Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/oO_CMy4ImrfgG32OEUoxo0GZ_9U.roa
File: oO_CMy4ImrfgG32OEUoxo0GZ_9U.roa (raw, json)
Hash identifier: 2F9D3g5tUoielaKYGp6qPPjoruAPa1UHOhRvTa+wcnI=
Subject key identifier: A0:EF:C2:33:2E:08:9A:B7:E0:1B:7D:8E:11:4A:31:A3:41:99:FF:D5
Certificate issuer: /CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6
Certificate serial: 0192E741CA2976D7DE6791CD2902A366A7F1
Authority key identifier: 6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/oO_CMy4ImrfgG32OEUoxo0GZ_9U.roa
Signing time: Fri 01 Nov 2024 10:25:01 +0000
ROA not before: Fri 01 Nov 2024 10:25:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49371
IP address blocks: 185.124.12.0/24 maxlen: 24
185.124.13.0/24 maxlen: 24
185.124.14.0/24 maxlen: 24
185.124.15.0/24 maxlen: 24
185.236.28.0/22 maxlen: 22
2a03:9000::/40 maxlen: 40
2a03:9000:200::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e7:41:ca:29:76:d7:de:67:91:cd:29:02:a3:66:a7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6
Validity
Not Before: Nov 1 10:25:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0efc2332e089ab7e01b7d8e114a31a34199ffd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ec:fb:1e:d6:5a:07:b3:f3:a0:b4:4b:28:99:
7d:64:1e:28:9c:c5:3c:57:69:9f:dc:74:e9:56:73:
c3:7b:5b:8f:1a:92:2a:7a:a8:7b:a7:60:15:ee:1f:
24:23:3f:3b:9a:8a:b8:79:43:3f:84:f6:68:87:86:
d5:2a:93:16:4f:02:7f:31:7d:3b:7f:7c:a0:74:94:
d4:04:79:51:30:01:83:7f:8c:52:f7:62:8d:bc:42:
c6:26:8e:89:cf:17:c3:df:7d:87:6b:62:ad:ba:32:
be:7f:fd:65:30:d0:07:bd:5f:9a:9e:c6:72:24:c5:
e3:b6:db:67:bc:86:c0:cb:cb:bd:82:a1:d7:dc:2c:
e5:ab:90:e9:62:be:e7:4c:21:fb:d9:78:25:f6:9f:
2c:48:98:f4:2d:2e:da:29:81:da:1e:0c:1b:2d:18:
5b:69:aa:52:ee:81:ee:6a:6b:68:e2:6e:0b:23:df:
3b:06:2f:9a:4d:86:c7:c6:3b:49:fc:b4:38:e9:a8:
cf:7d:14:cd:60:0d:69:0d:06:19:26:0f:18:6a:e7:
33:f3:3d:84:30:1a:01:52:9b:0e:74:dd:2b:01:c1:
1e:9a:b1:ea:29:9a:d2:f2:63:d4:81:5b:11:af:e9:
e4:64:19:93:d2:dd:16:65:70:7c:0b:5f:b0:1e:a6:
b4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:EF:C2:33:2E:08:9A:B7:E0:1B:7D:8E:11:4A:31:A3:41:99:FF:D5
X509v3 Authority Key Identifier:
keyid:6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/oO_CMy4ImrfgG32OEUoxo0GZ_9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.12.0/22
185.236.28.0/22
IPv6:
2a03:9000::/40
2a03:9000:200::/40
Signature Algorithm: sha256WithRSAEncryption
3a:81:43:8e:5f:fd:d2:75:45:84:b9:79:12:5d:ea:ad:de:19:
da:7e:40:00:04:4f:d8:68:0c:37:eb:75:e5:be:2e:4d:a4:d6:
e3:d3:79:05:37:29:39:a9:ff:52:c7:ab:65:65:26:08:aa:c8:
fe:10:ba:dc:28:2d:2d:ef:2c:06:5d:d3:45:aa:8e:02:6c:27:
72:7e:24:e0:e0:e5:60:06:fc:64:3d:19:73:59:60:33:c0:d7:
f3:cc:41:b0:de:72:99:b6:01:7f:c6:5f:a9:1f:0f:7a:cb:3a:
a5:32:72:52:83:f1:1d:9d:25:4a:da:36:d7:ed:1c:e9:b4:d2:
53:03:e3:8b:90:03:cf:59:e3:8c:ed:2f:f7:04:c1:fd:8f:9a:
f0:15:61:14:be:a7:25:29:8b:b3:0a:44:ec:89:bd:80:65:59:
7f:b9:af:45:f6:53:37:bb:c3:a5:c3:ab:47:9c:35:0c:05:a9:
09:7d:a0:88:04:4f:02:8b:84:8b:b3:f2:27:0e:96:19:ca:e7:
28:c5:d9:14:54:5e:e0:77:68:b4:5f:77:33:0b:d1:1e:a9:07:
49:87:65:36:7b:b6:14:63:b3:ea:4a:6f:73:9a:8d:9f:f3:2a:
7c:50:17:d3:ad:ef:e9:06:16:6c:20:c8:75:55:77:49:b6:7e:
76:1c:59:9a
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZLnQcopdtfeZ5HNKQKjZqfxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMWJhNmUxNGQ4M2E4YjE0YjA1MDI2ZTcxMGM4NmM0NmI3
M2MzYTYwHhcNMjQxMTAxMTAyNTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGVmYzIzMzJlMDg5YWI3ZTAxYjdkOGUxMTRhMzFhMzQxOTlmZmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqez7HtZaB7PzoLRLKJl9ZB4onMU8
V2mf3HTpVnPDe1uPGpIqeqh7p2AV7h8kIz87moq4eUM/hPZoh4bVKpMWTwJ/MX07
f3ygdJTUBHlRMAGDf4xS92KNvELGJo6JzxfD332Ha2KtujK+f/1lMNAHvV+ansZy
JMXjtttnvIbAy8u9gqHX3Czlq5DpYr7nTCH72Xgl9p8sSJj0LS7aKYHaHgwbLRhb
aapS7oHuamto4m4LI987Bi+aTYbHxjtJ/LQ46ajPfRTNYA1pDQYZJg8Yaucz8z2E
MBoBUpsOdN0rAcEemrHqKZrS8mPUgVsRr+nkZBmT0t0WZXB8C1+wHqa0CQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFKDvwjMuCJq34Bt9jhFKMaNBmf/VMB8GA1UdIwQY
MBaAFG8bpuFNg6ixSwUCbnEMhsRrc8OmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnh1bTRVMkRxTEZMQlFKdWNReUd4R3R6dzZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jZTgxYjYtYmNlYi00N2JjLWFkZmIt
ZGFlOWZiOGJmMGIxLzEvb09fQ015NEltcmZnRzMyT0VVb3hvMEdaXzlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9jZTgxYjYtYmNlYi00N2JjLWFkZmItZGFlOWZiOGJmMGIx
LzEvYnh1bTRVMkRxTEZMQlFKdWNReUd4R3R6dzZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQCuXwMAwQC
uewcMBYEAgACMBADBgAqA5AAAAMGACoDkAACMA0GCSqGSIb3DQEBCwUAA4IBAQA6
gUOOX/3SdUWEuXkSXeqt3hnafkAABE/YaAw363Xlvi5NpNbj03kFNyk5qf9Sx6tl
ZSYIqsj+ELrcKC0t7ywGXdNFqo4CbCdyfiTg4OVgBvxkPRlzWWAzwNfzzEGw3nKZ
tgF/xl+pHw96yzqlMnJSg/EdnSVK2jbX7RzptNJTA+OLkAPPWeOM7S/3BMH9j5rw
FWEUvqclKYuzCkTsib2AZVl/ua9F9lM3u8Olw6tHnDUMBakJfaCIBE8Ci4SLs/In
DpYZyucoxdkUVF7gd2i0X3czC9EeqQdJh2U2e7YUY7PqSm9zmo2f8yp8UBfTre/p
BhZsIMh1VXdJtn52HFma
-----END CERTIFICATE-----
Generated at Fri Nov 22 19:50:45 2024 by rpki-client on console-fra.rpki-client.org