Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/olOg_xWYeEx8gCURefGsx5zf1Ec.roa
File: olOg_xWYeEx8gCURefGsx5zf1Ec.roa (raw, json)
Hash identifier: PdgKZjS3DXUWnI0En857vO9DUXAha2MPvYy98aQwLPQ=
Subject key identifier: A2:53:A0:FF:15:98:78:4C:7C:80:25:11:79:F1:AC:C7:9C:DF:D4:47
Certificate issuer: /CN=ceb86983547113359bade1f3f38104091e3a6439
Certificate serial: 01928A330389D38F408C25BC43FE0C3281CE
Authority key identifier: CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/olOg_xWYeEx8gCURefGsx5zf1Ec.roa
Signing time: Mon 14 Oct 2024 08:44:11 +0000
ROA not before: Mon 14 Oct 2024 08:44:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8612
IP address blocks: 82.84.0.0/15 maxlen: 24
82.85.26.128/26 maxlen: 26
82.85.53.0/26 maxlen: 26
82.85.53.64/26 maxlen: 26
84.220.0.0/16 maxlen: 24
84.221.0.0/16 maxlen: 24
94.32.0.0/19 maxlen: 24
94.32.64.0/18 maxlen: 24
94.32.115.0/24 maxlen: 24
94.32.128.0/17 maxlen: 24
94.33.0.0/16 maxlen: 24
94.34.0.0/16 maxlen: 24
94.35.0.0/16 maxlen: 24
193.43.2.0/24 maxlen: 24
193.43.3.180/30 maxlen: 30
193.43.3.184/29 maxlen: 29
193.43.3.192/26 maxlen: 26
193.207.24.0/23 maxlen: 23
193.207.26.0/24 maxlen: 24
193.207.48.0/20 maxlen: 24
193.207.64.0/18 maxlen: 24
193.207.96.0/20 maxlen: 21
193.207.128.0/17 maxlen: 22
195.130.224.0/19 maxlen: 19
212.123.64.0/19 maxlen: 19
213.205.0.0/18 maxlen: 18
213.205.0.251/32 maxlen: 32
217.133.0.0/16 maxlen: 16
217.133.170.0/24 maxlen: 24
2a01:7d0::/32 maxlen: 32
2a01:7d0:4800:1::/64 maxlen: 64
2a01:7d0:4811::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8a:33:03:89:d3:8f:40:8c:25:bc:43:fe:0c:32:81:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceb86983547113359bade1f3f38104091e3a6439
Validity
Not Before: Oct 14 08:44:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a253a0ff1598784c7c80251179f1acc79cdfd447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cf:4a:64:45:6c:a5:41:4d:d8:b2:7f:cf:c6:
49:2b:f7:8d:f7:5d:aa:db:2b:eb:75:f2:78:c7:d8:
08:63:eb:81:8d:37:a2:0a:81:2a:d0:55:e8:83:fb:
cb:63:56:68:0a:7a:f6:6e:fa:d3:f1:20:96:f9:31:
f9:69:f6:ce:fd:7c:27:18:42:a5:0e:74:67:11:c4:
b3:6e:0c:f4:62:38:02:77:31:ff:c1:a2:92:03:d8:
01:59:c8:17:de:6f:8c:48:7f:8c:48:f1:17:34:4a:
65:ae:b0:fe:0c:84:28:73:c8:d9:50:2b:8e:0b:48:
46:c2:81:b6:f3:15:6c:87:37:b9:f2:0a:20:66:e7:
57:98:a8:1b:8a:67:4f:86:1a:98:52:e3:6e:b4:dd:
7f:02:6d:b5:24:fd:40:c7:e6:e7:b0:2c:c5:83:10:
bb:69:d8:42:34:4f:86:81:c4:87:7d:f4:c7:e9:40:
02:00:18:2c:c9:b9:ed:02:05:c9:df:b2:59:fe:12:
96:f5:5a:21:7a:cf:b5:b3:ec:ca:da:46:d8:95:f5:
04:44:ef:31:21:a3:26:de:39:ef:05:95:0c:89:43:
4b:d2:b4:01:ff:2d:c6:ed:a9:a8:0c:12:8d:14:71:
75:4f:78:79:bc:6b:d0:10:49:fc:d0:54:4f:08:b9:
d3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:53:A0:FF:15:98:78:4C:7C:80:25:11:79:F1:AC:C7:9C:DF:D4:47
X509v3 Authority Key Identifier:
keyid:CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/olOg_xWYeEx8gCURefGsx5zf1Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.84.0.0/15
