Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/152ee7-8d7a-4e11-b592-be5f129ea81a/1/R1KAKd-qshbW-o8ZBkXcgJAngQA.roa
File: R1KAKd-qshbW-o8ZBkXcgJAngQA.roa (raw, json)
Hash identifier: gcEhBagpSeJOCKOzA2P6JlplkkZjbSiSJgj9BBrKWnw=
Subject key identifier: 47:52:80:29:DF:AA:B2:16:D6:FA:8F:19:06:45:DC:80:90:27:81:00
Certificate issuer: /CN=b9930359b5469112e6e2bfae8595b05485551d37
Certificate serial: 0192E2BCB9EBE883C3155F2F86F923F521CF
Authority key identifier: B9:93:03:59:B5:46:91:12:E6:E2:BF:AE:85:95:B0:54:85:55:1D:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZMDWbVGkRLm4r-uhZWwVIVVHTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/152ee7-8d7a-4e11-b592-be5f129ea81a/1/R1KAKd-qshbW-o8ZBkXcgJAngQA.roa
Signing time: Thu 31 Oct 2024 13:21:11 +0000
ROA not before: Thu 31 Oct 2024 13:21:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212441
IP address blocks: 77.232.36.0/24 maxlen: 24
77.232.37.0/24 maxlen: 24
77.232.38.0/24 maxlen: 24
77.232.39.0/24 maxlen: 24
77.232.40.0/24 maxlen: 24
77.232.41.0/24 maxlen: 24
77.232.42.0/24 maxlen: 24
77.232.43.0/24 maxlen: 24
91.142.76.0/24 maxlen: 24
91.142.77.0/24 maxlen: 24
91.142.78.0/24 maxlen: 24
91.142.79.0/24 maxlen: 24
185.173.36.0/24 maxlen: 24
185.173.37.0/24 maxlen: 24
185.173.38.0/24 maxlen: 24
185.173.39.0/24 maxlen: 24
193.163.175.0/24 maxlen: 24
2a10:9200::/48 maxlen: 48
2a10:9200:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/152ee7-8d7a-4e11-b592-be5f129ea81a/1/uZMDWbVGkRLm4r-uhZWwVIVVHTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/152ee7-8d7a-4e11-b592-be5f129ea81a/1/uZMDWbVGkRLm4r-uhZWwVIVVHTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uZMDWbVGkRLm4r-uhZWwVIVVHTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:bc:b9:eb:e8:83:c3:15:5f:2f:86:f9:23:f5:21:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9930359b5469112e6e2bfae8595b05485551d37
Validity
Not Before: Oct 31 13:21:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47528029dfaab216d6fa8f190645dc8090278100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:89:3b:c4:4b:ef:f8:91:70:2f:79:84:e4:27:
bc:43:85:82:0a:71:14:ef:21:64:9d:1e:b8:2a:dc:
ec:7a:e4:cf:66:06:b5:62:4c:a8:a0:e8:f7:f9:8f:
9f:a0:ce:ba:0a:10:70:bb:c2:59:3c:18:58:40:ca:
84:a3:86:f4:24:dc:90:c6:1e:3c:b1:8a:d7:9e:b8:
56:43:99:54:29:6e:a4:68:78:1f:1e:f0:d8:a2:0b:
5c:52:a7:bc:63:6c:48:0a:ec:0e:2b:0d:4e:f4:57:
1d:c9:69:a0:8e:84:80:93:be:49:b7:e2:8d:cf:e5:
74:46:e4:1b:45:ca:02:12:5d:f1:d7:d9:61:ea:e0:
2b:90:fe:a1:0a:f0:f4:88:2f:cd:82:9d:c3:98:1c:
64:f5:1c:b2:b6:10:8e:12:f9:8f:c6:bd:d8:dd:87:
29:d2:c7:dc:f3:9f:ba:7f:1c:ef:f4:a9:ff:9c:b2:
af:da:ac:88:41:4d:a5:2e:ef:98:68:93:72:84:98:
b1:ac:21:13:1b:c1:cb:bf:7e:5c:02:29:54:ce:9f:
f8:c7:e1:f1:b8:6f:51:9e:6f:4a:8e:e4:67:7b:27:
c4:3c:0d:a6:ad:d5:51:37:1a:ce:ef:21:93:58:04:
89:24:c7:e0:97:03:70:7d:15:bc:38:77:cf:d5:1a:
6e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:52:80:29:DF:AA:B2:16:D6:FA:8F:19:06:45:DC:80:90:27:81:00
X509v3 Authority Key Identifier:
