Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3dbfeb-b2e2-4816-9ba9-a5cd81b5e00b/1/ZEOHq-VpJ5pdu3u_aHIcR9fnfjQ.roa
File: ZEOHq-VpJ5pdu3u_aHIcR9fnfjQ.roa (raw, json)
Hash identifier: ut4lc++OogTjuK7B4PUwZ7XCsvozDSk++FoQUx5Xc2w=
Subject key identifier: 64:43:87:AB:E5:69:27:9A:5D:BB:7B:BF:68:72:1C:47:D7:E7:7E:34
Certificate issuer: /CN=d695cb86586cbfd2462afa052c96a25c162830a8
Certificate serial: 0192563ECAE012DBEF90D4A15CE302B7BA34
Authority key identifier: D6:95:CB:86:58:6C:BF:D2:46:2A:FA:05:2C:96:A2:5C:16:28:30:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1pXLhlhsv9JGKvoFLJaiXBYoMKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3dbfeb-b2e2-4816-9ba9-a5cd81b5e00b/1/ZEOHq-VpJ5pdu3u_aHIcR9fnfjQ.roa
Signing time: Fri 04 Oct 2024 06:36:48 +0000
ROA not before: Fri 04 Oct 2024 06:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210834
IP address blocks: 185.215.68.0/22 maxlen: 24
188.93.168.0/21 maxlen: 21
188.93.168.0/24 maxlen: 24
188.93.172.0/24 maxlen: 24
188.93.173.0/24 maxlen: 24
188.93.174.0/24 maxlen: 24
188.93.175.0/24 maxlen: 24
2a0b:880::/32 maxlen: 32
2a0b:880::/36 maxlen: 36
2a0b:880:1::/48 maxlen: 48
2a0b:880:4::/48 maxlen: 48
2a0b:880:5::/48 maxlen: 48
2a0b:880:6::/48 maxlen: 48
2a0b:880:8::/48 maxlen: 48
2a0b:880:11::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3dbfeb-b2e2-4816-9ba9-a5cd81b5e00b/1/1pXLhlhsv9JGKvoFLJaiXBYoMKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3dbfeb-b2e2-4816-9ba9-a5cd81b5e00b/1/1pXLhlhsv9JGKvoFLJaiXBYoMKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1pXLhlhsv9JGKvoFLJaiXBYoMKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:56:3e:ca:e0:12:db:ef:90:d4:a1:5c:e3:02:b7:ba:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d695cb86586cbfd2462afa052c96a25c162830a8
Validity
Not Before: Oct 4 06:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=644387abe569279a5dbb7bbf68721c47d7e77e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ae:78:39:c8:99:d0:41:7f:b7:7f:1a:6b:c0:
39:71:d6:05:16:1a:d9:e4:19:e6:0f:ba:8f:e3:72:
6c:9d:59:ee:45:97:c0:ea:01:a2:49:1d:19:4e:3c:
7b:a3:29:3b:0e:9b:d1:2c:ca:52:42:50:07:18:30:
3a:e4:07:9f:09:1a:ef:f5:4c:d9:14:f3:d0:0e:d0:
9b:4d:1d:17:48:24:2a:2c:0a:c9:92:bb:d9:5b:f6:
07:25:07:84:fc:3e:b7:f1:81:cf:2c:aa:bf:b9:4f:
1b:af:d8:78:c6:b1:3c:98:6b:a3:33:3d:75:a1:f9:
a5:cf:e8:63:3e:c6:1d:3c:68:07:68:02:a4:c6:40:
74:4b:f6:08:c5:c9:0a:bd:97:b7:e2:2e:ec:e7:93:
58:dc:7a:8b:bc:7f:dd:af:21:ca:a3:4e:50:7f:64:
47:d5:0f:dd:64:e2:19:b8:5b:1d:fe:eb:68:f5:2a:
e4:1c:a2:6c:e2:12:6a:66:ad:c4:5e:b2:be:4b:20:
f0:59:ce:66:99:e4:e3:55:c8:c0:72:5a:48:cb:e0:
91:58:95:8f:aa:02:b6:ca:43:c8:b2:79:fe:1d:7e:
55:20:c7:d6:7e:7c:28:58:ee:a1:f8:d5:31:fb:70:
f7:da:7c:b7:b8:31:1b:30:c2:07:b5:cc:9b:26:33:
c5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:43:87:AB:E5:69:27:9A:5D:BB:7B:BF:68:72:1C:47:D7:E7:7E:34
X509v3 Authority Key Identifier:
