Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/seYAmAchBGNWkiroKaXczYu13ws.roa
File: seYAmAchBGNWkiroKaXczYu13ws.roa (raw, json)
Hash identifier: nAnK/HevkyEb/SM319Lql4AsJw6FHB8rxHmAcVvVS44=
Subject key identifier: B1:E6:00:98:07:21:04:63:56:92:2A:E8:29:A5:DC:CD:8B:B5:DF:0B
Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Certificate serial: 018EC32568D2838F4C241C43DF51AF8718E1
Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/seYAmAchBGNWkiroKaXczYu13ws.roa
Signing time: Tue 09 Apr 2024 13:56:32 +0000
ROA not before: Tue 09 Apr 2024 13:56:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57558
IP address blocks: 45.129.248.0/22 maxlen: 22
185.15.168.0/22 maxlen: 22
185.197.8.0/23 maxlen: 23
185.197.11.0/24 maxlen: 24
2a03:b140::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c3:25:68:d2:83:8f:4c:24:1c:43:df:51:af:87:18:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Validity
Not Before: Apr 9 13:56:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1e600980721046356922ae829a5dccd8bb5df0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:63:e7:77:e5:03:d2:c6:3f:fe:b9:59:49:43:
e8:c7:11:d1:0a:20:e7:7e:39:e7:93:a9:6f:c9:92:
6b:7f:20:cf:8f:ae:af:26:7d:c2:93:50:56:fa:23:
ff:c1:49:f0:d1:b3:6f:71:15:20:d2:84:d1:25:5f:
d3:2b:67:99:6a:5b:66:82:d0:b5:68:6d:1f:8c:18:
ec:88:b0:de:22:92:96:c5:f5:70:34:32:87:f8:ca:
5c:36:6a:6f:ba:59:96:a4:8d:1b:f7:05:b2:12:42:
f8:fe:8d:aa:f8:78:17:f7:38:c6:0f:72:13:1f:71:
3d:75:8e:a7:f8:ab:a1:42:07:e3:fe:5e:60:49:bc:
d6:2f:2a:7e:63:56:ab:f9:e6:4f:0d:ca:04:5d:20:
68:0d:9d:c4:49:d9:0f:66:99:2f:af:c6:ec:c2:de:
20:aa:1b:86:e6:ef:fa:20:ec:e1:77:ce:9a:83:71:
57:f7:73:30:8a:e2:f5:93:fb:1d:3b:dd:b9:7d:63:
24:0c:1e:1a:3d:e0:7b:cc:6b:d1:dc:09:65:0b:ab:
e5:36:29:09:b0:18:3b:30:41:34:ea:17:7d:fb:6c:
4a:a2:37:29:2f:1b:c9:4c:27:3c:f4:e4:b8:60:3c:
2f:4a:2d:65:bc:a0:ed:d1:4a:e0:f2:20:4e:dd:02:
03:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E6:00:98:07:21:04:63:56:92:2A:E8:29:A5:DC:CD:8B:B5:DF:0B
X509v3 Authority Key Identifier:
keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/seYAmAchBGNWkiroKaXczYu13ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.248.0/22
185.15.168.0/22
185.197.8.0/23
185.197.11.0/24
IPv6:
2a03:b140::/48
Signature Algorithm: sha256WithRSAEncryption
a2:be:25:00:b0:c6:32:60:2a:c7:33:fa:61:91:51:61:37:ec:
cd:bc:ef:fe:fc:02:6a:5c:e5:98:98:4c:40:2d:47:d7:83:c9:
31:d2:b2:9b:13:ed:b7:98:91:8d:0d:2c:3a:a7:6a:b9:90:f6:
67:fc:99:09:c1:01:45:25:43:2b:06:7f:83:e7:c5:0f:7c:a6:
2f:af:ec:0c:35:75:a9:3e:5b:cc:9d:95:d5:b5:fb:c4:d6:ea:
24:c8:91:38:6e:4b:4f:c3:41:63:fb:c0:d7:a0:a7:97:b4:80:
9f:67:4d:a1:1a:b0:2b:8f:94:e6:76:43:37:12:e6:05:2c:a0:
7b:d4:99:c1:6a:18:77:41:b2:41:9b:f6:d4:0f:1d:a7:7f:ea:
aa:07:09:4f:ee:f9:59:bd:ac:ca:90:c2:9e:cd:0a:c4:59:91:
52:19:cc:0f:a3:d1:e1:aa:9b:9c:f5:22:9a:a6:80:2e:dc:81:
f6:6a:1f:15:f5:f1:5e:fc:13:76:82:5b:a5:52:b0:cd:41:13:
fc:e7:55:60:22:86:5d:17:25:53:8f:ad:9f:f1:7d:b6:b1:cb:
f1:f6:bb:54:6d:18:68:b2:1c:b2:89:10:ec:c3:60:12:3e:a2:
ae:fb:9a:6a:94:9d:cf:16:47:58:eb:fe:90:37:95:b6:80:f5:
06:d5:aa:71
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAY7DJWjSg49MJBxD31GvhxjhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZWY1ZGJhMTAwYTkyYjI0NDRmM2U1MTJkMDFhNTkyYzAx
OTUxYzIwHhcNMjQwNDA5MTM1NjMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWU2MDA5ODA3MjEwNDYzNTY5MjJhZTgyOWE1ZGNjZDhiYjVkZjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh2Pnd+UD0sY//rlZSUPoxxHRCiDn
fjnnk6lvyZJrfyDPj66vJn3Ck1BW+iP/wUnw0bNvcRUg0oTRJV/TK2eZaltmgtC1
aG0fjBjsiLDeIpKWxfVwNDKH+MpcNmpvulmWpI0b9wWyEkL4/o2q+HgX9zjGD3IT
H3E9dY6n+KuhQgfj/l5gSbzWLyp+Y1ar+eZPDcoEXSBoDZ3ESdkPZpkvr8bswt4g
qhuG5u/6IOzhd86ag3FX93MwiuL1k/sdO925fWMkDB4aPeB7zGvR3AllC6vlNikJ
sBg7MEE06hd9+2xKojcpLxvJTCc89OS4YDwvSi1lvKDt0Urg8iBO3QIDAwIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFLHmAJgHIQRjVpIq6Cml3M2Ltd8LMB8GA1UdIwQY
MBaAFPTvXboQCpKyRE8+US0BpZLAGVHCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDct
YWQwMjdlOTVjNWM3LzEvc2VZQW1BY2hCR05Xa2lyb0thWGN6WXUxM3dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDctYWQwMjdlOTVjNWM3
LzEvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAeBAIAATAYAwQCLYH4AwQC
uQ+oAwQBucUIAwQAucULMA8EAgACMAkDBwAqA7FAAAAwDQYJKoZIhvcNAQELBQAD
ggEBAKK+JQCwxjJgKscz+mGRUWE37M287/78Ampc5ZiYTEAtR9eDyTHSspsT7beY
kY0NLDqnarmQ9mf8mQnBAUUlQysGf4PnxQ98pi+v7Aw1dak+W8ydldW1+8TW6iTI
kThuS0/DQWP7wNegp5e0gJ9nTaEasCuPlOZ2QzcS5gUsoHvUmcFqGHdBskGb9tQP
Had/6qoHCU/u+Vm9rMqQwp7NCsRZkVIZzA+j0eGqm5z1IpqmgC7cgfZqHxX18V78
E3aCW6VSsM1BE/znVWAihl0XJVOPrZ/xfbaxy/H2u1RtGGiyHLKJEOzDYBI+oq77
mmqUnc8WR1jr/pA3lbaA9QbVqnE=
-----END CERTIFICATE-----
Generated at Sat Nov 23 06:22:16 2024 by rpki-client on console-fra.rpki-client.org