Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/giuPZ0fzn_X0mDupbLJMT1RQKC4.roa
File: giuPZ0fzn_X0mDupbLJMT1RQKC4.roa (raw, json)
Hash identifier: kFibyfC6rlKwfOdWh7OmKBJZWQiaExvLORW40HdShIo=
Subject key identifier: 82:2B:8F:67:47:F3:9F:F5:F4:98:3B:A9:6C:B2:4C:4F:54:50:28:2E
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01925E18621FCFC958599915549FF84E887A
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/giuPZ0fzn_X0mDupbLJMT1RQKC4.roa
Signing time: Sat 05 Oct 2024 19:11:49 +0000
ROA not before: Sat 05 Oct 2024 19:11:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60721
IP address blocks: 93.190.13.0/24 maxlen: 24
185.98.61.0/24 maxlen: 24
185.141.34.0/24 maxlen: 24
185.185.232.0/24 maxlen: 24
185.243.182.0/24 maxlen: 24
193.160.142.0/24 maxlen: 24
193.223.104.0/24 maxlen: 24
193.223.105.0/24 maxlen: 24
194.62.53.0/24 maxlen: 24
194.62.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:5e:18:62:1f:cf:c9:58:59:99:15:54:9f:f8:4e:88:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Oct 5 19:11:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=822b8f6747f39ff5f4983ba96cb24c4f5450282e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fb:e1:e9:0c:41:06:82:e7:42:62:e5:b5:c1:
a9:d5:38:5e:5d:e5:8d:32:cf:64:11:94:14:e4:c7:
24:fa:d0:8d:fb:b8:b5:e2:b4:d5:a7:cf:20:a4:65:
9d:df:bb:f5:e9:34:1a:9d:63:17:ef:9c:f9:72:71:
82:93:4b:8f:55:84:58:b0:17:67:2b:1d:90:74:ef:
4d:ae:8b:01:4e:83:bd:43:d1:d9:b1:2f:9a:a9:c3:
52:1f:d6:a4:bc:b5:f7:50:5c:75:04:6a:7b:40:ba:
25:2b:7e:cb:ad:f0:fa:21:e7:fb:2f:08:4f:ae:0b:
e8:e7:4b:57:5d:22:f7:ca:76:e8:d5:e7:1d:6b:d9:
91:ba:c3:0f:52:84:d7:ab:17:21:b9:09:1c:6d:42:
af:f9:73:f5:bd:e5:d8:03:24:29:76:60:b8:c4:b7:
11:48:13:2b:fa:7e:79:9e:f8:de:65:a9:e2:0d:84:
50:41:ed:c2:59:64:97:5a:84:51:c8:92:96:61:00:
80:71:fc:26:2d:e6:29:2d:2f:78:28:f0:28:49:6c:
9b:aa:7d:d2:99:01:c8:dd:2f:29:1e:58:a7:2f:14:
27:45:77:7d:5c:ef:b5:2c:1e:03:11:e8:97:59:ab:
e7:66:ed:77:2f:14:64:f3:07:ab:b2:e4:7c:ad:9d:
da:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2B:8F:67:47:F3:9F:F5:F4:98:3B:A9:6C:B2:4C:4F:54:50:28:2E
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/giuPZ0fzn_X0mDupbLJMT1RQKC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.13.0/24
185.98.61.0/24
185.141.34.0/24
185.185.232.0/24
185.243.182.0/24
193.160.142.0/24
193.223.104.0/23
194.62.53.0/24
194.62.55.0/24
Signature Algorithm: sha256WithRSAEncryption
