ed:45:
33:4e:ad:8d:ee:cc:3a:f4:db:98:9f:4a:f0:6b:b4:9a:e8:46:
9e:f2:df:ec:ac:27:78:83:a7:be:e5:25:49:92:19:6f:77:02:
0f:5a:75:36:a5:56:70:b8:20:8d:8c:f1:ca:59:5e:7e:ff:a3:
2c:b9:da:26:92:fb:c5:2b:18:95:45:f2:a6:1c:c7:fc:9c:e5:
83:ca:f8:80:a8:40:9f:88:45:87:24:f8:49:8a:76:77:7f:27:
e9:6a:e3:de:66:4f:08:88:5a:f0:42:8a:8f:a2:9c:8a:4d:4d:
4e:d3:e6:1d:45:57:96:c0:ac:cd:71:d2:78:45:6b:c7:20:a4:
a0:41:09:2b:bb:03:79:7d:25:be:f5:e8:77:78:6e:6d:26:4e:
c8:3f:66:60:7c:4b:cb:cd:bd:1f:fd:ef:df:ee:d7:9f:e7:13:
fe:cb:32:e0:47:f0:36:5d:4b:8a:ae:bb:a0:e8:a2:d2:4e:de:
28:c1:21:67:49:d7:bb:12:30:3e:25:db:4d:9b:45:81:7c:05:
83:07:cb:ad:0a:00:5b:99:e0:28:04:e5:99:7a:a1:e7:6d:bd:
ea:c8:85:0e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJ1uZ7iMIusU9gMSFCITwBSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh
NTI2ZDgwHhcNMjQxMDEwMDkxOTEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmIxNGE3MjE0ZDc1MzczNmZmNGM5ZTEyMjQyZjU4MjcwZWZkOGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaj31ntVOQ6coOWvDEwKD5+HVC8f
SXU3XTOn3PoPZDQpt+jPqtPwa0bBanqgqPcm0bPvuPJP0ELLEj6plVB67iIqclI7
pb3WLyfqeKn/wnCm8jIzWC7mPILtF+VrPTisu34qYhh6bccCxGkvm9fxO8Q2CV7e
jlhrVk9M2WfoWPEdtqO05s6JWHIVEHxrPVEmZJqgFF7TawdNlMMT1T9E+jr2XBZA
Be25FcSxKDOjHoXNYanPOL8OtIqleRUUHlWkyCDi6hm3I7xuZFlVHZgQGMtq/RCX
47b6doP15TgwPf1RRyFL4ZOs3wCP0fPkkT4WlLi/BZ5uMUvk9l03S0dbBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEuxSnIU11Nzb/TJ4SJC9YJw79igMB8GA1UdIwQY
MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt
MWU4MjlmZmExYzNhLzEvUzdGS2NoVFhVM052OU1uaElrTDFnbkR2MktBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh
LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFJU0AMA0G
CSqGSIb3DQEBCwUAA4IBAQAarvoaLa5olcnNXAkB7/517tDB05NpaIr5LOy9cTDk
zZi27UUzTq2N7sw69NuYn0rwa7Sa6Eae8t/srCd4g6e+5SVJkhlvdwIPWnU2pVZw
uCCNjPHKWV5+/6MsudomkvvFKxiVRfKmHMf8nOWDyviAqECfiEWHJPhJinZ3fyfp
auPeZk8IiFrwQoqPopyKTU1O0+YdRVeWwKzNcdJ4RWvHIKSgQQkruwN5fSW+9eh3
eG5tJk7IP2ZgfEvLzb0f/e/f7tef5xP+yzLgR/A2XUuKrrug6KLSTt4owSFnSde7
EjA+JdtNm0WBfAWDB8utCgBbmeAoBOWZeqHnbb3qyIUO
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:29:07 2024 by rpki-client on console-ams.rpki-client.org