Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/t6i6TohaGuo08iOK5EBzkneIIPE.roa
File: t6i6TohaGuo08iOK5EBzkneIIPE.roa (raw, json)
Hash identifier: 8Ww5dYJRuw/MzBf/4+VOEaVIh0bgD9Ka30jToaKYrp4=
Subject key identifier: B7:A8:BA:4E:88:5A:1A:EA:34:F2:23:8A:E4:40:73:92:77:88:20:F1
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 018CC794A0534EB8824F3C3695ED0A21C0D8
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/t6i6TohaGuo08iOK5EBzkneIIPE.roa
Signing time: Tue 02 Jan 2024 00:30:55 +0000
ROA not before: Tue 02 Jan 2024 00:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48680
IP address blocks: 176.103.179.0/24 maxlen: 24
176.103.176.0/24 maxlen: 24
176.103.178.0/24 maxlen: 24
176.103.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 10:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:a0:53:4e:b8:82:4f:3c:36:95:ed:0a:21:c0:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 2 00:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7a8ba4e885a1aea34f2238ae4407392778820f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:91:89:ce:20:e0:df:0d:c0:c6:43:08:61:c9:
b1:c1:ff:c4:20:c8:1d:a3:36:49:97:84:1c:2b:48:
b6:5c:6f:26:a9:5f:83:0e:20:da:d9:05:9e:f6:ea:
af:83:29:24:d0:05:4c:56:94:d1:69:0d:21:16:1c:
74:3c:bc:fd:a6:5f:69:7a:d7:90:79:99:09:7c:a4:
c3:98:2b:d1:0e:4e:91:b8:d6:a2:5e:f9:8e:55:51:
7b:4a:9b:cb:bc:dd:04:cc:b6:05:99:76:77:c4:7e:
9a:bb:4e:76:33:ae:e8:b5:20:04:d6:3c:16:de:5c:
b1:b6:fc:2d:78:90:c9:ed:dc:28:0b:24:9c:d8:0c:
f2:a8:4c:91:43:97:af:f5:21:87:3a:3b:d3:36:1b:
4a:d8:d6:48:60:c8:f9:65:49:c7:e5:4d:51:54:c4:
54:41:c0:cc:76:a4:c1:65:db:30:89:c0:d2:18:97:
bb:38:da:85:ef:8f:09:97:d7:5e:a5:79:60:1e:50:
43:8e:84:48:91:71:46:fd:a9:5d:cb:3b:7d:00:14:
66:8d:fd:a4:3e:85:25:4d:04:e6:bd:61:ae:09:76:
51:b5:93:b8:92:71:8a:44:83:07:dd:d9:20:9a:f1:
66:75:11:9a:26:61:4d:5e:79:c4:1f:14:4d:d0:15:
30:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A8:BA:4E:88:5A:1A:EA:34:F2:23:8A:E4:40:73:92:77:88:20:F1
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/t6i6TohaGuo08iOK5EBzkneIIPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.176.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:17:1f:15:00:d9:86:b4:81:f6:2b:96:75:e3:cc:8f:c3:de:
b8:04:03:f2:cc:17:fb:6c:3f:a3:79:60:86:a3:99:e7:7b:1c:
7b:9f:b3:06:d4:3f:70:14:20:bc:77:0a:a6:31:c1:06:89:bb:
3d:6e:44:c3:69:22:83:73:a6:91:16:b4:ad:51:dc:fc:3b:61:
0e:b6:f8:e3:96:a4:54:49:b7:67:1a:dd:de:43:7e:05:7f:18:
66:6a:6b:36:c8:1c:44:84:30:f1:ed:57:f5:78:81:1e:c4:4b:
84:cc:59:1d:a6:52:0e:29:02:49:bc:ef:c7:b2:94:04:f3:cb:
aa:fd:ab:d1:82:fd:04:1a:ef:a7:8b:6c:5d:61:e6:f7:8e:3a:
29:5c:f2:c6:90:37:1d:36:87:a3:a7:8b:39:03:b1:39:ec:cf:
37:fe:85:c7:4f:8a:22:a4:bc:8c:72:24:54:3d:93:22:56:61:
d9:6c:8e:78:9f:96:78:58:fe:e1:64:50:0e:49:26:23:8e:9b:
63:bc:5c:5b:42:11:e7:01:c0:5d:dc:eb:f8:f1:5d:b8:d4:1e:
fe:a6:83:bc:d5:1d:39:5b:ae:5c:f2:19:5b:f7:54:e4:7f:12:
23:38:8c:37:20:25:e6:8d:75:10:bb:1d:e4:da:e3:ac:77:0d:
c4:58:3c:d1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlKBTTriCTzw2le0KIcDYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YWRkOWI2NzFmN2EzNmViMjM2N2UzNGZlZTRiY2IxM2I4
ZjY2Y2MwHhcNMjQwMTAyMDAzMDU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2E4YmE0ZTg4NWExYWVhMzRmMjIzOGFlNDQwNzM5Mjc3ODgyMGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgpGJziDg3w3AxkMIYcmxwf/EIMgd
ozZJl4QcK0i2XG8mqV+DDiDa2QWe9uqvgykk0AVMVpTRaQ0hFhx0PLz9pl9peteQ
eZkJfKTDmCvRDk6RuNaiXvmOVVF7SpvLvN0EzLYFmXZ3xH6au052M67otSAE1jwW
3lyxtvwteJDJ7dwoCySc2AzyqEyRQ5ev9SGHOjvTNhtK2NZIYMj5ZUnH5U1RVMRU
QcDMdqTBZdswicDSGJe7ONqF748Jl9depXlgHlBDjoRIkXFG/aldyzt9ABRmjf2k
PoUlTQTmvWGuCXZRtZO4knGKRIMH3dkgmvFmdRGaJmFNXnnEHxRN0BUwYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLeouk6IWhrqNPIjiuRAc5J3iCDxMB8GA1UdIwQY
MBaAFIit2bZx96NusjZ+NP7kvLE7j2bMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUszWnRuSDNvMjZ5Tm40MF91UzhzVHVQWnN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zZWQwMGEtMTVlZS00NjY0LWE3ZjEt
YTFiOTZiOWI3MGY4LzEvdDZpNlRvaGFHdW8wOGlPSzVFQnprbmVJSVBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zZWQwMGEtMTVlZS00NjY0LWE3ZjEtYTFiOTZiOWI3MGY4
LzEvaUszWnRuSDNvMjZ5Tm40MF91UzhzVHVQWnN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCsGewMA0G
CSqGSIb3DQEBCwUAA4IBAQCbFx8VANmGtIH2K5Z148yPw964BAPyzBf7bD+jeWCG
o5nnexx7n7MG1D9wFCC8dwqmMcEGibs9bkTDaSKDc6aRFrStUdz8O2EOtvjjlqRU
SbdnGt3eQ34Ffxhmams2yBxEhDDx7Vf1eIEexEuEzFkdplIOKQJJvO/HspQE88uq
/avRgv0EGu+ni2xdYeb3jjopXPLGkDcdNoejp4s5A7E57M83/oXHT4oipLyMciRU
PZMiVmHZbI54n5Z4WP7hZFAOSSYjjptjvFxbQhHnAcBd3Ov48V241B7+poO81R05
W65c8hlb91TkfxIjOIw3ICXmjXUQux3k2uOsdw3EWDzR
-----END CERTIFICATE-----
Generated at Fri Nov 22 16:10:48 2024 by rpki-client on console-fra.rpki-client.org