Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/g6w8p1a3DixIZhJyz_CRIzPtGHc.roa
File: g6w8p1a3DixIZhJyz_CRIzPtGHc.roa (raw, json)
Hash identifier: n9F0TwIyJKJ/KqzXmQv3P5j5xEywxN0hPe1qAPzYfyM=
Subject key identifier: 83:AC:3C:A7:56:B7:0E:2C:48:66:12:72:CF:F0:91:23:33:ED:18:77
Certificate issuer: /CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Certificate serial: 018D91339DA7F829037599EB7D24E0226FA1
Authority key identifier: 12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/g6w8p1a3DixIZhJyz_CRIzPtGHc.roa
Signing time: Sat 10 Feb 2024 04:08:15 +0000
ROA not before: Sat 10 Feb 2024 04:08:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6095
IP address blocks: 160.62.0.0/24 maxlen: 24
160.62.3.0/24 maxlen: 24
160.62.21.0/24 maxlen: 24
160.62.22.0/24 maxlen: 24
160.62.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 30 Jun 2024 02:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:91:33:9d:a7:f8:29:03:75:99:eb:7d:24:e0:22:6f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Validity
Not Before: Feb 10 04:08:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83ac3ca756b70e2c48661272cff0912333ed1877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:97:ef:43:68:07:8b:28:85:f9:f8:0f:b1:1d:
a1:95:90:30:9e:cb:26:a2:c0:ed:e8:31:7d:7d:ab:
cd:08:cf:1d:cc:09:26:44:e3:3f:80:4a:f9:43:f8:
c7:25:38:d2:12:3c:a7:c8:e1:b6:4e:25:58:78:1b:
87:5c:ef:9b:60:d4:0b:37:d4:96:3b:9b:93:d0:f5:
4c:ee:8e:d5:61:39:b2:fd:40:b4:1a:5b:bf:85:a8:
d7:c7:4f:f9:f5:b9:da:a2:f1:36:3b:c2:d0:86:10:
0c:6a:2c:87:4d:23:24:b4:90:b9:41:e7:fe:48:51:
9a:cb:1b:0c:1a:80:6b:5b:3c:81:3b:e9:a5:26:95:
57:9f:43:78:8f:d4:77:23:be:8e:ba:60:17:20:68:
e6:eb:7b:63:94:c0:7b:05:e5:a4:12:16:bd:a7:ba:
b9:07:51:0c:14:a2:51:d4:a1:b1:c1:b2:0f:6e:e0:
0f:9f:50:7c:f8:2f:80:61:4a:f0:c8:d7:5c:83:b3:
4d:cd:e8:c9:8a:6c:03:3b:cb:89:fe:37:b1:04:1c:
82:4f:7c:6b:c1:79:1f:7d:56:4f:74:ec:3c:f7:03:
69:57:44:5e:04:8b:ca:c6:da:37:9e:f8:86:cb:76:
30:f3:80:ba:cb:dd:b3:a6:49:db:54:a2:bf:62:db:
6f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AC:3C:A7:56:B7:0E:2C:48:66:12:72:CF:F0:91:23:33:ED:18:77
X509v3 Authority Key Identifier:
keyid:12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/g6w8p1a3DixIZhJyz_CRIzPtGHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.62.0.0/24
160.62.3.0/24
160.62.21.0-160.62.23.255
Signature Algorithm: sha256WithRSAEncryption
15:54:ce:b2:5e:76:87:9a:28:e3:93:32:e1:53:cf:4f:32:b6:
94:84:49:8b:0e:a1:88:6a:c0:5f:79:59:17:70:1e:a2:4a:9b:
b7:f4:75:d9:3f:a8:5e:a7:19:c7:25:b9:1b:a1:7c:45:f3:78:
33:c3:f4:03:a5:cb:d7:c3:c2:39:99:f1:21:d1:c9:6f:ba:c8:
5f:6e:79:e0:54:6f:f3:7e:18:92:04:da:47:42:89:a5:71:03:
4a:7e:d2:ff:51:f5:f6:b7:59:99:37:84:09:76:52:cd:3f:72:
a8:8e:79:71:36:20:14:15:f2:f5:5f:fb:20:06:b6:15:1b:5a:
bb:8b:c0:c2:ff:05:c6:0d:d4:40:84:4d:80:6c:c7:d5:10:62:
e6:4e:11:25:b0:de:31:b9:77:53:f2:04:bb:54:be:46:b6:ce:
94:7e:63:f1:bb:f5:d0:10:1c:cd:74:30:d0:2c:55:97:ab:21:
af:51:b9:a1:f8:1a:b4:f2:b4:70:2c:88:b5:cc:f8:5e:6b:99:
62:1e:dc:b4:46:3b:f9:c3:56:1b:b9:3d:90:63:c5:be:54:27:
82:76:60:28:4a:61:5b:7a:93:8a:37:2f:cd:5c:a4:c5:1c:ab:
cb:50:37:7f:b6:55:6f:87:bb:35:d8:6b:c0:88:7c:cd:d3:b3:
85:6f:cf:54
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAY2RM52n+CkDdZnrfSTgIm+hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyMjRlNWVmZjFhYmMwZTZkOGJmMDI5ZTRmNzMyZTBhYjcx
YmMxNmEwHhcNMjQwMjEwMDQwODE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4M2FjM2NhNzU2YjcwZTJjNDg2NjEyNzJjZmYwOTEyMzMzZWQxODc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh5fvQ2gHiyiF+fgPsR2hlZAwnssm
osDt6DF9favNCM8dzAkmROM/gEr5Q/jHJTjSEjynyOG2TiVYeBuHXO+bYNQLN9SW
O5uT0PVM7o7VYTmy/UC0Glu/hajXx0/59bnaovE2O8LQhhAMaiyHTSMktJC5Qef+
SFGayxsMGoBrWzyBO+mlJpVXn0N4j9R3I76OumAXIGjm63tjlMB7BeWkEha9p7q5
B1EMFKJR1KGxwbIPbuAPn1B8+C+AYUrwyNdcg7NNzejJimwDO8uJ/jexBByCT3xr
wXkffVZPdOw89wNpV0ReBIvKxto3nviGy3Yw84C6y92zpknbVKK/Yttv1QIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFIOsPKdWtw4sSGYScs/wkSMz7Rh3MB8GA1UdIwQY
MBaAFBIk5e/xq8Dm2L8Cnk9zLgq3G8FqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWlUbDdfR3J3T2JZdndLZVQzTXVDcmNid1dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xMWJlMjMtM2JlNi00ODgxLWEzZDEt
NTM4NmIxZDk2M2JjLzEvZzZ3OHAxYTNEaXhJWmhKeXpfQ1JJelB0R0hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8xMWJlMjMtM2JlNi00ODgxLWEzZDEtNTM4NmIxZDk2M2Jj
LzEvRWlUbDdfR3J3T2JZdndLZVQzTXVDcmNid1dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQAoD4AAwQA
oD4DMAwDBACgPhUDBAOgPhAwDQYJKoZIhvcNAQELBQADggEBABVUzrJedoeaKOOT
MuFTz08ytpSESYsOoYhqwF95WRdwHqJKm7f0ddk/qF6nGccluRuhfEXzeDPD9AOl
y9fDwjmZ8SHRyW+6yF9ueeBUb/N+GJIE2kdCiaVxA0p+0v9R9fa3WZk3hAl2Us0/
cqiOeXE2IBQV8vVf+yAGthUbWruLwML/BcYN1ECETYBsx9UQYuZOESWw3jG5d1Py
BLtUvka2zpR+Y/G79dAQHM10MNAsVZerIa9RuaH4GrTytHAsiLXM+F5rmWIe3LRG
O/nDVhu5PZBjxb5UJ4J2YChKYVt6k4o3L81cpMUcq8tQN3+2VW+HuzXYa8CIfM3T
s4Vvz1Q=
-----END CERTIFICATE-----
Generated at Sat Jun 29 07:01:42 2024 by rpki-client on console-fra.rpki-client.org