Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/IOS2ETqvLa2fOJsLNBD4bXfHCvk.roa
File: IOS2ETqvLa2fOJsLNBD4bXfHCvk.roa (raw, json)
Hash identifier: Tpx6JG1bkHcFIDI1NqCLoPVXqQBZUFz3v5K1pvSHtno=
Subject key identifier: 20:E4:B6:11:3A:AF:2D:AD:9F:38:9B:0B:34:10:F8:6D:77:C7:0A:F9
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 0191A2E2DE5048D287448DAA33B1419AC983
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/IOS2ETqvLa2fOJsLNBD4bXfHCvk.roa
Signing time: Fri 30 Aug 2024 10:44:22 +0000
ROA not before: Fri 30 Aug 2024 10:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207027
IP address blocks: 2.59.176.0/22 maxlen: 22
193.36.228.0/24 maxlen: 24
193.37.34.0/24 maxlen: 24
193.176.220.0/24 maxlen: 24
193.193.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:e2:de:50:48:d2:87:44:8d:aa:33:b1:41:9a:c9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Aug 30 10:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20e4b6113aaf2dad9f389b0b3410f86d77c70af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2e:e5:b2:be:c4:ff:00:52:a0:8a:32:55:58:
d1:77:13:ce:4e:0f:43:19:14:5a:45:75:50:c7:40:
fd:3b:53:93:74:f5:7a:ae:89:70:2e:b7:75:75:69:
cf:59:5b:6b:b8:a7:c2:35:13:8f:fa:7b:70:93:51:
f6:f2:d4:4c:4b:69:3b:20:25:db:48:5d:a9:4f:a5:
51:f1:f2:7f:22:f9:a8:da:ac:85:3b:90:35:30:40:
af:b8:6e:e3:57:82:e2:d9:02:f5:b4:53:b7:0a:46:
ce:75:36:72:8d:b5:d0:e2:28:5b:d8:ca:6b:30:5a:
0b:32:6c:ba:cd:d6:10:d9:f4:2a:fb:a6:23:fa:54:
f4:21:10:fc:f5:57:bb:87:88:94:da:6e:ca:78:4e:
50:ad:d1:f1:45:51:51:22:9d:03:26:24:d2:12:23:
bd:14:34:e0:b7:c1:e8:da:06:12:6a:58:ec:e0:1d:
ff:3b:d9:2b:e8:21:f2:47:3b:bf:e1:68:aa:43:57:
fc:97:94:60:0f:65:e2:c2:f9:30:29:3d:61:7e:fd:
cf:42:52:b2:07:9d:3f:e8:36:c4:e9:84:db:c7:e0:
94:66:87:11:74:80:0f:f6:23:42:46:ae:51:1b:47:
5d:7c:2f:21:78:53:04:8d:55:b6:6c:50:dd:a0:f9:
55:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E4:B6:11:3A:AF:2D:AD:9F:38:9B:0B:34:10:F8:6D:77:C7:0A:F9
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/IOS2ETqvLa2fOJsLNBD4bXfHCvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.176.0/22
193.36.228.0/24
193.37.34.0/24
193.176.220.0/24
193.193.160.0/24
Signature Algorithm: sha256WithRSAEncryption
92:db:dd:17:82:8b:17:fd:f9:fc:e8:a9:78:81:62:3a:bb:a6:
91:2e:d4:39:f5:6c:8c:fc:ff:12:38:78:01:d6:b4:e3:83:3d:
3d:ef:16:17:74:40:19:ff:85:4c:45:b4:a8:0e:6d:4e:9c:6b:
16:7e:ff:58:1b:e0:d9:e7:03:ad:b4:74:9b:8c:45:be:22:4b:
e9:09:2b:d6:be:e7:5a:84:7c:a3:8b:67:9e:36:2e:39:36:33:
37:35:bf:c1:e7:76:eb:00:1b:f5:22:a5:bd:ba:cf:b5:7c:92:
85:1c:8c:bc:10:25:c5:33:5e:39:fd:ec:46:4d:44:21:76:ea:
be:a3:3f:4e:c2:4e:15:41:7e:b7:bf:d7:da:d6:41:fa:0a:1f:
fd:54:47:14:d7:51:21:ce:ad:9a:9f:fa:4c:33:82:9d:07:e5:
42:76:f0:d0:1e:b6:bc:79:5d:98:ac:e9:1a:45:f4:ae:08:9f:
a7:55:c4:b4:83:62:21:ec:d5:9a:f0:e0:a5:f4:c3:31:7d:41:
40:99:18:44:6a:a5:53:86:d9:40:b5:4d:8d:78:b9:d1:dd:15:
90:27:1f:e6:d1:e5:49:fb:09:f0:30:7f:b0:00:83:47:f7:f4:
bb:54:8e:80:43:a5:79:2a:83:25:43:33:81:1a:9c:cb:6a:6a:
d4:7a:e6:e9
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZGi4t5QSNKHRI2qM7FBmsmDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwODMwMTA0NDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGU0YjYxMTNhYWYyZGFkOWYzODliMGIzNDEwZjg2ZDc3YzcwYWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoi7lsr7E/wBSoIoyVVjRdxPOTg9D
GRRaRXVQx0D9O1OTdPV6rolwLrd1dWnPWVtruKfCNROP+ntwk1H28tRMS2k7ICXb
SF2pT6VR8fJ/Ivmo2qyFO5A1MECvuG7jV4Li2QL1tFO3CkbOdTZyjbXQ4ihb2Mpr
MFoLMmy6zdYQ2fQq+6Yj+lT0IRD89Ve7h4iU2m7KeE5QrdHxRVFRIp0DJiTSEiO9
FDTgt8Ho2gYSaljs4B3/O9kr6CHyRzu/4WiqQ1f8l5RgD2XiwvkwKT1hfv3PQlKy
B50/6DbE6YTbx+CUZocRdIAP9iNCRq5RG0ddfC8heFMEjVW2bFDdoPlVYwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFCDkthE6ry2tnzibCzQQ+G13xwr5MB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvSU9TMkVUcXZMYTJmT0pzTE5CRDRiWGZIQ3ZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCAjuwAwQA
wSTkAwQAwSUiAwQAwbDcAwQAwcGgMA0GCSqGSIb3DQEBCwUAA4IBAQCS290XgosX
/fn86Kl4gWI6u6aRLtQ59WyM/P8SOHgB1rTjgz097xYXdEAZ/4VMRbSoDm1OnGsW
fv9YG+DZ5wOttHSbjEW+IkvpCSvWvudahHyji2eeNi45NjM3Nb/B53brABv1IqW9
us+1fJKFHIy8ECXFM145/exGTUQhduq+oz9Owk4VQX63v9fa1kH6Ch/9VEcU11Eh
zq2an/pMM4KdB+VCdvDQHra8eV2YrOkaRfSuCJ+nVcS0g2Ih7NWa8OCl9MMxfUFA
mRhEaqVThtlAtU2NeLnR3RWQJx/m0eVJ+wnwMH+wAINH9/S7VI6AQ6V5KoMlQzOB
GpzLamrUeubp
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:22:20 2024 by rpki-client on console-ams.rpki-client.org