keyid:B9:93:03:59:B5:46:91:12:E6:E2:BF:AE:85:95:B0:54:85:55:1D:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZMDWbVGkRLm4r-uhZWwVIVVHTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/152ee7-8d7a-4e11-b592-be5f129ea81a/1/R1KAKd-qshbW-o8ZBkXcgJAngQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/152ee7-8d7a-4e11-b592-be5f129ea81a/1/uZMDWbVGkRLm4r-uhZWwVIVVHTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.36.0-77.232.43.255
91.142.76.0/22
185.173.36.0/22
193.163.175.0/24
IPv6:
2a10:9200::/47
Signature Algorithm: sha256WithRSAEncryption
0f:59:71:a0:39:16:fa:04:8c:50:bd:c5:27:86:38:00:76:9d:
4f:96:b2:08:34:ac:ae:63:e8:d4:ec:33:01:a1:36:86:df:8d:
a8:7e:1c:66:6f:9d:b4:57:b1:67:59:df:dd:09:8e:52:6d:c0:
d5:93:f3:19:8e:48:fa:51:bc:f0:6c:76:e6:1f:77:8a:8a:9a:
d0:01:0b:b9:03:34:1d:c1:97:e2:86:8f:9e:62:76:ad:ec:1f:
eb:c3:87:94:e8:90:03:cf:e8:bb:d5:c3:2f:fb:7e:dd:35:89:
73:1b:31:90:54:2e:4b:15:7d:67:87:11:f4:b1:2c:2f:65:5c:
85:6d:f1:21:b2:2a:26:41:8f:a1:71:fd:6c:f0:63:24:7a:04:
4d:25:ac:5e:b6:f5:31:a1:61:1b:6b:72:05:43:19:d6:41:2c:
43:21:bb:fd:4b:17:cb:fa:97:b6:22:92:90:dd:bf:7a:63:2d:
2f:3f:4c:59:67:b8:8c:49:70:c2:37:2a:4f:be:1f:9c:df:53:
14:35:cd:42:88:76:64:a3:eb:3a:a8:87:05:84:22:7d:79:37:
04:07:04:5e:72:f9:b2:a3:a5:c7:6b:ad:37:81:19:c6:dd:3a:
21:05:2d:9e:e3:23:0c:62:07:10:ad:3f:bc:3b:2b:2c:79:b2:
fb:16:22:dd
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgISAZLivLnr6IPDFV8vhvkj9SHPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTMwMzU5YjU0NjkxMTJlNmUyYmZhZTg1OTViMDU0ODU1
NTFkMzcwHhcNMjQxMDMxMTMyMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzUyODAyOWRmYWFiMjE2ZDZmYThmMTkwNjQ1ZGM4MDkwMjc4MTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4k7xEvv+JFwL3mE5Ce8Q4WCCnEU
7yFknR64KtzseuTPZga1YkyooOj3+Y+foM66ChBwu8JZPBhYQMqEo4b0JNyQxh48
sYrXnrhWQ5lUKW6kaHgfHvDYogtcUqe8Y2xICuwOKw1O9FcdyWmgjoSAk75Jt+KN
z+V0RuQbRcoCEl3x19lh6uArkP6hCvD0iC/Ngp3DmBxk9RyythCOEvmPxr3Y3Ycp
0sfc85+6fxzv9Kn/nLKv2qyIQU2lLu+YaJNyhJixrCETG8HLv35cAilUzp/4x+Hx
uG9Rnm9KjuRneyfEPA2mrdVRNxrO7yGTWASJJMfglwNwfRW8OHfP1RpuNwIDAQAB
o4ICNDCCAjAwHQYDVR0OBBYEFEdSgCnfqrIW1vqPGQZF3ICQJ4EAMB8GA1UdIwQY
MBaAFLmTA1m1RpES5uK/roWVsFSFVR03MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpNRFdiVkdrUkxtNHItdWhaV3dWSVZWSFRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8xNTJlZTctOGQ3YS00ZTExLWI1OTIt
YmU1ZjEyOWVhODFhLzEvUjFLQUtkLXFzaGJXLW84WkJrWGNnSkFuZ1FBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8xNTJlZTctOGQ3YS00ZTExLWI1OTItYmU1ZjEyOWVhODFh
LzEvdVpNRFdiVkdrUkxtNHItdWhaV3dWSVZWSFRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAmBAIAATAgMAwDBAJN6CQD
BAJN6CgDBAJbjkwDBAK5rSQDBADBo68wDwQCAAIwCQMHASoQkgAAADANBgkqhkiG
9w0BAQsFAAOCAQEAD1lxoDkW+gSMUL3FJ4Y4AHadT5ayCDSsrmPo1OwzAaE2ht+N
qH4cZm+dtFexZ1nf3QmOUm3A1ZPzGY5I+lG88Gx25h93ioqa0AELuQM0HcGX4oaP
nmJ2rewf68OHlOiQA8/ou9XDL/t+3TWJcxsxkFQuSxV9Z4cR9LEsL2VchW3xIbIq
JkGPoXH9bPBjJHoETSWsXrb1MaFhG2tyBUMZ1kEsQyG7/UsXy/qXtiKSkN2/emMt
Lz9MWWe4jElwwjcqT74fnN9TFDXNQoh2ZKPrOqiHBYQifXk3BAcEXnL5sqOlx2ut
N4EZxt06IQUtnuMjDGIHEK0/vDsrLHmy+xYi3Q==
-----END CERTIFICATE-----
Generated at Sat Nov 23 04:40:29 2024 by rpki-client on console-ams.rpki-client.org