Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/DhrlB7neJqQZRO6i8Pk1OcKUz5c.roa
File: DhrlB7neJqQZRO6i8Pk1OcKUz5c.roa (raw, json)
Hash identifier: B/yjzWjDC0S21hGC1d48bLLtU3moyrTtEGqcy5v8Ixk=
Subject key identifier: 0E:1A:E5:07:B9:DE:26:A4:19:44:EE:A2:F0:F9:35:39:C2:94:CF:97
Certificate issuer: /CN=e7c07db9880133c5cdce005bca111b552cd14c53
Certificate serial: 0192DE4F23B058494829C1D7BACB318C3A14
Authority key identifier: E7:C0:7D:B9:88:01:33:C5:CD:CE:00:5B:CA:11:1B:55:2C:D1:4C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58B9uYgBM8XNzgBbyhEbVSzRTFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/DhrlB7neJqQZRO6i8Pk1OcKUz5c.roa
Signing time: Wed 30 Oct 2024 16:43:01 +0000
ROA not before: Wed 30 Oct 2024 16:43:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208974
IP address blocks: 45.12.168.0/23 maxlen: 23
45.12.170.0/24 maxlen: 24
2a0e:b500::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/58B9uYgBM8XNzgBbyhEbVSzRTFM.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/58B9uYgBM8XNzgBbyhEbVSzRTFM.mft
rsync://rpki.ripe.net/repository/DEFAULT/58B9uYgBM8XNzgBbyhEbVSzRTFM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:de:4f:23:b0:58:49:48:29:c1:d7:ba:cb:31:8c:3a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c07db9880133c5cdce005bca111b552cd14c53
Validity
Not Before: Oct 30 16:43:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e1ae507b9de26a41944eea2f0f93539c294cf97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:b5:1e:67:9a:6a:94:63:d0:8e:85:6c:ce:6b:
01:4c:53:4c:f8:06:8f:b8:c2:61:c1:2f:d6:1d:d6:
ee:c3:8d:37:ca:1b:2f:30:af:88:36:ca:84:e5:18:
e5:5c:99:a5:f4:f2:3b:55:3a:ed:fb:e0:72:b4:1e:
2f:57:9f:15:4c:23:59:42:19:34:20:26:fd:49:b2:
5c:2a:bd:a0:4d:11:bc:0c:62:8e:4c:f9:ab:ba:a7:
66:8f:14:72:2d:37:57:6a:32:41:0f:f5:26:99:93:
de:8e:81:b8:14:39:d3:7b:8e:cd:4f:c1:03:21:52:
cc:07:dd:f2:40:3e:46:43:4a:dd:fd:03:45:56:03:
4e:b8:06:78:42:54:8c:64:46:cb:76:6f:5d:fe:07:
5b:a7:16:a2:94:ef:92:43:e8:c6:d4:33:a4:2f:00:
aa:f4:2c:7a:52:dc:22:f8:57:a3:62:2f:04:d0:fd:
fe:b0:2c:11:05:15:f5:e6:83:18:8b:cd:27:e0:d1:
51:9a:5c:b1:e7:d2:14:76:e2:b8:25:39:f5:a2:9d:
2e:ad:ed:bf:40:ec:b7:18:e3:be:1d:54:19:95:23:
ac:bf:b8:32:74:6e:f0:c4:fd:a6:b2:35:1e:67:78:
95:2f:3e:40:ca:cf:82:78:ee:a0:20:dd:f2:12:88:
72:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1A:E5:07:B9:DE:26:A4:19:44:EE:A2:F0:F9:35:39:C2:94:CF:97
X509v3 Authority Key Identifier:
keyid:E7:C0:7D:B9:88:01:33:C5:CD:CE:00:5B:CA:11:1B:55:2C:D1:4C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58B9uYgBM8XNzgBbyhEbVSzRTFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/DhrlB7neJqQZRO6i8Pk1OcKUz5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/58B9uYgBM8XNzgBbyhEbVSzRTFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.168.0-45.12.170.255
