Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9b1f86-0f30-4bb9-8309-9837bc22c705/1/ibbuUi-ydV0Wq3Tqpbqp3wbmRBM.roa
File: ibbuUi-ydV0Wq3Tqpbqp3wbmRBM.roa (raw, json)
Hash identifier: bXBcqFNyxgWuRhfNzzpOFAu1ixVD3ASEkhUnn0BzRRU=
Subject key identifier: 89:B6:EE:52:2F:B2:75:5D:16:AB:74:EA:A5:BA:A9:DF:06:E6:44:13
Certificate issuer: /CN=b5ac699b54a02872a42f0c09926c4706e71e3203
Certificate serial: 018F7B7D13A3898E07B647D6A008B7A28F03
Authority key identifier: B5:AC:69:9B:54:A0:28:72:A4:2F:0C:09:92:6C:47:06:E7:1E:32:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/taxpm1SgKHKkLwwJkmxHBuceMgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9b1f86-0f30-4bb9-8309-9837bc22c705/1/ibbuUi-ydV0Wq3Tqpbqp3wbmRBM.roa
Signing time: Wed 15 May 2024 09:02:25 +0000
ROA not before: Wed 15 May 2024 09:02:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197129
IP address blocks: 178.219.192.0/20 maxlen: 20
178.219.192.0/24 maxlen: 24
178.219.193.0/24 maxlen: 24
178.219.194.0/24 maxlen: 24
178.219.195.0/24 maxlen: 24
178.219.196.0/24 maxlen: 24
178.219.197.0/24 maxlen: 24
178.219.198.0/24 maxlen: 24
178.219.199.0/24 maxlen: 24
178.219.200.0/24 maxlen: 24
178.219.201.0/24 maxlen: 24
178.219.202.0/24 maxlen: 24
178.219.203.0/24 maxlen: 24
178.219.204.0/24 maxlen: 24
178.219.205.0/24 maxlen: 24
178.219.206.0/24 maxlen: 24
178.219.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9b1f86-0f30-4bb9-8309-9837bc22c705/1/taxpm1SgKHKkLwwJkmxHBuceMgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/9b1f86-0f30-4bb9-8309-9837bc22c705/1/taxpm1SgKHKkLwwJkmxHBuceMgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/taxpm1SgKHKkLwwJkmxHBuceMgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 18:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:7d:13:a3:89:8e:07:b6:47:d6:a0:08:b7:a2:8f:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ac699b54a02872a42f0c09926c4706e71e3203
Validity
Not Before: May 15 09:02:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89b6ee522fb2755d16ab74eaa5baa9df06e64413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:99:9a:e0:20:66:f1:9e:9d:ab:f6:21:bd:ec:
8e:ca:a9:71:ff:51:49:d0:85:4d:a3:8f:9e:85:5e:
fc:d6:ff:6d:23:a5:84:ed:1c:22:44:32:44:17:bc:
1b:fb:ea:50:6a:d6:ab:ba:e5:06:cb:34:3c:1f:50:
2e:6f:37:e5:0f:ae:a8:da:96:7a:b7:5a:1c:f7:5d:
a7:64:26:d4:13:ac:92:f1:5e:db:c7:d4:50:0f:7c:
30:97:8b:b3:70:e5:1a:c4:a6:3e:b2:b8:35:a1:e8:
aa:61:45:03:ac:0a:6e:64:c8:5f:f4:fd:b2:5d:f3:
86:a0:62:82:36:8a:21:f2:ad:74:2f:11:19:43:90:
4d:46:b6:7c:1c:e7:c7:45:10:ab:cc:f6:02:8b:86:
4b:60:30:5e:3e:a4:60:47:94:98:b7:13:bb:9d:a3:
4d:56:bf:95:a7:37:e4:15:d2:20:c7:80:95:1a:2a:
60:3a:40:1d:a2:49:a8:01:2f:f0:98:86:e1:66:94:
df:d1:f2:39:03:c9:0f:32:fd:a5:ff:9d:6d:ee:5c:
e4:30:e8:93:71:eb:24:68:1c:71:26:35:75:da:b2:
3f:df:ed:3b:22:4a:e3:1e:ad:0a:24:ac:b2:9a:84:
e3:26:0c:51:2d:89:cb:7c:b6:84:e5:ef:79:b4:12:
37:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B6:EE:52:2F:B2:75:5D:16:AB:74:EA:A5:BA:A9:DF:06:E6:44:13
X509v3 Authority Key Identifier:
keyid:B5:AC:69:9B:54:A0:28:72:A4:2F:0C:09:92:6C:47:06:E7:1E:32:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/taxpm1SgKHKkLwwJkmxHBuceMgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9b1f86-0f30-4bb9-8309-9837bc22c705/1/ibbuUi-ydV0Wq3Tqpbqp3wbmRBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9b1f86-0f30-4bb9-8309-9837bc22c705/1/taxpm1SgKHKkLwwJkmxHBuceMgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.192.0/20
Signature Algorithm: sha256WithRSAEncryption
b4:6b:88:51:82:ee:a3:c3:5b:bd:45:db:5d:72:f9:28:12:37:
c2:9d:b1:57:1f:37:0d:60:a4:6a:90:10:f1:cc:11:3b:65:22:
29:d1:bc:5f:7f:2a:5b:d4:70:60:6f:6b:95:78:8d:7f:2d:96:
11:07:f6:fe:66:99:86:b2:7f:27:4b:59:83:16:91:23:93:ff:
30:14:a5:34:88:fa:8f:35:a4:ed:b1:4c:84:fd:16:d8:31:55:
00:04:05:ce:12:46:e7:f3:72:6e:24:5a:f4:bb:c7:3a:73:b8:
c7:2f:c2:09:74:82:56:86:7b:2e:31:8b:f0:c6:f1:09:c5:bd:
47:a0:13:48:7e:75:54:4f:4b:63:34:b1:98:17:86:cb:8d:05:
b7:1b:e8:ad:15:50:1a:82:9d:ac:bb:c3:a7:4a:b5:fa:7a:52:
06:36:01:92:20:7e:d9:51:de:11:29:cb:23:b8:b5:27:5e:9f:
55:10:cd:c2:23:8d:3a:b6:eb:80:29:8a:28:2a:4c:52:1e:0f:
5a:d5:4f:93:11:4f:e2:5c:0b:bb:97:f1:7a:c7:50:a1:c7:0c:
24:a8:12:c7:49:3f:de:f0:45:91:bb:4f:05:40:4f:25:46:f1:
76:f4:c9:58:39:83:58:64:73:2b:60:32:f4:d1:e8:56:19:d9:
70:94:4b:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY97fROjiY4HtkfWoAi3oo8DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1YWM2OTliNTRhMDI4NzJhNDJmMGMwOTkyNmM0NzA2ZTcx
ZTMyMDMwHhcNMjQwNTE1MDkwMjI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWI2ZWU1MjJmYjI3NTVkMTZhYjc0ZWFhNWJhYTlkZjA2ZTY0NDEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Jma4CBm8Z6dq/YhveyOyqlx/1FJ
0IVNo4+ehV781v9tI6WE7RwiRDJEF7wb++pQataruuUGyzQ8H1AubzflD66o2pZ6
t1oc912nZCbUE6yS8V7bx9RQD3wwl4uzcOUaxKY+srg1oeiqYUUDrApuZMhf9P2y
XfOGoGKCNooh8q10LxEZQ5BNRrZ8HOfHRRCrzPYCi4ZLYDBePqRgR5SYtxO7naNN
Vr+VpzfkFdIgx4CVGipgOkAdokmoAS/wmIbhZpTf0fI5A8kPMv2l/51t7lzkMOiT
ceskaBxxJjV12rI/3+07IkrjHq0KJKyymoTjJgxRLYnLfLaE5e95tBI39wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIm27lIvsnVdFqt06qW6qd8G5kQTMB8GA1UdIwQY
MBaAFLWsaZtUoChypC8MCZJsRwbnHjIDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGF4cG0xU2dLSEtrTHd3SmtteEhCdWNlTWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85YjFmODYtMGYzMC00YmI5LTgzMDkt
OTgzN2JjMjJjNzA1LzEvaWJidVVpLXlkVjBXcTNUcXBicXAzd2JtUkJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi85YjFmODYtMGYzMC00YmI5LTgzMDktOTgzN2JjMjJjNzA1
LzEvdGF4cG0xU2dLSEtrTHd3SmtteEhCdWNlTWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEstvAMA0G
CSqGSIb3DQEBCwUAA4IBAQC0a4hRgu6jw1u9RdtdcvkoEjfCnbFXHzcNYKRqkBDx
zBE7ZSIp0bxffypb1HBgb2uVeI1/LZYRB/b+ZpmGsn8nS1mDFpEjk/8wFKU0iPqP
NaTtsUyE/RbYMVUABAXOEkbn83JuJFr0u8c6c7jHL8IJdIJWhnsuMYvwxvEJxb1H
oBNIfnVUT0tjNLGYF4bLjQW3G+itFVAagp2su8OnSrX6elIGNgGSIH7ZUd4RKcsj
uLUnXp9VEM3CI406tuuAKYooKkxSHg9a1U+TEU/iXAu7l/F6x1ChxwwkqBLHST/e
8EWRu08FQE8lRvF29MlYOYNYZHMrYDL00ehWGdlwlEsF
-----END CERTIFICATE-----
Generated at Wed Sep 18 23:38:47 2024 by rpki-client on console-fra.rpki-client.org