Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/xs82aokeVGpVsbaQUDmPhz-LvAs.roa
File: xs82aokeVGpVsbaQUDmPhz-LvAs.roa (raw, json)
Hash identifier: 9gUchDnFVAfbXz4mJxlWvv6Y/C1eNg869gO2cKLtfMk=
Subject key identifier: C6:CF:36:6A:89:1E:54:6A:55:B1:B6:90:50:39:8F:87:3F:8B:BC:0B
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 018DDB552C095E23EB9A43157F1470A29770
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/xs82aokeVGpVsbaQUDmPhz-LvAs.roa
Signing time: Sat 24 Feb 2024 13:36:48 +0000
ROA not before: Sat 24 Feb 2024 13:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60631
IP address blocks: 45.139.10.0/24 maxlen: 24
45.139.11.0/24 maxlen: 24
185.105.239.0/24 maxlen: 24
185.231.112.0/24 maxlen: 24
185.231.115.0/24 maxlen: 24
194.147.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.mft
rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 01:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:db:55:2c:09:5e:23:eb:9a:43:15:7f:14:70:a2:97:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Feb 24 13:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6cf366a891e546a55b1b69050398f873f8bbc0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e5:25:40:36:0b:e7:73:44:94:f1:ee:ad:48:
84:40:ac:67:08:b1:e7:9c:47:c7:c8:85:ae:25:6b:
5e:cc:74:d5:90:33:a0:df:57:7f:3e:d7:79:6e:99:
be:cf:4e:84:a7:08:77:cf:a5:b4:b9:e7:40:ed:ca:
d6:7b:02:a9:a9:29:ca:32:0b:ed:14:24:27:3e:2b:
88:c7:33:df:ad:6b:7c:63:79:7c:d3:7a:05:85:4a:
7c:9f:ba:d9:2f:53:d8:1d:f8:68:95:be:ba:70:90:
55:c9:73:aa:a6:50:e6:f5:ab:ca:50:24:41:d4:83:
be:26:9b:19:0f:8c:54:9f:d8:fd:7d:18:2f:1a:4f:
19:d1:dc:6b:b1:3d:2c:b3:3a:90:3d:ae:7b:56:2a:
f6:c9:de:2c:23:d5:07:8f:01:58:79:5a:73:10:73:
e8:6b:fa:f5:d6:84:c0:e8:93:3a:d8:e1:29:79:5f:
a4:97:d6:64:5c:ea:60:09:4c:88:86:92:1b:bf:b9:
17:49:0b:e2:18:19:d5:e6:3f:cf:2d:9d:5f:90:df:
70:66:67:0b:d7:18:e5:03:03:3d:1f:66:d6:6e:12:
ce:98:ca:e5:49:93:8c:a4:2e:74:e9:c4:b4:db:c1:
54:5c:66:c8:39:e4:aa:7c:d7:3a:d6:9b:1a:7b:e3:
af:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:CF:36:6A:89:1E:54:6A:55:B1:B6:90:50:39:8F:87:3F:8B:BC:0B
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/xs82aokeVGpVsbaQUDmPhz-LvAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.10.0/23
185.105.239.0/24
185.231.112.0/24
185.231.115.0/24
194.147.142.0/24
Signature Algorithm: sha256WithRSAEncryption
76:1f:4d:d6:0b:70:4c:e3:1f:6b:e7:9d:f8:73:ff:5f:e5:6d:
64:df:ba:bc:3e:f7:72:4f:91:b1:dc:3e:6c:19:0b:02:e0:6f:
eb:5e:00:75:07:9a:78:47:ca:bc:99:08:2b:0c:13:ad:df:f6:
d2:51:46:a1:ae:be:15:1d:8f:19:8a:0a:4b:60:33:ac:b7:b3:
23:ec:c4:68:29:6f:ee:1b:f0:db:6b:29:45:27:95:cf:ed:34:
5a:9f:d7:c9:b1:5e:5b:02:df:ec:68:e9:6a:77:e3:64:b8:81:
ab:7f:f8:e7:1d:bc:0e:89:1d:10:6d:91:63:6d:44:79:03:7a:
77:af:c6:1a:af:c6:8b:ba:cf:fe:41:01:e9:cc:94:17:7f:d2:
87:23:2a:91:8d:31:ab:78:3c:b7:1e:db:40:a6:97:45:d7:c1:
ce:ea:9e:b9:db:af:6d:3e:14:46:e3:53:d3:97:16:38:18:b7:
22:f9:d1:1f:15:ae:aa:9a:48:ec:6d:77:55:35:02:d9:42:84:
d0:dd:2b:d8:a8:51:87:1a:1e:c3:de:10:c0:1f:aa:6c:f3:7c:
9f:10:50:3e:f1:23:53:68:7e:47:0d:6d:a3:2f:ff:5d:cd:8d:
e6:fd:60:45:b6:08:4a:58:55:60:17:0c:ce:54:0a:ce:59:40:
1e:a4:f3:ea
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAY3bVSwJXiPrmkMVfxRwopdwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkMzBhMTMxNzE4NTYwYTM0YWIzNDkzODg0ZTg1OGVjNDMx
ZjZhZDEwHhcNMjQwMjI0MTMzNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmNmMzY2YTg5MWU1NDZhNTViMWI2OTA1MDM5OGY4NzNmOGJiYzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eUlQDYL53NElPHurUiEQKxnCLHn
nEfHyIWuJWtezHTVkDOg31d/Ptd5bpm+z06Epwh3z6W0uedA7crWewKpqSnKMgvt
FCQnPiuIxzPfrWt8Y3l803oFhUp8n7rZL1PYHfholb66cJBVyXOqplDm9avKUCRB
1IO+JpsZD4xUn9j9fRgvGk8Z0dxrsT0sszqQPa57Vir2yd4sI9UHjwFYeVpzEHPo
a/r11oTA6JM62OEpeV+kl9ZkXOpgCUyIhpIbv7kXSQviGBnV5j/PLZ1fkN9wZmcL
1xjlAwM9H2bWbhLOmMrlSZOMpC506cS028FUXGbIOeSqfNc61psae+OvyQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFMbPNmqJHlRqVbG2kFA5j4c/i7wLMB8GA1UdIwQY
MBaAFO0woTFxhWCjSrNJOIToWOxDH2rRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTkt
NGIzYjFiNjNiNmFiLzEveHM4MmFva2VWR3BWc2JhUVVEbVBoei1MdkFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTktNGIzYjFiNjNiNmFi
LzEvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBLYsKAwQA
uWnvAwQAuedwAwQAuedzAwQAwpOOMA0GCSqGSIb3DQEBCwUAA4IBAQB2H03WC3BM
4x9r5534c/9f5W1k37q8PvdyT5Gx3D5sGQsC4G/rXgB1B5p4R8q8mQgrDBOt3/bS
UUahrr4VHY8ZigpLYDOst7Mj7MRoKW/uG/DbaylFJ5XP7TRan9fJsV5bAt/saOlq
d+NkuIGrf/jnHbwOiR0QbZFjbUR5A3p3r8Yar8aLus/+QQHpzJQXf9KHIyqRjTGr
eDy3HttAppdF18HO6p65269tPhRG41PTlxY4GLci+dEfFa6qmkjsbXdVNQLZQoTQ
3SvYqFGHGh7D3hDAH6ps83yfEFA+8SNTaH5HDW2jL/9dzY3m/WBFtghKWFVgFwzO
VArOWUAepPPq
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:43:45 2024 by rpki-client on console-ams.rpki-client.org