Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/vNW4fO3dmryD6WLR1KJexjiY89Y.roa
File: vNW4fO3dmryD6WLR1KJexjiY89Y.roa (raw, json)
Hash identifier: /io3UuZICKsnrIe2j8zx2aqX2r5Q0kerUiKYfuhOKDQ=
Subject key identifier: BC:D5:B8:7C:ED:DD:9A:BC:83:E9:62:D1:D4:A2:5E:C6:38:98:F3:D6
Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108
Certificate serial: 018CC500DCBDF09C0F069A0BB9AEE5CF20A3
Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/vNW4fO3dmryD6WLR1KJexjiY89Y.roa
Signing time: Mon 01 Jan 2024 12:30:17 +0000
ROA not before: Mon 01 Jan 2024 12:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44933
IP address blocks: 77.70.164.0/22 maxlen: 22
193.220.184.0/22 maxlen: 22
193.220.188.0/24 maxlen: 24
193.220.191.0/24 maxlen: 24
193.220.192.0/20 maxlen: 24
2a02:6604:3::/48 maxlen: 48
2a02:6600:2003::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:dc:bd:f0:9c:0f:06:9a:0b:b9:ae:e5:cf:20:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896a82a725ed22bb46847ae568912078de25c108
Validity
Not Before: Jan 1 12:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcd5b87ceddd9abc83e962d1d4a25ec63898f3d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:42:e9:a5:42:00:3a:a6:a9:1e:a5:58:52:58:
a2:4d:06:cd:4a:a4:15:21:73:71:f6:dd:c7:74:0a:
47:02:f9:1f:92:f0:09:94:3b:83:65:3d:66:97:81:
4e:a9:d8:66:c8:0f:75:23:56:94:0e:5c:30:97:b1:
71:2a:ff:76:93:3d:19:bb:4c:57:c6:e6:02:da:0d:
22:b3:73:68:a5:14:b9:5f:50:e2:b7:c9:44:80:ab:
86:12:84:f0:84:36:6a:ac:77:24:85:d8:f7:0f:80:
c4:ac:58:02:a1:9f:ac:ab:22:bb:7b:b3:02:dc:93:
85:2e:48:33:21:19:dc:76:73:bf:94:97:01:b7:be:
39:a1:a2:e7:d1:8b:c9:95:d0:5f:78:4e:82:9c:82:
31:1c:f4:58:c5:a2:cf:56:d4:b5:13:16:53:c7:52:
e3:36:bb:5d:09:2d:f5:b0:3b:e8:65:ce:57:7a:fd:
65:87:d3:36:09:38:36:80:ef:c9:ab:f6:a0:f3:87:
aa:f0:ae:07:cd:f4:ce:fb:83:44:5b:28:c4:c2:55:
a6:8f:ce:dd:60:61:dd:e3:56:3e:03:81:3a:d7:1e:
a1:9d:95:b4:3c:31:85:8d:f5:f9:ff:51:79:2e:01:
c5:40:5a:ae:87:55:a2:dd:43:cf:1c:76:b2:61:44:
f3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D5:B8:7C:ED:DD:9A:BC:83:E9:62:D1:D4:A2:5E:C6:38:98:F3:D6
X509v3 Authority Key Identifier:
keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/vNW4fO3dmryD6WLR1KJexjiY89Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.70.164.0/22
193.220.184.0-193.220.188.255
193.220.191.0-193.220.207.255
IPv6:
2a02:6600:2003::/48
2a02:6604:3::/48