IPv6:
2a0e:b500::/29
Signature Algorithm: sha256WithRSAEncryption
a3:2f:47:e3:ce:38:6a:d1:a9:dd:21:37:ab:51:01:93:96:db:
3c:cc:a2:27:6a:f2:f3:72:f0:a6:48:1d:b6:8e:30:a4:f6:6c:
95:76:49:f9:20:dd:d1:20:18:8e:82:b4:b8:17:c4:75:d8:d9:
bb:ea:ed:48:aa:9d:b9:4b:3b:19:69:ee:dc:4c:e2:e6:9a:be:
83:ec:31:6f:9c:3f:1c:28:5e:64:fc:1b:56:61:39:e5:de:63:
6a:da:07:2e:44:52:52:1b:e4:4d:92:62:58:d6:4f:20:7d:8d:
fa:8e:12:41:c2:da:9a:33:47:8c:3f:f7:2b:80:19:9c:ce:36:
44:e7:db:6f:00:f1:6d:52:46:ee:ae:c3:d8:fb:3b:87:a0:49:
f4:33:b5:69:15:a4:d3:a5:57:c7:6c:42:8f:5b:3d:42:97:82:
b9:84:91:50:c0:24:9a:ca:3d:13:97:10:3f:0b:c8:6b:e7:60:
61:1b:f4:70:b9:07:6d:b1:2b:64:a6:16:95:bc:31:fe:85:35:
07:a6:8c:f6:da:ed:5d:53:3e:33:95:e7:e0:b6:84:6a:e3:29:
32:dc:f4:90:00:41:5d:6f:5f:d0:70:10:3d:13:30:96:38:71:
76:17:10:46:0d:70:ce:fe:5a:58:cf:0c:52:8f:0c:f0:6c:a9:
be:5b:92:63
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISAZLeTyOwWElIKcHXussxjDoUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3YzA3ZGI5ODgwMTMzYzVjZGNlMDA1YmNhMTExYjU1MmNk
MTRjNTMwHhcNMjQxMDMwMTY0MzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTFhZTUwN2I5ZGUyNmE0MTk0NGVlYTJmMGY5MzUzOWMyOTRjZjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9bUeZ5pqlGPQjoVszmsBTFNM+AaP
uMJhwS/WHdbuw403yhsvMK+INsqE5RjlXJml9PI7VTrt++BytB4vV58VTCNZQhk0
ICb9SbJcKr2gTRG8DGKOTPmruqdmjxRyLTdXajJBD/UmmZPejoG4FDnTe47NT8ED
IVLMB93yQD5GQ0rd/QNFVgNOuAZ4QlSMZEbLdm9d/gdbpxailO+SQ+jG1DOkLwCq
9Cx6Utwi+FejYi8E0P3+sCwRBRX15oMYi80n4NFRmlyx59IUduK4JTn1op0ure2/
QOy3GOO+HVQZlSOsv7gydG7wxP2msjUeZ3iVLz5Ays+CeO6gIN3yEohyrQIDAQAB
o4ICIDCCAhwwHQYDVR0OBBYEFA4a5Qe53iakGUTuovD5NTnClM+XMB8GA1UdIwQY
MBaAFOfAfbmIATPFzc4AW8oRG1Us0UxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNThCOXVZZ0JNOFhOemdCYnloRWJWU3pSVEZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi84Y2RkNDktYzA5NC00YzZhLTkxOGMt
MGFhNDYzY2RmY2EwLzEvRGhybEI3bmVKcVFaUk82aThQazFPY0tVejVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi84Y2RkNDktYzA5NC00YzZhLTkxOGMtMGFhNDYzY2RmY2Ew
LzEvNThCOXVZZ0JNOFhOemdCYnloRWJWU3pSVEZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBAMtDKgD
BAAtDKowDQQCAAIwBwMFAyoOtQAwDQYJKoZIhvcNAQELBQADggEBAKMvR+POOGrR
qd0hN6tRAZOW2zzMoidq8vNy8KZIHbaOMKT2bJV2Sfkg3dEgGI6CtLgXxHXY2bvq
7UiqnblLOxlp7txM4uaavoPsMW+cPxwoXmT8G1ZhOeXeY2raBy5EUlIb5E2SYljW
TyB9jfqOEkHC2pozR4w/9yuAGZzONkTn228A8W1SRu6uw9j7O4egSfQztWkVpNOl
V8dsQo9bPUKXgrmEkVDAJJrKPROXED8LyGvnYGEb9HC5B22xK2SmFpW8Mf6FNQem
jPba7V1TPjOV5+C2hGrjKTLc9JAAQV1vX9BwED0TMJY4cXYXEEYNcM7+WljPDFKP
DPBsqb5bkmM=
-----END CERTIFICATE-----
Generated at Fri Nov 22 13:41:54 2024 by rpki-client on console-fra.rpki-client.org