94:fd:35:27:85:d9:0b:fd:47:60:e2:bc:2c:e2:cd:de:d0:a2:
4e:28:3c:c5:ab:70:bf:9f:d5:cb:6e:51:4c:5d:c2:d5:8d:0c:
65:91:05:6c:d7:93:96:ea:d8:30:cd:44:69:a5:42:e8:2b:c0:
3b:9c:70:65:0d:0f:b4:6d:d0:e1:34:5d:9c:63:ed:62:2d:68:
67:12:b8:3e:d6:e6:73:15:01:d0:e7:79:39:7f:05:95:bd:ec:
9b:19:e2:97:a3:fe:87:fa:4c:92:67:20:85:75:19:a4:9d:76:
2a:66:60:9d:c8:15:dd:83:56:75:b9:6b:37:06:a9:14:58:11:
06:13:84:10:d2:07:52:e7:2c:72:56:a5:85:6b:7f:e0:3d:79:
2a:63:fe:52:85:83:49:0c:e9:db:cd:f0:2f:58:52:34:81:52:
e9:77:f5:7d:48:b5:9d:a4:9e:0b:db:a9:2d:fc:fe:be:5f:05:
ac:69:8d:ff:91:9f:91:59:47:b6:eb:b8:d9:9d:e4:4a:e6:ca:
7f:24:37:fb:06:8c:1b:db:27:49:08:3c:7c:23:e4:0a:50:a0:
bd:6c:b3:a3:99:11:8e:ec:a2:8b:32:90:95:62:b4:cf:e3:3c:
ff:60:5b:93:fc:3b:da:ba:4d:57:40:31:38:85:39:e0:c1:9c:
c4:1e:66:6d
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZJeGGIfz8lYWZkVVJ/4Toh6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MTZjNDE5NTE1MmVmZmVkYmY3YjNhZmVlMmFhNzJlMTkw
OTBlNGQwHhcNMjQxMDA1MTkxMTQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjJiOGY2NzQ3ZjM5ZmY1ZjQ5ODNiYTk2Y2IyNGM0ZjU0NTAyODJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfvh6QxBBoLnQmLltcGp1TheXeWN
Ms9kEZQU5Mck+tCN+7i14rTVp88gpGWd37v16TQanWMX75z5cnGCk0uPVYRYsBdn
Kx2QdO9NrosBToO9Q9HZsS+aqcNSH9akvLX3UFx1BGp7QLolK37LrfD6Ief7LwhP
rgvo50tXXSL3ynbo1ecda9mRusMPUoTXqxchuQkcbUKv+XP1veXYAyQpdmC4xLcR
SBMr+n55nvjeZaniDYRQQe3CWWSXWoRRyJKWYQCAcfwmLeYpLS94KPAoSWybqn3S
mQHI3S8pHlinLxQnRXd9XO+1LB4DEeiXWavnZu13LxRk8wersuR8rZ3a1wIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFIIrj2dH85/19Jg7qWyyTE9UUCguMB8GA1UdIwQY
MBaAFMYWxBlRUu/+2/ezr+4qpy4ZCQ5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjkt
MzlmZGI5ODZmMDU5LzEvZ2l1UFowZnpuX1gwbUR1cGJMSk1UMVJRS0M0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjktMzlmZGI5ODZmMDU5
LzEveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAXb4NAwQA
uWI9AwQAuY0iAwQAubnoAwQAufO2AwQAwaCOAwQBwd9oAwQAwj41AwQAwj43MA0G
CSqGSIb3DQEBCwUAA4IBAQCU/TUnhdkL/Udg4rws4s3e0KJOKDzFq3C/n9XLblFM
XcLVjQxlkQVs15OW6tgwzURppULoK8A7nHBlDQ+0bdDhNF2cY+1iLWhnErg+1uZz
FQHQ53k5fwWVveybGeKXo/6H+kySZyCFdRmknXYqZmCdyBXdg1Z1uWs3BqkUWBEG
E4QQ0gdS5yxyVqWFa3/gPXkqY/5ShYNJDOnbzfAvWFI0gVLpd/V9SLWdpJ4L26kt
/P6+XwWsaY3/kZ+RWUe267jZneRK5sp/JDf7Bowb2ydJCDx8I+QKUKC9bLOjmRGO
7KKLMpCVYrTP4zz/YFuT/Dvauk1XQDE4hTngwZzEHmZt
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:31:46 2024 by rpki-client on console-fra.rpki-client.org