Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/MV_euGd2G9LFkHbbGpo1UMtfi20.roa
File: MV_euGd2G9LFkHbbGpo1UMtfi20.roa (raw, json)
Hash identifier: c/sifnrFnIq9AuatYhSc1d3TWsuz4cVX4kyYkisjrqc=
Subject key identifier: 31:5F:DE:B8:67:76:1B:D2:C5:90:76:DB:1A:9A:35:50:CB:5F:8B:6D
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 01916A007DB8A18F70DAC4F28A4E5CB6A999
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/MV_euGd2G9LFkHbbGpo1UMtfi20.roa
Signing time: Mon 19 Aug 2024 09:38:22 +0000
ROA not before: Mon 19 Aug 2024 09:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26548
IP address blocks: 45.80.104.0/23 maxlen: 23
45.140.206.0/23 maxlen: 23
45.145.128.0/23 maxlen: 23
45.145.130.0/23 maxlen: 23
45.148.232.0/23 maxlen: 23
45.148.234.0/23 maxlen: 23
45.155.166.0/23 maxlen: 23
83.142.52.0/23 maxlen: 23
83.142.54.0/23 maxlen: 23
193.187.92.0/23 maxlen: 23
193.187.94.0/23 maxlen: 23
193.202.8.0/23 maxlen: 23
193.202.10.0/23 maxlen: 23
193.202.12.0/23 maxlen: 23
193.202.14.0/23 maxlen: 23
193.202.80.0/23 maxlen: 23
193.202.82.0/23 maxlen: 23
193.202.84.0/23 maxlen: 23
193.202.86.0/23 maxlen: 23
193.203.8.0/23 maxlen: 23
193.203.10.0/23 maxlen: 23
212.119.44.0/23 maxlen: 23
212.119.46.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6a:00:7d:b8:a1:8f:70:da:c4:f2:8a:4e:5c:b6:a9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Aug 19 09:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=315fdeb867761bd2c59076db1a9a3550cb5f8b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:21:20:b2:0f:07:16:7d:40:e0:b6:32:2f:90:
a7:6c:20:51:4c:7a:e4:d1:38:1e:de:35:e9:c5:9f:
2e:43:10:f4:75:b0:c9:80:e4:89:9c:68:e0:8b:99:
c8:01:6c:4b:ed:46:39:04:b6:4e:63:27:3d:a9:b8:
68:d5:85:ee:f3:dd:a5:63:5c:f5:3e:e1:4f:a7:52:
9e:74:7c:33:e2:c7:df:97:5a:19:ff:35:0a:95:bc:
f8:eb:f9:6d:ef:3d:89:cb:22:3b:df:76:08:46:43:
1c:69:8e:31:ab:95:24:ab:7e:4f:8f:d0:d9:ab:0d:
6e:13:be:53:dc:de:3a:1e:2c:01:05:92:f2:5b:46:
0c:72:ca:c4:c6:79:03:1c:c1:04:5e:ad:7b:7b:bc:
67:c8:e3:ce:eb:8c:98:41:7d:ff:21:18:c6:fd:6c:
a6:cc:0b:b3:85:0c:3e:d6:69:cb:0f:ad:6f:1b:e5:
75:f0:ce:53:39:5a:63:14:b3:c8:aa:f4:aa:93:f5:
76:2d:08:b1:0e:07:4a:0b:de:e3:b6:b0:75:0b:6a:
f9:bb:d2:61:b8:59:51:ac:64:4f:a1:82:f7:e5:db:
49:53:1e:0b:d7:06:61:42:82:07:58:66:6a:7e:10:
92:7c:e4:9c:fa:60:3b:32:c2:1b:51:00:7f:13:10:
71:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:5F:DE:B8:67:76:1B:D2:C5:90:76:DB:1A:9A:35:50:CB:5F:8B:6D
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/MV_euGd2G9LFkHbbGpo1UMtfi20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.104.0/23