84.220.0.0/15
94.32.0.0/19
94.32.64.0-94.35.255.255
193.43.2.0/24
193.43.3.180-193.43.3.255
193.207.24.0-193.207.26.255
193.207.48.0-193.207.255.255
195.130.224.0/19
212.123.64.0/19
213.205.0.0/18
217.133.0.0/16
IPv6:
2a01:7d0::/32
Signature Algorithm: sha256WithRSAEncryption
65:d8:54:b6:5b:d5:0c:da:4c:64:77:a4:39:63:6c:44:0e:bd:
a2:db:9f:9c:53:74:97:34:34:22:57:c9:39:7e:3e:d1:e2:5b:
9a:7b:99:c1:48:f5:e3:7d:29:7a:2e:a3:a7:4c:8f:c4:1d:73:
f9:5c:fe:1f:2f:67:71:45:82:f3:35:50:6d:2e:88:f3:23:40:
7a:05:55:cf:b2:1b:92:44:d2:0c:8e:66:6d:a1:3f:7c:63:89:
c5:fd:ed:44:61:86:bd:20:c2:4c:80:28:49:5d:58:c3:b4:12:
8f:43:6f:b2:2d:66:cc:57:02:7d:cb:fa:32:b5:31:9f:db:89:
14:57:c4:62:97:9e:48:0c:a7:ab:1d:fb:7c:2d:54:08:da:54:
94:43:da:45:5d:1d:a3:16:55:f8:ac:d1:94:68:c7:77:86:6e:
4f:49:3a:b4:3a:82:05:93:fc:13:4a:80:33:1b:db:a4:55:ce:
40:80:73:32:d0:65:4e:c6:b2:98:28:06:2a:2e:b8:8c:33:56:
bb:d1:8a:19:7a:30:f5:a7:1a:ee:a7:9c:01:10:63:22:26:78:
4b:22:f4:4e:cd:f2:6a:e4:b8:ce:58:c7:f1:f2:c2:30:72:28:
e4:e9:8c:65:0f:b7:37:e4:ad:b4:54:54:7a:ea:2f:63:27:79:
dd:bf:eb:73
-----BEGIN CERTIFICATE-----
MIIFazCCBFOgAwIBAgISAZKKMwOJ049AjCW8Q/4MMoHOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYjg2OTgzNTQ3MTEzMzU5YmFkZTFmM2YzODEwNDA5MWUz
YTY0MzkwHhcNMjQxMDE0MDg0NDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjUzYTBmZjE1OTg3ODRjN2M4MDI1MTE3OWYxYWNjNzljZGZkNDQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc9KZEVspUFN2LJ/z8ZJK/eN912q
2yvrdfJ4x9gIY+uBjTeiCoEq0FXog/vLY1ZoCnr2bvrT8SCW+TH5afbO/XwnGEKl
DnRnEcSzbgz0YjgCdzH/waKSA9gBWcgX3m+MSH+MSPEXNEplrrD+DIQoc8jZUCuO
C0hGwoG28xVshze58gogZudXmKgbimdPhhqYUuNutN1/Am21JP1Ax+bnsCzFgxC7
adhCNE+GgcSHffTH6UACABgsybntAgXJ37JZ/hKW9Vohes+1s+zK2kbYlfUERO8x
IaMm3jnvBZUMiUNL0rQB/y3G7amoDBKNFHF1T3h5vGvQEEn80FRPCLnTBwIDAQAB
o4ICdzCCAnMwHQYDVR0OBBYEFKJToP8VmHhMfIAlEXnxrMec39RHMB8GA1UdIwQY
MBaAFM64aYNUcRM1m63h8/OBBAkeOmQ5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenJocGcxUnhFeldicmVIejg0RUVDUjQ2WkRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9mMzUzOWQtMzhjZC00NjVlLWE1N2Qt
ZGVlMmY2NTBkZDg2LzEvb2xPZ194V1llRXg4Z0NVUmVmR3N4NXpmMUVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS9mMzUzOWQtMzhjZC00NjVlLWE1N2QtZGVlMmY2NTBkZDg2
LzEvenJocGcxUnhFeldicmVIejg0RUVDUjQ2WkRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGMBggrBgEFBQcBBwEB/wR9MHswagQCAAEwZAMDAVJUAwMB
VNwDBAVeIAAwCwMEBl4gQAMDAl4gAwQAwSsCMA0DBQLBKwO0AwQCwSsAMAwDBAPB
zxgDBADBzxowCwMEBMHPMAMDBMHAAwQFw4LgAwQF1HtAAwQG1c0AAwMA2YUwDQQC
AAIwBwMFACoBB9AwDQYJKoZIhvcNAQELBQADggEBAGXYVLZb1QzaTGR3pDljbEQO
vaLbn5xTdJc0NCJXyTl+PtHiW5p7mcFI9eN9KXouo6dMj8Qdc/lc/h8vZ3FFgvM1
UG0uiPMjQHoFVc+yG5JE0gyOZm2hP3xjicX97URhhr0gwkyAKEldWMO0Eo9Db7It
ZsxXAn3L+jK1MZ/biRRXxGKXnkgMp6sd+3wtVAjaVJRD2kVdHaMWVfis0ZRox3eG
bk9JOrQ6ggWT/BNKgDMb26RVzkCAczLQZU7GspgoBiouuIwzVrvRihl6MPWnGu6n
nAEQYyImeEsi9E7N8mrkuM5Yx/HywjByKOTpjGUPtzfkrbRUVHrqL2Mned2/63M=
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:59 2024 by rpki-client on console-ams.rpki-client.org