Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/6RGV12qitaF0K7arRuwa8l74qzg.roa
File: 6RGV12qitaF0K7arRuwa8l74qzg.roa (raw, json)
Hash identifier: CBOUzbPrQLOKj0pfTO32PtnlXVDAYnDVo6wX0yx/xGE=
Subject key identifier: E9:11:95:D7:6A:A2:B5:A1:74:2B:B6:AB:46:EC:1A:F2:5E:F8:AB:38
Certificate issuer: /CN=f49ba99114ebdabd6e4cbd36f6cd475b33cf1386
Certificate serial: 018D44B641EBDEE9705706968B9F1EDF26DE
Authority key identifier: F4:9B:A9:91:14:EB:DA:BD:6E:4C:BD:36:F6:CD:47:5B:33:CF:13:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9JupkRTr2r1uTL029s1HWzPPE4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/6RGV12qitaF0K7arRuwa8l74qzg.roa
Signing time: Fri 26 Jan 2024 07:40:11 +0000
ROA not before: Fri 26 Jan 2024 07:40:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50875
IP address blocks: 185.86.244.0/22 maxlen: 22
185.86.244.0/24 maxlen: 24
185.86.245.0/24 maxlen: 24
185.86.246.0/24 maxlen: 24
185.86.247.0/24 maxlen: 24
185.251.66.0/24 maxlen: 24
185.251.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/9JupkRTr2r1uTL029s1HWzPPE4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/9JupkRTr2r1uTL029s1HWzPPE4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/9JupkRTr2r1uTL029s1HWzPPE4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:44:b6:41:eb:de:e9:70:57:06:96:8b:9f:1e:df:26:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f49ba99114ebdabd6e4cbd36f6cd475b33cf1386
Validity
Not Before: Jan 26 07:40:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e91195d76aa2b5a1742bb6ab46ec1af25ef8ab38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d2:e9:ca:ef:5d:a5:ad:48:c9:a1:78:ef:4b:
39:14:f2:f6:50:5f:75:50:72:b6:04:b6:36:33:67:
2a:32:0b:79:2e:80:b5:8b:18:9d:d1:a1:3c:c1:5b:
10:fd:b2:c8:e4:f0:23:5c:1a:08:54:b4:7c:a9:77:
a6:10:55:aa:e3:c8:53:d6:df:11:db:eb:da:c1:73:
c4:c8:77:a9:bb:49:3c:20:b5:20:7b:52:91:7f:12:
9a:d3:d9:1e:15:76:7a:52:e5:ca:82:1e:c1:79:7b:
7e:94:4b:4e:22:42:f9:c9:f5:44:80:b2:b6:e1:f4:
19:15:76:3a:71:b1:0d:0a:14:47:7e:0b:01:b5:2e:
39:61:61:c0:27:47:fe:2a:c6:bb:93:c3:57:5e:5e:
87:55:43:ae:0b:2f:90:78:3a:7f:42:d9:40:38:2a:
86:fb:93:77:d6:45:44:00:ff:f2:46:cf:ff:ff:ac:
de:2f:7e:a4:18:e9:1c:ea:93:67:72:b6:24:81:ac:
ca:85:b2:5a:bf:85:01:30:e1:78:31:b5:bc:48:8c:
bf:09:4b:f9:3c:82:60:f9:23:d1:77:8c:72:a4:dc:
d9:17:fa:10:92:0b:8c:41:ad:eb:e2:aa:43:8b:f8:
84:9b:b7:9c:20:8e:0e:3f:37:ce:20:1d:4c:f6:c1:
4b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:11:95:D7:6A:A2:B5:A1:74:2B:B6:AB:46:EC:1A:F2:5E:F8:AB:38
X509v3 Authority Key Identifier:
keyid:F4:9B:A9:91:14:EB:DA:BD:6E:4C:BD:36:F6:CD:47:5B:33:CF:13:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9JupkRTr2r1uTL029s1HWzPPE4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/6RGV12qitaF0K7arRuwa8l74qzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6e4db7-45a8-4993-b384-9a6ee486eff7/1/9JupkRTr2r1uTL029s1HWzPPE4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.244.0/22