Signature Algorithm: sha256WithRSAEncryption
3a:61:5f:cc:52:8a:08:03:d2:55:92:3c:05:2e:9b:d4:95:43:
5b:ac:be:59:52:75:43:28:fe:e9:3e:bc:ec:32:61:a0:a2:42:
97:3b:e9:36:ef:8b:e9:93:70:a3:c5:b2:fb:ab:03:f7:e4:df:
d2:4c:65:42:dc:aa:3f:1d:be:ae:61:0f:f4:51:db:61:1e:7b:
73:a8:c4:1d:f0:36:40:42:e8:a7:78:95:62:08:e2:45:8e:be:
9f:43:b2:0c:be:4e:b1:30:56:13:5d:d8:7e:b1:d4:fe:64:bc:
b3:dd:f7:6a:d0:72:aa:67:48:f3:7b:12:5a:ff:be:32:bb:af:
f3:a5:7a:76:ce:e2:f9:b9:b8:1e:34:94:9f:9d:df:05:0f:41:
d4:ce:35:82:fe:42:ef:46:aa:3d:85:f7:c6:96:ab:f8:12:77:
11:0b:f6:80:9b:a3:00:81:5b:54:98:f2:69:58:3a:81:76:af:
57:01:d8:bf:65:4e:02:0d:18:3d:69:f0:af:1b:5d:9c:50:cb:
24:f6:95:f6:ae:44:89:01:ba:66:13:37:c6:5a:ae:90:d4:47:
60:74:1a:2d:d7:dd:4b:2e:90:24:25:a2:fe:aa:67:64:70:5d:
b9:06:2d:8f:28:83:ed:c1:b4:b3:e2:98:2c:ba:26:cc:83:ba:
63:5e:80:47
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAYzFANy98JwPBpoLua7lzyCjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy
NWMxMDgwHhcNMjQwMTAxMTIzMDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2Q1Yjg3Y2VkZGQ5YWJjODNlOTYyZDFkNGEyNWVjNjM4OThmM2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0LppUIAOqapHqVYUliiTQbNSqQV
IXNx9t3HdApHAvkfkvAJlDuDZT1ml4FOqdhmyA91I1aUDlwwl7FxKv92kz0Zu0xX
xuYC2g0is3NopRS5X1Dit8lEgKuGEoTwhDZqrHckhdj3D4DErFgCoZ+sqyK7e7MC
3JOFLkgzIRncdnO/lJcBt745oaLn0YvJldBfeE6CnIIxHPRYxaLPVtS1ExZTx1Lj
NrtdCS31sDvoZc5Xev1lh9M2CTg2gO/Jq/ag84eq8K4HzfTO+4NEWyjEwlWmj87d
YGHd41Y+A4E61x6hnZW0PDGFjfX5/1F5LgHFQFquh1Wi3UPPHHayYUTzSwIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFLzVuHzt3Zq8g+li0dSiXsY4mPPWMB8GA1UdIwQY
MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt
MDQwMTI3MTAyMjA5LzEvdk5XNGZPM2RtcnlENldMUjFLSmV4amlZODlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5
LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDAoBAIAATAiAwQCTUakMAwD
BAPB3LgDBADB3LwwDAMEAMHcvwMEBMHcwDAYBAIAAjASAwcAKgJmACADAwcAKgJm
BAADMA0GCSqGSIb3DQEBCwUAA4IBAQA6YV/MUooIA9JVkjwFLpvUlUNbrL5ZUnVD
KP7pPrzsMmGgokKXO+k274vpk3CjxbL7qwP35N/STGVC3Ko/Hb6uYQ/0UdthHntz
qMQd8DZAQuineJViCOJFjr6fQ7IMvk6xMFYTXdh+sdT+ZLyz3fdq0HKqZ0jzexJa
/74yu6/zpXp2zuL5ubgeNJSfnd8FD0HUzjWC/kLvRqo9hffGlqv4EncRC/aAm6MA
gVtUmPJpWDqBdq9XAdi/ZU4CDRg9afCvG12cUMsk9pX2rkSJAbpmEzfGWq6Q1Edg
dBot191LLpAkJaL+qmdkcF25Bi2PKIPtwbSz4pgsuibMg7pjXoBH
-----END CERTIFICATE-----
Generated at Sat Jun 1 13:46:59 2024 by rpki-client on console-fra.rpki-client.org