Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/_y77E66mdL6BsRuOSVc6_Z1vfOc.roa
File: _y77E66mdL6BsRuOSVc6_Z1vfOc.roa (raw, json)
Hash identifier: D/oyeF+hoxsXvct0hnu9rNkr21KEpsjvAH7JdMKEsS8=
Subject key identifier: FF:2E:FB:13:AE:A6:74:BE:81:B1:1B:8E:49:57:3A:FD:9D:6F:7C:E7
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 019192CEA8A1E5C9C53BCC8D381E0207B319
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/_y77E66mdL6BsRuOSVc6_Z1vfOc.roa
Signing time: Tue 27 Aug 2024 07:48:22 +0000
ROA not before: Tue 27 Aug 2024 07:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30962
IP address blocks: 62.108.32.0/20 maxlen: 20
62.108.48.0/20 maxlen: 20
84.19.0.0/19 maxlen: 19
89.107.64.0/21 maxlen: 21
91.190.144.0/21 maxlen: 21
93.190.88.0/21 maxlen: 21
93.190.95.0/24 maxlen: 24
185.147.216.0/22 maxlen: 22
194.113.216.0/23 maxlen: 23
195.62.20.0/23 maxlen: 23
195.191.114.0/23 maxlen: 23
195.225.240.0/22 maxlen: 22
2a00:f70::/32 maxlen: 32
2a03:f200::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:ce:a8:a1:e5:c9:c5:3b:cc:8d:38:1e:02:07:b3:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Aug 27 07:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff2efb13aea674be81b11b8e49573afd9d6f7ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d2:45:01:b1:e8:d9:ef:1c:10:20:e3:ea:63:
f3:6d:0e:e0:3b:b8:c0:fb:6c:a7:dc:10:77:2d:64:
d9:dd:e5:4e:55:ec:02:ab:7a:33:04:2c:fc:65:97:
ca:1c:46:2e:be:b7:10:68:ce:11:58:86:5b:45:01:
1e:50:e7:6f:fe:1f:35:51:6c:63:60:fd:9b:1b:94:
2f:a2:91:1f:3c:7f:e3:9d:96:fa:65:58:f1:13:2e:
c0:45:ce:b6:0b:19:3f:8d:ea:b3:93:35:b7:f6:7a:
85:d0:0d:6b:12:54:73:d6:f3:29:2e:15:ed:c0:06:
73:df:68:e5:65:f8:3e:21:a9:45:c1:9d:96:50:89:
2f:79:4b:86:fe:11:43:99:e1:52:a6:00:3a:4d:e8:
70:1d:04:e5:f1:b1:28:a4:c6:e8:11:c7:6d:da:20:
c4:ce:69:85:80:9a:6e:c9:0f:79:0a:77:3a:e7:38:
99:f8:b0:e0:e8:88:d5:0b:73:50:c4:96:77:97:63:
ae:24:c4:ce:6c:73:98:2e:21:ab:1a:ea:3d:64:42:
69:39:f7:75:31:9f:e5:69:be:d7:1c:b4:a7:c2:c8:
d7:a1:57:87:ba:96:8b:58:a0:09:e2:27:34:89:ab:
05:26:e9:bc:42:f3:6d:88:c2:c3:c7:89:21:f2:d2:
1e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:2E:FB:13:AE:A6:74:BE:81:B1:1B:8E:49:57:3A:FD:9D:6F:7C:E7
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/_y77E66mdL6BsRuOSVc6_Z1vfOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.108.32.0/19
84.19.0.0/19
89.107.64.0/21
91.190.144.0/21
93.190.88.0/21
185.147.216.0/22
194.113.216.0/23
195.62.20.0/23
195.191.114.0/23
195.225.240.0/22
IPv6:
2a00:f70::/32
2a03:f200::/32
Signature Algorithm: sha256WithRSAEncryption
1d:5c:54:ff:61:89:65:83:57:af:8c:53:bd:63:fc:b8:3b:31:
b4:31:8c:fb:2b:ac:c8:e4:d0:92:88:5e:3d:5a:22:6a:5e:0f:
52:36:03:cd:11:52:d6:29:ed:97:21:a7:65:0b:a7:95:14:b1:
22:b8:f3:60:44:b1:4e:6d:36:ad:bf:fd:1d:9a:be:86:5b:cb:
0f:fa:46:77:de:ee:35:1e:fb:de:31:53:ac:43:dd:24:56:78:
c7:ed:24:08:af:39:68:bb:48:13:ea:a4:9b:04:41:d7:d2:72:
6a:90:0a:bd:31:b5:38:10:ae:4d:88:74:05:5b:ab:cc:f9:e1:
09:96:69:c0:a0:8c:31:7c:40:75:e2:f4:56:28:a3:09:0a:02:
fd:68:cb:59:fb:fb:c0:1b:c8:43:5a:d8:3b:18:4e:35:d0:38:
fa:54:3e:18:6d:cd:23:8a:92:c7:16:54:61:11:3f:74:81:92:
51:4e:70:86:d0:f7:5e:cc:33:51:63:04:00:48:ff:3d:8d:1b:
44:2f:73:ba:df:25:fb:40:43:76:ab:92:e5:4c:3a:a8:09:86:
67:c1:ff:3c:4f:a7:17:e4:09:b6:cf:1a:7c:5b:17:24:c3:0b:
b9:54:51:45:3b:f5:0a:da:8a:73:1d:aa:ab:43:6d:5c:c5:0c:
85:48:d2:8b
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgISAZGSzqih5cnFO8yNOB4CB7MZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMjY0N2M4MDFmYjU4ZmNmYWFjMTM1YmI0OGY1ZTYxZmVh
N2U1NjYwHhcNMjQwODI3MDc0ODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjJlZmIxM2FlYTY3NGJlODFiMTFiOGU0OTU3M2FmZDlkNmY3Y2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq9JFAbHo2e8cECDj6mPzbQ7gO7jA
+2yn3BB3LWTZ3eVOVewCq3ozBCz8ZZfKHEYuvrcQaM4RWIZbRQEeUOdv/h81UWxj
YP2bG5QvopEfPH/jnZb6ZVjxEy7ARc62Cxk/jeqzkzW39nqF0A1rElRz1vMpLhXt
wAZz32jlZfg+IalFwZ2WUIkveUuG/hFDmeFSpgA6TehwHQTl8bEopMboEcdt2iDE
zmmFgJpuyQ95Cnc65ziZ+LDg6IjVC3NQxJZ3l2OuJMTObHOYLiGrGuo9ZEJpOfd1
MZ/lab7XHLSnwsjXoVeHupaLWKAJ4ic0iasFJum8QvNtiMLDx4kh8tIe6QIDAQAB
o4ICVTCCAlEwHQYDVR0OBBYEFP8u+xOupnS+gbEbjklXOv2db3znMB8GA1UdIwQY
MBaAFAAmR8gB+1j8+qwTW7SPXmH+p+VmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUNaSHlBSDdXUHo2ckJOYnRJOWVZZjZuNVdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9jZmMwNmYtODJiZS00OWZiLWJjODIt
OTRlZmJmNWNlY2Q0LzEvX3k3N0U2Nm1kTDZCc1J1T1NWYzZfWjF2Zk9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9jZmMwNmYtODJiZS00OWZiLWJjODItOTRlZmJmNWNlY2Q0
LzEvQUNaSHlBSDdXUHo2ckJOYnRJOWVZZjZuNVdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGsGCCsGAQUFBwEHAQH/BFwwWjBCBAIAATA8AwQFPmwgAwQF
VBMAAwQDWWtAAwQDW76QAwQDXb5YAwQCuZPYAwQBwnHYAwQBwz4UAwQBw79yAwQC
w+HwMBQEAgACMA4DBQAqAA9wAwUAKgPyADANBgkqhkiG9w0BAQsFAAOCAQEAHVxU
/2GJZYNXr4xTvWP8uDsxtDGM+yusyOTQkohePVoial4PUjYDzRFS1intlyGnZQun
lRSxIrjzYESxTm02rb/9HZq+hlvLD/pGd97uNR773jFTrEPdJFZ4x+0kCK85aLtI
E+qkmwRB19JyapAKvTG1OBCuTYh0BVurzPnhCZZpwKCMMXxAdeL0ViijCQoC/WjL
Wfv7wBvIQ1rYOxhONdA4+lQ+GG3NI4qSxxZUYRE/dIGSUU5whtD3XswzUWMEAEj/
PY0bRC9zut8l+0BDdquS5Uw6qAmGZ8H/PE+nF+QJts8afFsXJMMLuVRRRTv1CtqK
cx2qq0NtXMUMhUjSiw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 13:41:46 2024 by rpki-client on console-fra.rpki-client.org