Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/vweFyq-9gVfo43Ngaas1nCKgzgg.roa
File: vweFyq-9gVfo43Ngaas1nCKgzgg.roa (raw, json)
Hash identifier: phfpJfxs1GxypnYPi+XFMO7UZm0+5lUpI9Hn7av3UIs=
Subject key identifier: BF:07:85:CA:AF:BD:81:57:E8:E3:73:60:69:AB:35:9C:22:A0:CE:08
Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Certificate serial: 018FE37CA44F6732577E2518B65BEA65B4D5
Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/vweFyq-9gVfo43Ngaas1nCKgzgg.roa
Signing time: Tue 04 Jun 2024 13:42:27 +0000
ROA not before: Tue 04 Jun 2024 13:42:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39791
IP address blocks: 185.115.182.0/24 maxlen: 24
2a07:7a00::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e3:7c:a4:4f:67:32:57:7e:25:18:b6:5b:ea:65:b4:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Validity
Not Before: Jun 4 13:42:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf0785caafbd8157e8e3736069ab359c22a0ce08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:67:16:87:58:ec:10:73:28:a0:23:a3:dc:
d5:96:91:af:81:96:a9:9c:f3:f3:66:62:7b:de:07:
c1:de:34:1e:54:69:ab:9b:02:11:d4:71:51:68:34:
d4:af:c2:ac:0d:7d:0b:0e:a7:23:12:31:d4:43:ad:
da:83:5f:5d:b3:53:35:4c:c0:5f:40:a5:a3:4a:0d:
23:75:fe:f9:cc:3b:0e:ea:ae:39:89:ab:b1:ed:ae:
3c:0e:a7:0f:d1:9e:d2:ad:4c:f6:69:b5:2f:ad:e1:
d3:41:80:7b:5b:96:ff:a6:f5:c7:5f:3d:5f:32:21:
3b:42:17:48:44:e1:ef:a1:f6:80:de:b5:d2:ad:44:
9a:29:4c:f1:aa:4f:ae:6c:d4:1f:31:c5:81:d0:95:
18:b8:3d:d8:67:bd:9a:aa:c5:08:39:73:59:b2:ae:
cc:92:17:cb:2b:dd:08:22:55:06:f2:a7:e2:f0:31:
ed:cd:bb:3e:ac:29:5a:af:70:87:23:23:9f:4c:cc:
af:c4:9c:e5:1f:c9:0a:0f:50:a5:0a:2e:ed:70:b7:
98:bb:d8:ad:6e:4b:15:96:e6:d1:ab:9c:66:4b:b4:
14:5e:47:1b:9c:84:e9:c6:13:09:0b:0b:83:23:78:
28:7f:ab:73:f0:cc:ca:75:6e:48:1e:33:f0:6d:c4:
fd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:07:85:CA:AF:BD:81:57:E8:E3:73:60:69:AB:35:9C:22:A0:CE:08
X509v3 Authority Key Identifier:
keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/vweFyq-9gVfo43Ngaas1nCKgzgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.182.0/24
IPv6:
2a07:7a00::/48
Signature Algorithm: sha256WithRSAEncryption
9a:85:ae:20:e0:8e:e2:dc:cb:82:64:3f:c7:f7:0a:8a:41:68:
a0:d7:77:f2:d0:3e:91:88:e7:6a:49:fb:05:dc:d5:33:83:bd:
8b:23:53:ec:2f:8b:ac:af:d0:8e:0c:30:07:ab:37:ad:a7:5c:
c7:21:4b:c3:fe:40:78:09:f9:92:a2:3a:53:44:77:8a:b1:9e:
15:58:08:a8:af:e7:8c:85:22:cf:6a:db:c9:e1:c9:a7:76:3d:
b8:02:9c:0f:69:9a:ad:4c:e7:d9:93:54:32:41:ae:2c:77:79:
62:aa:17:ed:73:68:3a:36:70:72:56:be:20:f5:71:bf:6b:e8:
3c:b2:29:b7:01:35:87:59:06:83:c3:3f:33:02:f1:f4:f5:25:
34:ab:d7:9d:fc:e3:dc:a6:54:44:d6:39:f4:41:e7:05:4b:fe:
1a:ea:ea:18:a0:e6:21:18:f3:05:82:09:30:c0:49:e6:1a:98:
c1:f6:bf:84:c8:1b:8e:77:c3:f9:9c:92:7e:c2:8e:e2:09:71:
b7:66:e4:30:ee:ee:99:31:95:f5:8b:a0:77:97:de:a5:d8:01:
47:e2:7c:52:a6:ba:e1:b4:74:b7:a5:13:53:a1:0d:f1:65:9c:
fc:6f:7f:ac:db:26:0c:4d:99:e2:1e:d6:bf:5d:a6:49:d5:55:
0e:46:35:d5
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/jfKRPZzJXfiUYtlvqZbTVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj
ZmQwNjIwHhcNMjQwNjA0MTM0MjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjA3ODVjYWFmYmQ4MTU3ZThlMzczNjA2OWFiMzU5YzIyYTBjZTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArs1nFodY7BBzKKAjo9zVlpGvgZap
nPPzZmJ73gfB3jQeVGmrmwIR1HFRaDTUr8KsDX0LDqcjEjHUQ63ag19ds1M1TMBf
QKWjSg0jdf75zDsO6q45iaux7a48DqcP0Z7SrUz2abUvreHTQYB7W5b/pvXHXz1f
MiE7QhdIROHvofaA3rXSrUSaKUzxqk+ubNQfMcWB0JUYuD3YZ72aqsUIOXNZsq7M
khfLK90IIlUG8qfi8DHtzbs+rClar3CHIyOfTMyvxJzlH8kKD1ClCi7tcLeYu9it
bksVlubRq5xmS7QUXkcbnITpxhMJCwuDI3gof6tz8MzKdW5IHjPwbcT9gwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFL8HhcqvvYFX6ONzYGmrNZwioM4IMB8GA1UdIwQY
MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt
NjU0ZGQ2NDQyY2U0LzEvdndlRnlxLTlnVmZvNDNOZ2FhczFuQ0tnemdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0
LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuXO2MA8E
AgACMAkDBwAqB3oAAAAwDQYJKoZIhvcNAQELBQADggEBAJqFriDgjuLcy4JkP8f3
CopBaKDXd/LQPpGI52pJ+wXc1TODvYsjU+wvi6yv0I4MMAerN62nXMchS8P+QHgJ
+ZKiOlNEd4qxnhVYCKiv54yFIs9q28nhyad2PbgCnA9pmq1M59mTVDJBrix3eWKq
F+1zaDo2cHJWviD1cb9r6DyyKbcBNYdZBoPDPzMC8fT1JTSr153849ymVETWOfRB
5wVL/hrq6hig5iEY8wWCCTDASeYamMH2v4TIG453w/mckn7CjuIJcbdm5DDu7pkx
lfWLoHeX3qXYAUfifFKmuuG0dLelE1OhDfFlnPxvf6zbJgxNmeIe1r9dpknVVQ5G
NdU=
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:48:08 2024 by rpki-client on console-fra.rpki-client.org