Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/BfAJWS16e442i3TUThOOoGL3rnc.roa
File: BfAJWS16e442i3TUThOOoGL3rnc.roa (raw, json)
Hash identifier: pg8MnbqNnbvNz55vnGK5Qw5l38l/GJaV4cVNDupGK5U=
Subject key identifier: 05:F0:09:59:2D:7A:7B:8E:36:8B:74:D4:4E:13:8E:A0:62:F7:AE:77
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 0192E8AD4145F7F24A28FB66909784B8327E
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/BfAJWS16e442i3TUThOOoGL3rnc.roa
Signing time: Fri 01 Nov 2024 17:02:01 +0000
ROA not before: Fri 01 Nov 2024 17:02:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63293
IP address blocks: 2a03:2887:ff02::/48 maxlen: 48
2a03:2887:ff03::/48 maxlen: 48
2a03:2887:ff04::/48 maxlen: 48
2a03:2887:ff05::/48 maxlen: 48
2a03:2887:ff06::/48 maxlen: 48
2a03:2887:ff07::/48 maxlen: 48
2a03:2887:ff08::/48 maxlen: 48
2a03:2887:ff09::/48 maxlen: 48
2a03:2887:ff18::/48 maxlen: 48
2a03:2887:ff19::/48 maxlen: 48
2a03:2887:ff1b::/48 maxlen: 48
2a03:2887:ff1c::/48 maxlen: 48
2a03:2887:ff1d::/48 maxlen: 48
2a03:2887:ff1e::/48 maxlen: 48
2a03:2887:ff1f::/48 maxlen: 48
2a03:2887:ff21::/48 maxlen: 48
2a03:2887:ff23::/48 maxlen: 48
2a03:2887:ff24::/48 maxlen: 48
2a03:2887:ff25::/48 maxlen: 48
2a03:2887:ff27::/48 maxlen: 48
2a03:2887:ff28::/48 maxlen: 48
2a03:2887:ff29::/48 maxlen: 48
2a03:2887:ff2a::/48 maxlen: 48
2a03:2887:ff2b::/48 maxlen: 48
2a03:2887:ff2e::/48 maxlen: 48
2a03:2887:ff2f::/48 maxlen: 48
2a03:2887:ff30::/48 maxlen: 48
2a03:2887:ff33::/48 maxlen: 48
2a03:2887:ff35::/48 maxlen: 48
2a03:2887:ff36::/48 maxlen: 48
2a03:2887:ff37::/48 maxlen: 48
2a03:2887:ff38::/48 maxlen: 48
2a03:2887:ff39::/48 maxlen: 48
2a03:2887:ff3a::/48 maxlen: 48
2a03:2887:ff3b::/48 maxlen: 48
2a03:2887:ff3f::/48 maxlen: 48
2a03:2887:ff40::/48 maxlen: 48
2a03:2887:ff41::/48 maxlen: 48
2a03:2887:ff42::/48 maxlen: 48
2a03:2887:ff43::/48 maxlen: 48
2a03:2887:ff44::/48 maxlen: 48
2a03:2887:ff45::/48 maxlen: 48
2a03:2887:ff48::/48 maxlen: 48
2a03:2887:ff49::/48 maxlen: 48
2a03:2887:ff4a::/48 maxlen: 48
2a03:2887:ff4b::/48 maxlen: 48
2a03:2887:ff4d::/48 maxlen: 48
2a03:2887:ff4e::/48 maxlen: 48
2a03:2887:ff4f::/48 maxlen: 48
2a03:2887:ff51::/48 maxlen: 48
2a03:2887:ff52::/48 maxlen: 48
2a03:2887:ff53::/48 maxlen: 48
2a03:2887:ff54::/48 maxlen: 48
2a03:2887:ff55::/48 maxlen: 48
2a03:2887:ff56::/48 maxlen: 48
2a03:2887:ff57::/48 maxlen: 48
2a03:2887:ff58::/48 maxlen: 48
2a03:2887:ff59::/48 maxlen: 48
2a03:2887:ff60::/48 maxlen: 48
2a03:2887:ff61::/48 maxlen: 48
2a03:2887:ff62::/48 maxlen: 48
2a03:2887:ff63::/48 maxlen: 48
2a03:2887:ff64::/48 maxlen: 48
2a03:2887:ff65::/48 maxlen: 48
