Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/6sciDO9ZRyqlArBjuwMULwdfFRI.roa
File: 6sciDO9ZRyqlArBjuwMULwdfFRI.roa (raw, json)
Hash identifier: +lJym3VoLqCHy7nNmQ1plTXUaSIPaWvEiqBZxBV2bPM=
Subject key identifier: EA:C7:22:0C:EF:59:47:2A:A5:02:B0:63:BB:03:14:2F:07:5F:15:12
Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Certificate serial: 018F7178EB16DE34B6730557CD93AD0BA91D
Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/6sciDO9ZRyqlArBjuwMULwdfFRI.roa
Signing time: Mon 13 May 2024 10:21:40 +0000
ROA not before: Mon 13 May 2024 10:21:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8758
IP address blocks: 31.207.52.0/22 maxlen: 22
31.207.60.0/22 maxlen: 22
83.98.204.0/22 maxlen: 22
94.46.188.0/22 maxlen: 22
146.185.64.0/19 maxlen: 24
185.63.64.0/22 maxlen: 24
185.104.84.0/22 maxlen: 24
2a04:f340::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Jun 2024 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:71:78:eb:16:de:34:b6:73:05:57:cd:93:ad:0b:a9:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Validity
Not Before: May 13 10:21:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eac7220cef59472aa502b063bb03142f075f1512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:42:b4:64:f2:2a:de:50:a4:ae:93:45:4f:a5:
78:17:64:19:67:c1:65:63:c7:2b:f2:b3:6c:21:7a:
1f:1d:23:7d:c8:57:c2:c7:f7:aa:70:37:73:99:3e:
f1:61:20:b0:74:bc:71:90:f8:94:26:09:11:c7:b1:
e0:15:b5:22:af:43:7c:c3:81:9f:9d:85:6f:68:04:
f3:c9:18:8e:90:65:29:89:30:e9:59:0c:1c:cc:c6:
3c:65:c5:89:59:5c:1e:f7:44:4c:e0:85:de:cb:23:
cf:03:c6:d0:0e:f1:3c:7e:91:cd:3e:33:73:4a:c1:
b6:76:ff:f6:a4:37:2d:cc:75:66:4b:40:d0:35:56:
02:23:30:b9:e7:30:a5:b2:33:90:7d:80:50:6a:17:
7c:9f:01:05:61:e8:cf:8c:ab:ee:18:6c:c9:e0:fa:
f0:fc:83:09:7b:51:a0:9f:ad:7f:23:45:54:e3:66:
61:3a:43:50:68:ce:b0:89:01:62:3e:74:86:43:ea:
69:1c:31:3d:c0:f9:24:19:79:8a:f6:39:7a:d2:aa:
51:21:05:16:7f:2a:9f:92:5e:8d:4a:25:26:37:7c:
ba:2a:86:11:80:e8:37:75:f9:d2:3b:75:af:d3:9e:
45:02:e0:c2:c2:39:06:b1:f1:b5:e4:52:c4:dc:f7:
00:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C7:22:0C:EF:59:47:2A:A5:02:B0:63:BB:03:14:2F:07:5F:15:12
X509v3 Authority Key Identifier:
keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/6sciDO9ZRyqlArBjuwMULwdfFRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.207.52.0/22
31.207.60.0/22
83.98.204.0/22
94.46.188.0/22
146.185.64.0/19
185.63.64.0/22
185.104.84.0/22
IPv6:
2a04:f340::/29