45.140.206.0/23
45.145.128.0/22
45.148.232.0/22
45.155.166.0/23
83.142.52.0/22
193.187.92.0/22
193.202.8.0/21
193.202.80.0/21
193.203.8.0/22
212.119.44.0/22
Signature Algorithm: sha256WithRSAEncryption
65:c5:c2:66:c6:5e:6d:f9:92:70:05:39:44:d2:21:82:91:b2:
66:68:60:2f:13:f5:c5:37:8c:41:a5:d7:8c:4a:94:56:2e:0d:
29:c3:85:f9:ff:59:a1:9e:76:01:1c:5a:b4:21:43:27:54:9d:
23:2e:43:f8:df:bc:c7:d6:af:8f:4f:f9:1b:d1:f8:c9:01:8f:
aa:ba:72:6f:0d:9e:ab:90:e8:19:c8:6a:70:b8:6d:65:cd:ab:
48:b9:06:b2:98:bc:2b:86:01:98:e7:fa:a5:08:e5:a8:c2:d9:
d1:da:9c:9b:56:6e:23:ef:25:22:f5:17:1b:26:51:84:ac:97:
f0:26:32:0a:b5:2a:8a:51:2d:00:86:b9:09:f4:a5:a8:56:4b:
d5:7f:e6:2b:8d:2c:89:d8:6c:9e:97:7e:0c:e8:1d:29:61:9d:
41:fe:9b:f2:ad:8a:4e:e0:84:c7:c4:0a:92:8d:63:d9:91:94:
5a:4d:ac:a5:29:93:f5:0d:30:a2:66:b1:0b:52:e6:4f:ae:9f:
f8:3a:e9:b4:ce:48:b5:44:4b:ff:1f:cc:3c:ac:0b:88:dc:9a:
b0:5d:5f:37:e8:35:45:3a:a3:a5:ee:4e:5b:42:f1:e5:56:6a:
f1:a9:7c:ed:79:07:3f:c7:68:a0:6f:a3:67:07:d7:58:41:75:
fa:33:a4:55
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgISAZFqAH24oY9w2sTyik5ctqmZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3
Y2Q0MjMwHhcNMjQwODE5MDkzODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTVmZGViODY3NzYxYmQyYzU5MDc2ZGIxYTlhMzU1MGNiNWY4YjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSEgsg8HFn1A4LYyL5CnbCBRTHrk
0Tge3jXpxZ8uQxD0dbDJgOSJnGjgi5nIAWxL7UY5BLZOYyc9qbho1YXu892lY1z1
PuFPp1KedHwz4sffl1oZ/zUKlbz46/lt7z2JyyI733YIRkMcaY4xq5Ukq35Pj9DZ
qw1uE75T3N46HiwBBZLyW0YMcsrExnkDHMEEXq17e7xnyOPO64yYQX3/IRjG/Wym
zAuzhQw+1mnLD61vG+V18M5TOVpjFLPIqvSqk/V2LQixDgdKC97jtrB1C2r5u9Jh
uFlRrGRPoYL35dtJUx4L1wZhQoIHWGZqfhCSfOSc+mA7MsIbUQB/ExBxsQIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFDFf3rhndhvSxZB22xqaNVDLX4ttMB8GA1UdIwQY
MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli
LWExYjdjZWVmYTE2Yy8xL01WX2V1R2QyRzlMRmtIYmJHcG8xVU10ZmkyMC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2
Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwWwYIKwYBBQUHAQcBAf8ETDBKMEgEAgABMEIDBAEtUGgD
BAEtjM4DBAItkYADBAItlOgDBAEtm6YDBAJTjjQDBALBu1wDBAPByggDBAPBylAD
BALBywgDBALUdywwDQYJKoZIhvcNAQELBQADggEBAGXFwmbGXm35knAFOUTSIYKR
smZoYC8T9cU3jEGl14xKlFYuDSnDhfn/WaGedgEcWrQhQydUnSMuQ/jfvMfWr49P
+RvR+MkBj6q6cm8NnquQ6BnIanC4bWXNq0i5BrKYvCuGAZjn+qUI5ajC2dHanJtW
biPvJSL1FxsmUYSsl/AmMgq1KopRLQCGuQn0pahWS9V/5iuNLInYbJ6XfgzoHSlh
nUH+m/Ktik7ghMfECpKNY9mRlFpNrKUpk/UNMKJmsQtS5k+un/g66bTOSLVES/8f
zDysC4jcmrBdXzfoNUU6o6XuTltC8eVWavGpfO15Bz/HaKBvo2cH11hBdfozpFU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:11:52 2024 by rpki-client on console-ams.rpki-client.org