2a03:2887:ff66::/48 maxlen: 48
2a03:2887:ff67::/48 maxlen: 48
2a03:2887:ff68::/48 maxlen: 48
2a03:2887:ff69::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 06:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e8:ad:41:45:f7:f2:4a:28:fb:66:90:97:84:b8:32:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Nov 1 17:02:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05f009592d7a7b8e368b74d44e138ea062f7ae77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:15:d9:17:ec:8a:02:48:64:d5:08:00:8b:
49:cd:aa:b2:67:2b:b1:95:dd:c4:2a:6d:aa:a1:30:
8b:09:44:ee:60:c9:17:80:86:be:e3:94:31:88:89:
dc:46:68:e9:c8:b1:b5:3b:ae:93:7e:28:b1:06:ca:
48:b3:ed:78:4c:13:66:af:fa:26:2e:e2:a4:e6:75:
06:9b:da:a7:3c:de:cb:61:a9:29:fc:1e:9f:37:47:
24:66:65:c3:98:27:19:b1:11:4e:bf:48:d2:ae:4c:
ec:14:74:3f:1a:71:85:66:f9:49:a5:37:c2:ce:f5:
1f:47:2c:8d:0f:93:8f:f6:94:ef:14:73:ce:3d:ff:
50:02:a2:69:6a:89:7e:e6:8e:59:13:3f:fd:f2:ac:
e9:c2:4c:cd:db:37:48:83:45:cd:e9:c7:86:6b:34:
88:2f:ae:81:1a:ca:ef:76:dc:8e:3d:f3:d4:16:4f:
10:8e:2e:17:ba:64:7b:fe:b0:e6:0e:8b:18:6d:50:
47:33:e2:fc:95:2f:fd:3f:87:a2:8a:89:7f:73:54:
dd:04:87:0a:7b:42:18:c4:02:aa:c4:eb:70:08:57:
15:b6:6e:a2:6a:e8:ec:d7:59:ec:d9:3c:08:63:fd:
36:31:06:48:47:17:59:63:b2:d0:04:17:bd:8e:38:
a3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F0:09:59:2D:7A:7B:8E:36:8B:74:D4:4E:13:8E:A0:62:F7:AE:77
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/BfAJWS16e442i3TUThOOoGL3rnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2887:ff02::-2a03:2887:ff09:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff18::/47
2a03:2887:ff1b::-2a03:2887:ff1f:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff21::/48
2a03:2887:ff23::-2a03:2887:ff25:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff27::-2a03:2887:ff2b:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff2e::-2a03:2887:ff30:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff33::/48
2a03:2887:ff35::-2a03:2887:ff3b:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff3f::-2a03:2887:ff45:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff48::/46
2a03:2887:ff4d::-2a03:2887:ff4f:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff51::-2a03:2887:ff59:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff60::-2a03:2887:ff69:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6d:c4:f3:92:df:7f:e1:ba:25:15:0e:75:5a:60:1a:7e:5e:f1:
dc:4d:14:67:72:92:99:54:c4:02:ab:00:f9:4b:e9:e5:b0:be:
59:b8:51:8e:b4:41:45:04:43:85:8f:f2:1a:dd:b0:09:ad:f1:
a9:15:97:47:ef:50:5a:ca:e9:57:10:6e:85:04:a4:f5:d7:92:
f2:75:1c:60:d1:24:97:e1:12:6d:10:ab:4d:d3:46:57:54:3a:
ee:04:0d:6d:23:6e:da:75:a1:90:06:0f:65:49:6f:2a:dd:3e:
d4:c7:bf:77:5b:5d:e1:4b:81:2f:6e:e4:32:32:23:36:24:c7:
01:9e:75:c3:23:3e:08:bd:66:82:9b:5c:d3:a4:47:1d:e1:a1:
8b:bc:b3:ad:d5:1b:06:92:cd:d8:2b:c0:1b:8e:47:87:25:dc:
26:23:69:af:53:91:fd:dd:d4:cc:d1:65:48:4d:44:c3:8b:69:
97:76:2f:98:4d:58:82:6e:2c:7b:73:d5:62:20:af:bf:03:fd:
80:fc:83:13:9b:45:03:02:03:7d:8a:a5:5b:49:71:c6:50:36:
96:32:27:09:da:46:0e:e9:da:66:d4:55:08:bf:93:37:dc:44:
5e:e4:e4:eb:73:f6:1b:a9:ed:ed:2a:80:a3:d0:5f:01:92:e0:
22:73:b2:89
-----BEGIN CERTIFICATE-----
MIIF6TCCBNGgAwIBAgISAZLorUFF9/JKKPtmkJeEuDJ+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3NWEwNjRmMzAxMDI2YmMzY2Y4NzY2NmQ2YTgyMDEyODIx
MmE4MTEwHhcNMjQxMTAxMTcwMjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNWYwMDk1OTJkN2E3YjhlMzY4Yjc0ZDQ0ZTEzOGVhMDYyZjdhZTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqwV2RfsigJIZNUIAItJzaqyZyux
ld3EKm2qoTCLCUTuYMkXgIa+45QxiIncRmjpyLG1O66TfiixBspIs+14TBNmr/om
LuKk5nUGm9qnPN7LYakp/B6fN0ckZmXDmCcZsRFOv0jSrkzsFHQ/GnGFZvlJpTfC
zvUfRyyND5OP9pTvFHPOPf9QAqJpaol+5o5ZEz/98qzpwkzN2zdIg0XN6ceGazSI
L66BGsrvdtyOPfPUFk8Qji4XumR7/rDmDosYbVBHM+L8lS/9P4eiiol/c1TdBIcK
e0IYxAKqxOtwCFcVtm6iaujs11ns2TwIY/02MQZIRxdZY7LQBBe9jjij7QIDAQAB
o4IC9TCCAvEwHQYDVR0OBBYEFAXwCVktenuONot01E4TjqBi9653MB8GA1UdIwQY
MBaAFDdaBk8wECa8PPh2ZtaoIBKCEqgRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjFvR1R6QVFKcnc4LUhabTFxZ2dFb0lTcUJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9kYzU4ODEtMzYzMi00NWFmLWJmNTkt
ZjQ0YTU3Y2VkNzNkLzEvQmZBSldTMTZlNDQyaTNUVVRoT09vR0wzcm5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9kYzU4ODEtMzYzMi00NWFmLWJmNTktZjQ0YTU3Y2VkNzNk
LzEvTjFvR1R6QVFKcnc4LUhabTFxZ2dFb0lTcUJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCQYIKwYBBQUHAQcBAf8EgfkwgfYwgfMEAgACMIHsMBID
BwEqAyiH/wIDBwEqAyiH/wgDBwEqAyiH/xgwEgMHACoDKIf/GwMHBSoDKIf/AAMH
ACoDKIf/ITASAwcAKgMoh/8jAwcBKgMoh/8kMBIDBwAqAyiH/ycDBwIqAyiH/ygw
EgMHASoDKIf/LgMHACoDKIf/MAMHACoDKIf/MzASAwcAKgMoh/81AwcCKgMoh/84
MBIDBwAqAyiH/z8DBwEqAyiH/0QDBwIqAyiH/0gwEgMHACoDKIf/TQMHBCoDKIf/
QDASAwcAKgMoh/9RAwcBKgMoh/9YMBIDBwUqAyiH/2ADBwEqAyiH/2gwDQYJKoZI
hvcNAQELBQADggEBAG3E85Lff+G6JRUOdVpgGn5e8dxNFGdykplUxAKrAPlL6eWw
vlm4UY60QUUEQ4WP8hrdsAmt8akVl0fvUFrK6VcQboUEpPXXkvJ1HGDRJJfhEm0Q
q03TRldUOu4EDW0jbtp1oZAGD2VJbyrdPtTHv3dbXeFLgS9u5DIyIzYkxwGedcMj
Pgi9ZoKbXNOkRx3hoYu8s63VGwaSzdgrwBuOR4cl3CYjaa9Tkf3d1MzRZUhNRMOL
aZd2L5hNWIJuLHtz1WIgr78D/YD8gxObRQMCA32KpVtJccZQNpYyJwnaRg7p2mbU
VQi/kzfcRF7k5Otz9hup7e0qgKPQXwGS4CJzsok=
-----END CERTIFICATE-----
Generated at Fri Nov 22 13:39:35 2024 by rpki-client on console-fra.rpki-client.org