keyid:D6:95:CB:86:58:6C:BF:D2:46:2A:FA:05:2C:96:A2:5C:16:28:30:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1pXLhlhsv9JGKvoFLJaiXBYoMKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3dbfeb-b2e2-4816-9ba9-a5cd81b5e00b/1/ZEOHq-VpJ5pdu3u_aHIcR9fnfjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3dbfeb-b2e2-4816-9ba9-a5cd81b5e00b/1/1pXLhlhsv9JGKvoFLJaiXBYoMKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.68.0/22
188.93.168.0/21
IPv6:
2a0b:880::/32
Signature Algorithm: sha256WithRSAEncryption
04:34:ac:ab:0e:3f:f9:f7:43:16:ce:1d:ec:88:67:95:bb:19:
7f:eb:fa:18:66:f4:0e:ca:df:f4:2e:4a:64:55:e7:19:f2:15:
ee:87:63:cb:e2:ca:b8:2a:37:30:28:f7:1c:0c:fc:16:c2:5e:
50:82:65:93:bc:c7:b4:69:7b:87:ea:3c:2a:ea:8d:8f:38:a3:
1f:39:fd:89:16:cd:b7:5a:1e:78:08:2a:3f:56:b6:8b:52:da:
ba:c4:9b:d4:e5:6d:a5:24:06:0f:fa:88:d7:15:59:b4:04:77:
d1:be:39:96:b1:a9:8c:20:2a:c4:4e:ab:09:d2:21:79:97:d4:
bb:5f:4a:88:0e:de:ff:8e:3a:e5:7f:77:54:e3:69:b8:21:bc:
42:7e:b1:3b:7e:25:19:c8:45:d0:26:d4:e0:a2:54:88:f6:59:
5b:6b:00:5a:02:5b:e0:e0:87:79:cf:8a:23:0e:47:20:71:0e:
c8:ee:79:99:ac:4d:cc:a7:60:67:b9:25:5b:76:dd:b2:ce:b9:
da:92:1c:a2:a0:1e:91:67:b8:eb:3d:bd:ce:57:05:f6:2e:e6:
f9:32:ff:1c:2f:12:eb:71:bd:82:a0:8c:7d:d3:fd:ba:fe:05:
97:6d:74:b0:a4:26:09:c9:ad:e2:51:90:b0:4c:8b:39:67:63:
16:9d:53:38
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZJWPsrgEtvvkNShXOMCt7o0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2OTVjYjg2NTg2Y2JmZDI0NjJhZmEwNTJjOTZhMjVjMTYy
ODMwYTgwHhcNMjQxMDA0MDYzNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDQzODdhYmU1NjkyNzlhNWRiYjdiYmY2ODcyMWM0N2Q3ZTc3ZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApq54OciZ0EF/t38aa8A5cdYFFhrZ
5BnmD7qP43JsnVnuRZfA6gGiSR0ZTjx7oyk7DpvRLMpSQlAHGDA65AefCRrv9UzZ
FPPQDtCbTR0XSCQqLArJkrvZW/YHJQeE/D638YHPLKq/uU8br9h4xrE8mGujMz11
ofmlz+hjPsYdPGgHaAKkxkB0S/YIxckKvZe34i7s55NY3HqLvH/dryHKo05Qf2RH
1Q/dZOIZuFsd/uto9SrkHKJs4hJqZq3EXrK+SyDwWc5mmeTjVcjAclpIy+CRWJWP
qgK2ykPIsnn+HX5VIMfWfnwoWO6h+NUx+3D32ny3uDEbMMIHtcybJjPF9wIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFGRDh6vlaSeaXbt7v2hyHEfX5340MB8GA1UdIwQY
MBaAFNaVy4ZYbL/SRir6BSyWolwWKDCoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXBYTGhsaHN2OUpHS3ZvRkxKYWlYQllvTUtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zZGJmZWItYjJlMi00ODE2LTliYTkt
YTVjZDgxYjVlMDBiLzEvWkVPSHEtVnBKNXBkdTN1X2FISWNSOWZuZmpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zZGJmZWItYjJlMi00ODE2LTliYTktYTVjZDgxYjVlMDBi
LzEvMXBYTGhsaHN2OUpHS3ZvRkxKYWlYQllvTUtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuddEAwQD
vF2oMA0EAgACMAcDBQAqCwiAMA0GCSqGSIb3DQEBCwUAA4IBAQAENKyrDj/590MW
zh3siGeVuxl/6/oYZvQOyt/0LkpkVecZ8hXuh2PL4sq4KjcwKPccDPwWwl5QgmWT
vMe0aXuH6jwq6o2POKMfOf2JFs23Wh54CCo/VraLUtq6xJvU5W2lJAYP+ojXFVm0
BHfRvjmWsamMICrETqsJ0iF5l9S7X0qIDt7/jjrlf3dU42m4IbxCfrE7fiUZyEXQ
JtTgolSI9llbawBaAlvg4Id5z4ojDkcgcQ7I7nmZrE3Mp2BnuSVbdt2yzrnakhyi
oB6RZ7jrPb3OVwX2Lub5Mv8cLxLrcb2CoIx90/26/gWXbXSwpCYJya3iUZCwTIs5
Z2MWnVM4
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:50 2024 by rpki-client on console-ams.rpki-client.org