Signature Algorithm: sha256WithRSAEncryption
87:6e:e2:55:37:53:5a:66:5e:3e:48:47:da:0c:2b:cd:0e:2f:
18:b6:0a:1c:c2:1a:97:b1:85:1c:0b:12:b0:12:52:3e:2c:9e:
6b:f1:01:77:2f:ea:52:63:7d:02:a0:f4:a6:34:f2:27:af:d6:
45:f0:00:1d:af:98:00:75:13:80:73:5f:4b:6a:84:a8:e7:1a:
63:12:14:09:1f:d5:f0:ef:42:3d:98:fa:af:df:bc:a6:93:85:
7e:86:9f:de:14:7e:d7:3b:b1:a5:86:6c:b0:f5:2c:5e:25:bf:
d1:61:ed:5f:57:45:a3:ed:31:47:2a:97:38:f6:b4:de:5c:44:
a5:08:23:a0:5e:a6:8c:56:e3:73:7f:33:26:06:c6:3d:e3:95:
3b:73:ec:1b:e3:6f:a2:ab:11:8a:b5:2c:8d:c2:fe:57:18:42:
ce:08:bb:54:e2:d1:07:74:a4:c0:40:ac:ab:4a:d6:28:10:e2:
5b:a6:ec:5f:58:d0:68:e5:79:c8:c6:d1:2e:30:c7:be:d5:56:
a9:ef:b1:08:4b:30:4a:23:4d:ba:96:f4:4c:18:3b:39:a4:fd:
1d:5f:8f:9a:df:5f:57:04:c1:a2:2a:e9:6f:47:16:81:f9:1d:
5b:d2:23:ff:71:0a:5e:54:a1:6d:04:a7:e4:3e:32:7d:76:81:
28:d2:1e:b1
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAY9xeOsW3jS2cwVXzZOtC6kdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZTBmN2JiYmU0MDMxYTI0ZWYxYjlkYjE5NmFhYjA2NDJl
ODRhMDYwHhcNMjQwNTEzMTAyMTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWM3MjIwY2VmNTk0NzJhYTUwMmIwNjNiYjAzMTQyZjA3NWYxNTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUK0ZPIq3lCkrpNFT6V4F2QZZ8Fl
Y8cr8rNsIXofHSN9yFfCx/eqcDdzmT7xYSCwdLxxkPiUJgkRx7HgFbUir0N8w4Gf
nYVvaATzyRiOkGUpiTDpWQwczMY8ZcWJWVwe90RM4IXeyyPPA8bQDvE8fpHNPjNz
SsG2dv/2pDctzHVmS0DQNVYCIzC55zClsjOQfYBQahd8nwEFYejPjKvuGGzJ4Prw
/IMJe1Ggn61/I0VU42ZhOkNQaM6wiQFiPnSGQ+ppHDE9wPkkGXmK9jl60qpRIQUW
fyqfkl6NSiUmN3y6KoYRgOg3dfnSO3Wv055FAuDCwjkGsfG15FLE3PcAvwIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFOrHIgzvWUcqpQKwY7sDFC8HXxUSMB8GA1UdIwQY
MBaAFCfg97u+QDGiTvG52xlqqwZC6EoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYt
MzQ2YTNlYzE4NjhjLzEvNnNjaURPOVpSeXFsQXJCanV3TVVMd2RmRlJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYtMzQ2YTNlYzE4Njhj
LzEvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCH880AwQC
H888AwQCU2LMAwQCXi68AwQFkrlAAwQCuT9AAwQCuWhUMA0EAgACMAcDBQMqBPNA
MA0GCSqGSIb3DQEBCwUAA4IBAQCHbuJVN1NaZl4+SEfaDCvNDi8YtgocwhqXsYUc
CxKwElI+LJ5r8QF3L+pSY30CoPSmNPInr9ZF8AAdr5gAdROAc19LaoSo5xpjEhQJ
H9Xw70I9mPqv37ymk4V+hp/eFH7XO7Glhmyw9SxeJb/RYe1fV0Wj7TFHKpc49rTe
XESlCCOgXqaMVuNzfzMmBsY945U7c+wb42+iqxGKtSyNwv5XGELOCLtU4tEHdKTA
QKyrStYoEOJbpuxfWNBo5XnIxtEuMMe+1Vap77EISzBKI026lvRMGDs5pP0dX4+a
319XBMGiKulvRxaB+R1b0iP/cQpeVKFtBKfkPjJ9doEo0h6x
-----END CERTIFICATE-----
Generated at Sat Jun 8 10:07:33 2024 by rpki-client on console-ams.rpki-client.org