Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/PC_evPq0G3lHMrIqwGWPCIReQHk.roa
File: PC_evPq0G3lHMrIqwGWPCIReQHk.roa (raw, json)
Hash identifier: IgPhPmyHxCEhSurgamf3+dQUuQ9lwM7mQd7aQ//eDag=
Subject key identifier: 3C:2F:DE:BC:FA:B4:1B:79:47:32:B2:2A:C0:65:8F:08:84:5E:40:79
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 018CC492D6CD1ED61582D00FA164307DB1DC
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/PC_evPq0G3lHMrIqwGWPCIReQHk.roa
Signing time: Mon 01 Jan 2024 10:30:06 +0000
ROA not before: Mon 01 Jan 2024 10:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49100
IP address blocks: 46.209.122.0/24 maxlen: 24
46.209.234.0/24 maxlen: 24
5.160.106.0/24 maxlen: 24
77.104.114.0/23 maxlen: 23
46.209.102.0/24 maxlen: 24
46.209.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:d6:cd:1e:d6:15:82:d0:0f:a1:64:30:7d:b1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 10:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c2fdebcfab41b794732b22ac0658f08845e4079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f7:5e:86:94:a7:f1:43:08:0b:80:39:97:ab:
37:dc:f5:4a:b3:f5:e2:38:78:ea:87:7c:9c:db:25:
1a:49:6f:14:7b:12:96:da:2d:d2:6c:d7:86:46:2c:
13:24:e7:ed:2a:a9:ea:6d:96:ad:36:41:c9:0d:11:
f8:ce:d6:02:f3:7b:c5:13:5f:1b:82:7c:07:82:22:
91:a9:33:dd:95:6d:4c:76:c4:7f:11:7a:91:f5:79:
4b:cd:fe:f9:95:8d:01:94:3f:eb:15:34:a5:9f:45:
e0:c4:8e:24:f0:30:3f:4a:4e:a8:4d:e6:8e:1a:88:
2b:6c:05:49:7c:42:62:18:2f:09:c7:91:0a:27:05:
5d:9b:5c:f0:bc:c9:97:25:9a:01:89:16:bf:41:ab:
f4:b5:14:77:23:b9:23:1b:14:ff:a3:3c:5d:fc:2e:
71:66:e4:f8:d4:9b:76:0c:cd:47:3b:2d:71:56:2f:
ea:03:fe:5b:8a:e9:7b:08:d7:3d:6b:81:2d:eb:d9:
34:b5:b7:5f:b8:40:29:1c:aa:58:bd:a8:9a:f2:92:
01:fa:d0:07:fd:4e:be:b8:30:55:6c:c0:26:c7:83:
2f:d9:9f:f2:e0:2e:65:25:55:f6:2d:cd:f3:12:e9:
ea:cd:f1:2c:74:69:90:18:97:33:c3:20:14:b5:44:
fb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:2F:DE:BC:FA:B4:1B:79:47:32:B2:2A:C0:65:8F:08:84:5E:40:79
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/PC_evPq0G3lHMrIqwGWPCIReQHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.106.0/24
46.209.10.0/24
46.209.102.0/24
46.209.122.0/24
46.209.234.0/24
77.104.114.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:63:16:79:21:f2:d3:9c:b8:1a:ff:45:32:62:d9:6d:6e:5e:
fd:7d:e1:df:64:92:b8:73:2d:96:8c:10:df:3f:b9:da:89:0d:
2c:67:5e:61:2c:48:cf:f9:6e:54:83:d9:02:34:d3:c1:80:a7:
b8:3c:0a:f8:60:e2:b5:09:09:f0:fc:71:b9:2a:ed:40:14:60:
f5:05:be:4e:96:ad:a5:19:3d:35:11:8a:3b:fb:d6:80:11:db:
90:e1:53:94:34:b7:e3:c7:5c:a7:80:92:b2:2a:f4:5c:f5:a7:
6d:b7:76:c1:29:63:35:3e:10:a2:6b:24:67:ec:3a:8d:62:cf:
64:d2:4d:23:7b:10:bd:1c:db:f9:52:45:d0:f9:58:2d:f0:6d:
a7:d0:5d:1f:a1:17:bb:d2:c7:d2:95:b1:d4:ca:ca:d6:0c:0e:
b4:45:3b:76:5c:44:96:e3:10:a0:38:55:4f:97:ab:32:5e:83:
68:78:41:1c:83:4c:c1:5a:81:a8:75:56:90:5a:be:b1:fe:6b:
98:e8:67:35:bb:33:7b:18:13:87:18:69:70:38:52:16:73:36:
9f:28:8f:29:43:31:ad:4c:ae:73:dc:55:69:32:37:b2:99:5d:
65:f3:3a:07:c7:21:12:e6:49:00:3d:8e:e5:03:02:42:31:c5:
42:67:49:32
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYzEktbNHtYVgtAPoWQwfbHcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxY2NhOWYxNWUxOTIxOTUzYTYyOGM4YWQyYWM0YmU5Nzdi
NmMzMDMwHhcNMjQwMTAxMTAzMDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzJmZGViY2ZhYjQxYjc5NDczMmIyMmFjMDY1OGYwODg0NWU0MDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/dehpSn8UMIC4A5l6s33PVKs/Xi
OHjqh3yc2yUaSW8UexKW2i3SbNeGRiwTJOftKqnqbZatNkHJDRH4ztYC83vFE18b
gnwHgiKRqTPdlW1MdsR/EXqR9XlLzf75lY0BlD/rFTSln0XgxI4k8DA/Sk6oTeaO
GogrbAVJfEJiGC8Jx5EKJwVdm1zwvMmXJZoBiRa/Qav0tRR3I7kjGxT/ozxd/C5x
ZuT41Jt2DM1HOy1xVi/qA/5biul7CNc9a4Et69k0tbdfuEApHKpYvaia8pIB+tAH
/U6+uDBVbMAmx4Mv2Z/y4C5lJVX2Lc3zEunqzfEsdGmQGJczwyAUtUT7pwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFDwv3rz6tBt5RzKyKsBljwiEXkB5MB8GA1UdIwQY
MBaAFIHMqfFeGSGVOmKMitKsS+l3tsMDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2N5cDhWNFpJWlU2WW95SzBxeEw2WGUyd3dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8xZWEyYjAtNmI5YS00NGQ3LWEyZTUt
MjIwNmNjMmU2OTFjLzEvUENfZXZQcTBHM2xITXJJcXdHV1BDSVJlUUhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8xZWEyYjAtNmI5YS00NGQ3LWEyZTUtMjIwNmNjMmU2OTFj
LzEvZ2N5cDhWNFpJWlU2WW95SzBxeEw2WGUyd3dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQABaBqAwQA
LtEKAwQALtFmAwQALtF6AwQALtHqAwQBTWhyMA0GCSqGSIb3DQEBCwUAA4IBAQBL
YxZ5IfLTnLga/0UyYtltbl79feHfZJK4cy2WjBDfP7naiQ0sZ15hLEjP+W5Ug9kC
NNPBgKe4PAr4YOK1CQnw/HG5Ku1AFGD1Bb5Olq2lGT01EYo7+9aAEduQ4VOUNLfj
x1yngJKyKvRc9adtt3bBKWM1PhCiayRn7DqNYs9k0k0jexC9HNv5UkXQ+Vgt8G2n
0F0foRe70sfSlbHUysrWDA60RTt2XESW4xCgOFVPl6syXoNoeEEcg0zBWoGodVaQ
Wr6x/muY6Gc1uzN7GBOHGGlwOFIWczafKI8pQzGtTK5z3FVpMjeymV1l8zoHxyES
5kkAPY7lAwJCMcVCZ0ky
-----END CERTIFICATE-----
Generated at Mon Nov 25 21:52:45 2024 by rpki-client on console-ams.rpki-client.org