Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/ImrvMVNsuZo8jj5c8LV5MMxM_Us.roa
File: ImrvMVNsuZo8jj5c8LV5MMxM_Us.roa (raw, json)
Hash identifier: CdnUpPPz95XnHR2m8nN4Hovkd2Ax3zuI5YVBeNQ7igA=
Subject key identifier: 22:6A:EF:31:53:6C:B9:9A:3C:8E:3E:5C:F0:B5:79:30:CC:4C:FD:4B
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018F5334233026AF325B294929919032572A
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/ImrvMVNsuZo8jj5c8LV5MMxM_Us.roa
Signing time: Tue 07 May 2024 13:17:56 +0000
ROA not before: Tue 07 May 2024 13:17:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 45.133.37.0/24 maxlen: 24
185.169.182.0/24 maxlen: 24
185.169.183.0/24 maxlen: 24
185.174.20.0/24 maxlen: 24
185.174.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:53:34:23:30:26:af:32:5b:29:49:29:91:90:32:57:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: May 7 13:17:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=226aef31536cb99a3c8e3e5cf0b57930cc4cfd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f3:8b:0b:12:4a:1c:cd:34:8a:4e:cf:17:25:
ba:aa:12:83:88:a0:39:50:72:79:db:8f:f9:79:ea:
14:3c:6d:94:0c:ce:ee:78:34:07:c7:61:97:1a:24:
91:79:d6:83:eb:01:30:31:4c:07:64:fc:b7:ce:4c:
b3:16:4f:12:7f:7d:22:01:2b:5a:a3:c8:ab:93:26:
9c:0f:84:7f:48:48:a0:8b:90:3a:00:aa:2c:b9:f7:
d9:07:35:aa:d4:33:83:ba:c6:c1:fd:46:20:8b:88:
2b:d5:67:49:80:7b:5e:ab:c8:b4:9a:2f:43:e4:d0:
cb:a9:75:52:1f:0d:e0:48:83:b5:9e:aa:56:b4:53:
03:f2:88:bb:7d:5f:e7:9e:9e:55:8d:b5:b9:c5:0f:
e9:e3:71:9c:13:a6:a7:53:6a:27:29:ad:93:f1:74:
40:d1:2c:44:1e:f3:7e:10:2f:e4:5c:03:4f:42:49:
bc:fd:aa:3c:63:d3:38:c9:50:6d:61:37:99:e5:f1:
7e:25:52:01:ee:18:0a:41:ab:59:12:aa:85:a9:46:
b3:09:b5:8a:c7:96:5f:11:85:32:0a:c5:b6:19:0b:
bd:bf:d6:32:f9:17:f9:06:9e:6c:b1:b2:4d:9e:78:
a4:63:c2:79:54:28:8d:c3:fb:66:e6:11:6f:6a:1e:
9f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6A:EF:31:53:6C:B9:9A:3C:8E:3E:5C:F0:B5:79:30:CC:4C:FD:4B
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/ImrvMVNsuZo8jj5c8LV5MMxM_Us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.37.0/24
185.169.182.0/23
185.174.20.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:05:2c:04:af:75:03:d7:11:bc:92:60:50:69:ab:4a:ad:d3:
f3:e8:96:6c:15:24:62:52:e3:0f:71:0c:91:da:65:f1:a1:31:
e0:58:31:93:51:33:40:12:47:83:f5:a9:5e:bf:f7:9a:9a:8e:
bd:b9:03:11:65:13:be:59:d4:3e:df:79:58:a5:e9:48:00:53:
23:cb:5d:dd:26:b3:1a:5e:b5:09:74:ef:b1:45:63:1d:8a:a2:
f3:c6:a7:29:1f:3f:e2:b4:4c:5c:e6:0f:68:4d:1c:c1:7c:80:
1d:f4:fd:22:49:4b:69:0e:f7:0b:34:4f:04:d6:70:97:ca:3d:
0d:76:43:c1:3e:5f:86:56:9d:e3:48:9d:43:42:80:2d:2c:ba:
a7:15:2f:64:97:62:98:d8:30:84:ce:23:dd:f0:14:1b:27:3e:
13:75:83:be:e1:00:c7:f0:16:d7:ec:fa:93:c4:5a:d8:e0:40:
c6:8f:6c:f2:cd:aa:48:67:f3:86:5a:8e:4c:f2:57:99:c5:2e:
1a:6c:13:79:4a:9b:9f:9e:d8:06:92:5e:c4:5b:a3:f7:95:9b:
44:f2:c4:2c:38:32:ee:5f:36:f4:c8:c3:8b:a5:bc:ac:9c:6f:
44:b3:be:87:5d:67:50:d7:3e:46:94:59:5a:69:c3:bc:f2:2c:
e2:f3:33:74
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY9TNCMwJq8yWylJKZGQMlcqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3
MjAyZDUwHhcNMjQwNTA3MTMxNzU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjZhZWYzMTUzNmNiOTlhM2M4ZTNlNWNmMGI1NzkzMGNjNGNmZDRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/OLCxJKHM00ik7PFyW6qhKDiKA5
UHJ524/5eeoUPG2UDM7ueDQHx2GXGiSRedaD6wEwMUwHZPy3zkyzFk8Sf30iASta
o8irkyacD4R/SEigi5A6AKosuffZBzWq1DODusbB/UYgi4gr1WdJgHteq8i0mi9D
5NDLqXVSHw3gSIO1nqpWtFMD8oi7fV/nnp5VjbW5xQ/p43GcE6anU2onKa2T8XRA
0SxEHvN+EC/kXANPQkm8/ao8Y9M4yVBtYTeZ5fF+JVIB7hgKQatZEqqFqUazCbWK
x5ZfEYUyCsW2GQu9v9Yy+Rf5Bp5ssbJNnnikY8J5VCiNw/tm5hFvah6fSwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFCJq7zFTbLmaPI4+XPC1eTDMTP1LMB8GA1UdIwQY
MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct
YzUxNWYzNTRjYzVhLzEvSW1ydk1WTnN1Wm84amo1YzhMVjVNTXhNX1VzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh
LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALYUlAwQB
uam2AwQBua4UMA0GCSqGSIb3DQEBCwUAA4IBAQC1BSwEr3UD1xG8kmBQaatKrdPz
6JZsFSRiUuMPcQyR2mXxoTHgWDGTUTNAEkeD9alev/eamo69uQMRZRO+WdQ+33lY
pelIAFMjy13dJrMaXrUJdO+xRWMdiqLzxqcpHz/itExc5g9oTRzBfIAd9P0iSUtp
DvcLNE8E1nCXyj0NdkPBPl+GVp3jSJ1DQoAtLLqnFS9kl2KY2DCEziPd8BQbJz4T
dYO+4QDH8BbX7PqTxFrY4EDGj2zyzapIZ/OGWo5M8leZxS4abBN5SpufntgGkl7E
W6P3lZtE8sQsODLuXzb0yMOLpbysnG9Es76HXWdQ1z5GlFlaacO88izi8zN0
-----END CERTIFICATE-----
Generated at Sat Jun 1 17:07:05 2024 by rpki-client on console-fra.rpki-client.org