Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/A88Ne_CpJQYTUr5QITlEtAL0D7I.roa
File: A88Ne_CpJQYTUr5QITlEtAL0D7I.roa (raw, json)
Hash identifier: JD1q3LQyqBBdr5HJo8nenV2rTP8RustPJRGbkA3qqDo=
Subject key identifier: 03:CF:0D:7B:F0:A9:25:06:13:52:BE:50:21:39:44:B4:02:F4:0F:B2
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 018D7EF0047D738A9AAA630B83DCC0677BDE
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/A88Ne_CpJQYTUr5QITlEtAL0D7I.roa
Signing time: Tue 06 Feb 2024 15:01:15 +0000
ROA not before: Tue 06 Feb 2024 15:01:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206273
IP address blocks: 31.130.242.0/23 maxlen: 23
31.130.244.0/22 maxlen: 22
31.130.246.0/23 maxlen: 23
91.218.154.0/23 maxlen: 23
185.198.60.0/23 maxlen: 23
185.198.62.0/23 maxlen: 23
2a0a:15c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:f0:04:7d:73:8a:9a:aa:63:0b:83:dc:c0:67:7b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Feb 6 15:01:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03cf0d7bf0a925061352be50213944b402f40fb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:59:82:57:03:e4:9e:db:80:66:cb:ec:9e:ec:
36:c6:14:a5:f0:b9:05:c5:b6:77:35:ac:0c:9e:d6:
76:f6:fc:62:2d:e3:34:8a:37:13:cb:4c:55:e3:62:
c5:e8:f4:b1:39:75:92:ab:bb:6e:de:01:2f:54:13:
3b:85:f4:3c:07:5d:37:7e:e5:bc:9c:c3:48:1b:da:
35:35:b7:e8:51:1c:16:9e:4c:04:14:a0:45:19:d8:
5f:c4:76:71:75:ec:a2:77:e3:7c:3b:3d:af:c5:93:
80:8f:8b:ee:c0:ac:62:4c:ad:34:70:64:58:94:37:
ab:1d:22:56:16:42:5e:42:03:9a:d6:fe:ca:6d:d9:
49:a5:08:3b:16:4d:cf:5f:dd:73:e5:31:a7:30:ee:
ce:f8:a4:2a:90:27:c5:bd:eb:53:30:f4:86:43:dd:
3a:15:19:20:61:fb:f1:4a:b8:ed:39:ed:b5:d0:ce:
e0:8a:66:ff:e0:67:d7:1a:5e:d7:a5:08:4c:63:12:
9a:93:cc:eb:15:ff:e2:e7:59:5e:29:15:5f:ed:6c:
27:38:9e:e4:89:8c:19:ef:a3:7d:ca:5e:c7:07:c4:
83:91:49:74:19:05:15:b3:46:fe:a2:f5:55:dc:58:
7a:ad:13:d9:48:35:19:4f:58:c0:40:aa:0d:37:20:
44:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CF:0D:7B:F0:A9:25:06:13:52:BE:50:21:39:44:B4:02:F4:0F:B2
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/A88Ne_CpJQYTUr5QITlEtAL0D7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.242.0-31.130.247.255
91.218.154.0/23
185.198.60.0/22
IPv6:
2a0a:15c0::/29
Signature Algorithm: sha256WithRSAEncryption
89:db:51:f0:fb:a3:06:72:da:47:80:2a:e5:86:96:af:83:9f:
7e:3e:e9:53:d7:05:e9:0f:4d:d8:94:83:36:8f:b6:d9:1d:89:
9e:2b:b2:5e:f2:6d:a3:73:14:24:d0:96:27:78:52:12:45:f6:
ad:2b:5f:31:61:89:91:01:5a:30:eb:ed:1e:39:e7:d1:2d:61:
54:81:ab:1e:c9:8c:6c:be:e2:84:e8:d2:71:df:ee:70:08:33:
ec:bb:61:d1:fa:ec:a4:48:bc:b6:4e:f1:db:77:31:48:ae:c9:
df:d7:ba:d7:15:23:33:d7:0e:8c:11:38:c8:61:e6:da:48:28:
d1:bf:42:6c:b1:09:6b:62:36:93:61:f4:2e:d2:fa:3b:1b:44:
f8:27:87:0b:09:b6:0b:89:4f:e2:ca:4f:32:47:0b:e4:23:a2:
a3:6c:88:51:3a:67:65:fb:61:e5:b1:45:e7:89:03:cd:56:f7:
f9:27:b5:28:91:f9:ce:74:35:59:e7:78:6c:46:6d:63:c3:db:
59:04:b0:15:56:52:61:29:52:2a:e2:99:10:90:79:9f:f4:4b:
ec:9e:8b:6f:a8:e4:0e:e3:35:b4:07:f2:53:c6:d1:cd:c0:70:
c0:05:26:bc:0a:f0:99:c5:c5:eb:c1:a9:e4:d3:2c:db:8c:e8:
21:89:c7:57
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAY1+8AR9c4qaqmMLg9zAZ3veMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkYmU2ZTBhZGFlOGJiNDc4MzkzYWFiMTc1YjYzODY0NGM3
NGNjYjcwHhcNMjQwMjA2MTUwMTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2NmMGQ3YmYwYTkyNTA2MTM1MmJlNTAyMTM5NDRiNDAyZjQwZmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolmCVwPkntuAZsvsnuw2xhSl8LkF
xbZ3NawMntZ29vxiLeM0ijcTy0xV42LF6PSxOXWSq7tu3gEvVBM7hfQ8B103fuW8
nMNIG9o1NbfoURwWnkwEFKBFGdhfxHZxdeyid+N8Oz2vxZOAj4vuwKxiTK00cGRY
lDerHSJWFkJeQgOa1v7KbdlJpQg7Fk3PX91z5TGnMO7O+KQqkCfFvetTMPSGQ906
FRkgYfvxSrjtOe210M7gimb/4GfXGl7XpQhMYxKak8zrFf/i51leKRVf7WwnOJ7k
iYwZ76N9yl7HB8SDkUl0GQUVs0b+ovVV3Fh6rRPZSDUZT1jAQKoNNyBEUwIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFAPPDXvwqSUGE1K+UCE5RLQC9A+yMB8GA1UdIwQY
MBaAFN2+bgra6LtHg5OqsXW2OGRMdMy3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2I1dUN0cm91MGVEazZxeGRiWTRaRXgwekxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNjdiNzgtNThjOC00MzExLTllNjkt
NmJhYTNiNTQ4ZDIzLzEvQTg4TmVfQ3BKUVlUVXI1UUlUbEV0QUwwRDdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNjdiNzgtNThjOC00MzExLTllNjktNmJhYTNiNTQ4ZDIz
LzEvM2I1dUN0cm91MGVEazZxeGRiWTRaRXgwekxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAgBAIAATAaMAwDBAEfgvID
BAMfgvADBAFb2poDBAK5xjwwDQQCAAIwBwMFAyoKFcAwDQYJKoZIhvcNAQELBQAD
ggEBAInbUfD7owZy2keAKuWGlq+Dn34+6VPXBekPTdiUgzaPttkdiZ4rsl7ybaNz
FCTQlid4UhJF9q0rXzFhiZEBWjDr7R4559EtYVSBqx7JjGy+4oTo0nHf7nAIM+y7
YdH67KRIvLZO8dt3MUiuyd/XutcVIzPXDowROMhh5tpIKNG/QmyxCWtiNpNh9C7S
+jsbRPgnhwsJtguJT+LKTzJHC+QjoqNsiFE6Z2X7YeWxReeJA81W9/kntSiR+c50
NVnneGxGbWPD21kEsBVWUmEpUirimRCQeZ/0S+yei2+o5A7jNbQH8lPG0c3AcMAF
JrwK8JnFxevBqeTTLNuM6CGJx1c=
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:22:21 2024 by rpki-client on console-ams.rpki-client.org