185.251.66.0/23
Signature Algorithm: sha256WithRSAEncryption
59:b4:e3:95:6e:a7:48:5d:b5:12:70:32:3e:7f:a3:1f:e7:32:
dc:ec:ab:c2:56:7d:27:08:74:a9:4e:1a:12:ab:c6:81:6b:47:
b2:97:bf:d4:3a:7c:62:d0:b9:9f:a1:ff:8c:cf:20:2e:42:24:
20:0c:6d:2f:cc:a5:18:c5:d1:f1:0c:ac:fe:71:12:09:9f:59:
4e:e6:40:d7:8c:16:41:f7:e3:07:7a:db:ad:ab:f9:93:ed:e6:
ef:5b:ee:ac:1e:07:7c:ad:f6:60:46:10:c7:ff:fc:bb:47:f2:
98:83:11:3f:55:95:92:61:80:bc:9e:8d:b2:33:a3:1a:ba:b6:
ab:3f:03:d0:3f:d4:df:60:08:92:fd:f9:e6:d8:7e:07:78:df:
13:99:5f:fe:8c:0c:ce:9f:56:d1:4b:bd:69:40:71:b3:eb:2e:
8d:3a:02:fe:0d:89:4b:d8:38:31:84:d2:18:89:82:39:2b:94:
09:86:20:4b:9c:28:9f:2c:db:e3:a8:0b:e2:1e:87:f6:ba:77:
0e:79:ce:e0:6c:e8:06:53:c6:5d:5f:e9:97:11:fd:a5:31:84:
71:95:e9:36:84:bf:aa:58:5e:82:0d:10:61:9c:c5:d3:5e:2c:
bb:1b:2a:37:14:82:12:84:f1:64:ac:65:bb:4f:74:87:7d:8b:
a3:c8:93:47
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY1EtkHr3ulwVwaWi58e3ybeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0OWJhOTkxMTRlYmRhYmQ2ZTRjYmQzNmY2Y2Q0NzViMzNj
ZjEzODYwHhcNMjQwMTI2MDc0MDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTExOTVkNzZhYTJiNWExNzQyYmI2YWI0NmVjMWFmMjVlZjhhYjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNLpyu9dpa1IyaF470s5FPL2UF91
UHK2BLY2M2cqMgt5LoC1ixid0aE8wVsQ/bLI5PAjXBoIVLR8qXemEFWq48hT1t8R
2+vawXPEyHepu0k8ILUge1KRfxKa09keFXZ6UuXKgh7BeXt+lEtOIkL5yfVEgLK2
4fQZFXY6cbENChRHfgsBtS45YWHAJ0f+Ksa7k8NXXl6HVUOuCy+QeDp/QtlAOCqG
+5N31kVEAP/yRs///6zeL36kGOkc6pNncrYkgazKhbJav4UBMOF4MbW8SIy/CUv5
PIJg+SPRd4xypNzZF/oQkguMQa3r4qpDi/iEm7ecII4OPzfOIB1M9sFLVQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOkRlddqorWhdCu2q0bsGvJe+Ks4MB8GA1UdIwQY
MBaAFPSbqZEU69q9bky9NvbNR1szzxOGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUp1cGtSVHIycjF1VEwwMjlzMUhXelBQRTRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS82ZTRkYjctNDVhOC00OTkzLWIzODQt
OWE2ZWU0ODZlZmY3LzEvNlJHVjEycWl0YUYwSzdhclJ1d2E4bDc0cXpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS82ZTRkYjctNDVhOC00OTkzLWIzODQtOWE2ZWU0ODZlZmY3
LzEvOUp1cGtSVHIycjF1VEwwMjlzMUhXelBQRTRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuVb0AwQB
uftCMA0GCSqGSIb3DQEBCwUAA4IBAQBZtOOVbqdIXbUScDI+f6Mf5zLc7KvCVn0n
CHSpThoSq8aBa0eyl7/UOnxi0Lmfof+MzyAuQiQgDG0vzKUYxdHxDKz+cRIJn1lO
5kDXjBZB9+MHetutq/mT7ebvW+6sHgd8rfZgRhDH//y7R/KYgxE/VZWSYYC8no2y
M6MaurarPwPQP9TfYAiS/fnm2H4HeN8TmV/+jAzOn1bRS71pQHGz6y6NOgL+DYlL
2DgxhNIYiYI5K5QJhiBLnCifLNvjqAviHof2uncOec7gbOgGU8ZdX+mXEf2lMYRx
lek2hL+qWF6CDRBhnMXTXiy7Gyo3FIIShPFkrGW7T3SHfYujyJNH
-----END CERTIFICATE-----
Generated at Tue Nov 26 14:35:18 2024 by rpki-client on console-ams.rpki-client.org