Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/LaSyX5CByE4O6gl_dJI2mJrnsek.roa
File: LaSyX5CByE4O6gl_dJI2mJrnsek.roa (raw, json)
Hash identifier: 8jZF/feIizLWV6QAgDj4NmnAlz7ZATj/zOSGM56MQXI=
Subject key identifier: 2D:A4:B2:5F:90:81:C8:4E:0E:EA:09:7F:74:92:36:98:9A:E7:B1:E9
Certificate issuer: /CN=6bba6d0f0f9b19f7f43ceb43e7359a3d84e99d99
Certificate serial: 01932C02EEC76E63FF9E5C139894AAA2CCCA
Authority key identifier: 6B:BA:6D:0F:0F:9B:19:F7:F4:3C:EB:43:E7:35:9A:3D:84:E9:9D:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7ptDw-bGff0POtD5zWaPYTpnZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/LaSyX5CByE4O6gl_dJI2mJrnsek.roa
Signing time: Thu 14 Nov 2024 18:50:09 +0000
ROA not before: Thu 14 Nov 2024 18:50:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201502
IP address blocks: 46.255.240.0/21 maxlen: 24
46.255.240.0/24 maxlen: 24
46.255.241.0/24 maxlen: 24
46.255.242.0/24 maxlen: 24
46.255.243.0/24 maxlen: 24
46.255.244.0/24 maxlen: 24
46.255.245.0/24 maxlen: 24
46.255.246.0/24 maxlen: 24
46.255.247.0/24 maxlen: 24
176.124.114.0/24 maxlen: 24
185.13.220.0/22 maxlen: 24
185.25.136.0/22 maxlen: 22
185.25.136.0/24 maxlen: 24
185.25.137.0/24 maxlen: 24
185.25.138.0/24 maxlen: 24
185.25.139.0/24 maxlen: 24
185.203.172.0/22 maxlen: 24
185.203.172.0/24 maxlen: 24
185.203.173.0/24 maxlen: 24
185.203.174.0/24 maxlen: 24
185.203.175.0/24 maxlen: 24
185.220.80.0/24 maxlen: 24
185.253.80.0/22 maxlen: 24
188.208.19.0/24 maxlen: 24
188.214.82.0/24 maxlen: 24
188.214.83.0/24 maxlen: 24
2a03:a6c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/a7ptDw-bGff0POtD5zWaPYTpnZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/a7ptDw-bGff0POtD5zWaPYTpnZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/a7ptDw-bGff0POtD5zWaPYTpnZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2c:02:ee:c7:6e:63:ff:9e:5c:13:98:94:aa:a2:cc:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bba6d0f0f9b19f7f43ceb43e7359a3d84e99d99
Validity
Not Before: Nov 14 18:50:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2da4b25f9081c84e0eea097f749236989ae7b1e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:7e:c5:6e:71:47:06:83:da:d8:3b:3b:ed:0a:
91:c6:59:db:7d:2b:91:c7:69:f2:d1:55:34:4c:7b:
e5:37:0e:32:9c:26:80:99:21:9f:b7:1e:8a:54:2c:
05:7f:32:87:10:c7:54:4a:fd:cf:5b:02:61:c2:f2:
7d:5b:de:d1:45:48:e3:fd:14:82:b4:0d:68:a3:12:
ff:b8:87:d1:2d:95:3c:e8:ce:35:44:3f:d8:8d:2a:
ca:e5:19:46:23:f4:db:63:16:d4:ef:09:42:6e:83:
48:1f:5d:2e:8a:a1:0d:8d:54:ae:e5:96:e5:59:24:
3a:67:b7:b3:d3:e1:8c:b6:ef:f4:d5:2e:4a:3c:0b:
a7:43:c0:da:77:1e:ba:b0:ed:c8:1f:43:75:0f:84:
dc:48:0c:6a:f7:5a:dc:5b:12:2c:67:7f:a1:d9:18:
1e:93:ec:b8:74:6f:0d:16:b0:5f:a4:af:e6:ee:71:
af:c3:19:bb:97:47:dc:a5:04:e8:ce:ff:16:a6:6b:
39:19:74:41:a0:ff:c6:c6:09:eb:75:df:c2:ff:a2:
5d:e2:01:e6:1b:6a:ea:4c:12:f1:4e:bc:85:a5:6f:
44:5c:5c:5a:e7:2a:e6:63:6a:82:a4:28:1e:0c:8f:
7d:49:c2:37:f8:83:df:75:f4:e1:f3:ae:05:a4:7b:
fa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A4:B2:5F:90:81:C8:4E:0E:EA:09:7F:74:92:36:98:9A:E7:B1:E9
X509v3 Authority Key Identifier:
keyid:6B:BA:6D:0F:0F:9B:19:F7:F4:3C:EB:43:E7:35:9A:3D:84:E9:9D:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7ptDw-bGff0POtD5zWaPYTpnZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/LaSyX5CByE4O6gl_dJI2mJrnsek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/632e89-8842-48b1-9dcf-2aeadb966b76/1/a7ptDw-bGff0POtD5zWaPYTpnZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.240.0/21
176.124.114.0/24
185.13.220.0/22
185.25.136.0/22
185.203.172.0/22
185.220.80.0/24
185.253.80.0/22
188.208.19.0/24
188.214.82.0/23
IPv6:
2a03:a6c0::/32
Signature Algorithm: sha256WithRSAEncryption
67:d4:05:90:21:3d:ca:34:78:d5:2d:32:39:e1:42:89:e9:14:
37:f6:b3:87:43:5f:da:a8:a0:93:fa:b2:b2:e6:d8:4a:0e:98:
0f:fd:16:38:ad:d2:92:d6:6c:ee:26:8f:e8:81:12:f8:37:98:
c6:69:67:5b:a1:bc:b5:1c:75:f1:43:21:e2:f4:02:f9:b9:5b:
5b:d2:ee:b7:f0:a4:5d:ed:9b:9b:da:44:af:71:73:2a:36:f7:
17:f3:6d:0e:9a:54:fb:c8:48:b5:4e:e3:f5:f1:e3:3d:a0:80:
8e:54:53:88:d1:76:72:14:85:01:95:39:21:15:f6:08:65:24:
7b:95:16:e4:0f:35:38:14:79:e0:9f:9b:c6:4d:f9:24:58:f8:
bd:39:3b:6e:5e:a7:d2:97:ba:bf:84:04:98:bb:8e:3a:8e:98:
d0:87:fb:e0:69:7c:78:bb:45:ec:d6:e4:04:92:e7:95:70:4c:
44:1b:cd:03:0c:4e:07:2d:87:79:6f:e5:19:12:5f:21:ae:7a:
00:23:73:92:8a:c1:4f:60:23:83:09:2f:a4:8a:34:ab:65:31:
00:51:a8:35:f4:2f:fa:b8:d0:79:a5:91:8f:5e:07:0a:45:ad:
bf:87:e0:c9:06:dd:6f:9c:04:ad:b0:73:3b:5b:d1:85:b1:a8:
4a:4a:59:6d
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAZMsAu7HbmP/nlwTmJSqoszKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYmE2ZDBmMGY5YjE5ZjdmNDNjZWI0M2U3MzU5YTNkODRl
OTlkOTkwHhcNMjQxMTE0MTg1MDA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGE0YjI1ZjkwODFjODRlMGVlYTA5N2Y3NDkyMzY5ODlhZTdiMWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5H7FbnFHBoPa2Ds77QqRxlnbfSuR
x2ny0VU0THvlNw4ynCaAmSGftx6KVCwFfzKHEMdUSv3PWwJhwvJ9W97RRUjj/RSC
tA1ooxL/uIfRLZU86M41RD/YjSrK5RlGI/TbYxbU7wlCboNIH10uiqENjVSu5Zbl
WSQ6Z7ez0+GMtu/01S5KPAunQ8Dadx66sO3IH0N1D4TcSAxq91rcWxIsZ3+h2Rge
k+y4dG8NFrBfpK/m7nGvwxm7l0fcpQTozv8Wpms5GXRBoP/Gxgnrdd/C/6Jd4gHm
G2rqTBLxTryFpW9EXFxa5yrmY2qCpCgeDI99ScI3+IPfdfTh864FpHv6lQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFC2ksl+QgchODuoJf3SSNpia57HpMB8GA1UdIwQY
MBaAFGu6bQ8Pmxn39DzrQ+c1mj2E6Z2ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTdwdER3LWJHZmYwUE90RDV6V2FQWVRwblprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi82MzJlODktODg0Mi00OGIxLTlkY2Yt
MmFlYWRiOTY2Yjc2LzEvTGFTeVg1Q0J5RTRPNmdsX2RKSTJtSnJuc2VrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi82MzJlODktODg0Mi00OGIxLTlkY2YtMmFlYWRiOTY2Yjc2
LzEvYTdwdER3LWJHZmYwUE90RDV6V2FQWVRwblprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQDLv/wAwQA
sHxyAwQCuQ3cAwQCuRmIAwQCucusAwQAudxQAwQCuf1QAwQAvNATAwQBvNZSMA0E
AgACMAcDBQAqA6bAMA0GCSqGSIb3DQEBCwUAA4IBAQBn1AWQIT3KNHjVLTI54UKJ
6RQ39rOHQ1/aqKCT+rKy5thKDpgP/RY4rdKS1mzuJo/ogRL4N5jGaWdboby1HHXx
QyHi9AL5uVtb0u638KRd7Zub2kSvcXMqNvcX820OmlT7yEi1TuP18eM9oICOVFOI
0XZyFIUBlTkhFfYIZSR7lRbkDzU4FHngn5vGTfkkWPi9OTtuXqfSl7q/hASYu446
jpjQh/vgaXx4u0Xs1uQEkueVcExEG80DDE4HLYd5b+UZEl8hrnoAI3OSisFPYCOD
CS+kijSrZTEAUag19C/6uNB5pZGPXgcKRa2/h+DJBt1vnAStsHM7W9GFsahKSllt
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:13:48 2024 by rpki-client on console-ams.rpki-client.org