Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/ogwAXRApTdzaYOFq79F3cbE9chM.roa
File: ogwAXRApTdzaYOFq79F3cbE9chM.roa (raw, json)
Hash identifier: J+ysVPR6VO18TevRph3qRf6SVqEk42DY1qf1+I2snSo=
Subject key identifier: A2:0C:00:5D:10:29:4D:DC:DA:60:E1:6A:EF:D1:77:71:B1:3D:72:13
Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Certificate serial: 0192F10184612600082DDFA04DBB51941FBC
Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/ogwAXRApTdzaYOFq79F3cbE9chM.roa
Signing time: Sun 03 Nov 2024 07:51:01 +0000
ROA not before: Sun 03 Nov 2024 07:51:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35766
IP address blocks: 31.184.166.0/23 maxlen: 24
31.184.172.0/24 maxlen: 24
31.184.175.0/24 maxlen: 24
37.130.200.0/23 maxlen: 24
37.130.204.0/22 maxlen: 24
37.130.204.0/24 maxlen: 24
37.130.205.0/24 maxlen: 24
37.130.206.0/24 maxlen: 24
37.130.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f1:01:84:61:26:00:08:2d:df:a0:4d:bb:51:94:1f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Validity
Not Before: Nov 3 07:51:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a20c005d10294ddcda60e16aefd17771b13d7213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f1:a0:7b:9a:b4:d6:61:23:39:15:82:b1:6c:
1b:42:0d:54:6a:41:69:3d:a7:7f:fd:0b:8d:d0:90:
2a:17:e4:91:62:1d:06:42:8f:89:15:c3:e2:39:45:
2c:4e:75:db:d4:b7:ad:76:b9:47:bb:99:73:b5:df:
92:07:9d:6b:45:16:01:ba:b2:4f:1a:6b:68:ae:08:
c6:37:8e:fb:d9:9b:99:88:c7:a4:82:b1:48:2e:c2:
aa:8d:5f:95:5f:41:02:20:72:28:53:dc:38:1f:e1:
9d:f6:57:5e:4a:c1:e6:4c:e2:3e:67:3b:cb:b5:f3:
be:77:d1:d1:28:82:48:69:93:d7:3d:fa:bc:13:d0:
0c:94:1b:05:53:72:cf:50:6f:72:31:d4:61:0d:8e:
46:4e:a4:6f:a7:7a:04:c4:80:05:00:cc:d1:8a:7f:
7d:46:7d:17:6a:1d:28:7a:f3:1e:22:2b:a0:a2:0d:
42:1a:44:ef:9c:d1:ff:b7:43:4d:d7:a4:6b:e8:19:
20:ef:1f:74:7e:f1:a0:ae:ea:ef:b5:f6:d8:6d:1e:
bb:f4:f5:ed:2e:9f:77:1b:d3:eb:bf:6f:66:98:12:
6e:9e:7b:3f:8b:17:93:a6:db:a5:f2:57:3b:9a:78:
f2:8d:2d:88:86:7a:64:20:26:9c:3f:4d:c3:2a:24:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:0C:00:5D:10:29:4D:DC:DA:60:E1:6A:EF:D1:77:71:B1:3D:72:13
X509v3 Authority Key Identifier:
keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/ogwAXRApTdzaYOFq79F3cbE9chM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.166.0/23
31.184.172.0/24
31.184.175.0/24
37.130.200.0/23
37.130.204.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:9c:27:02:19:66:de:b1:61:5a:78:32:90:93:05:eb:10:de:
19:fd:4b:6b:8e:36:52:40:1f:f6:b5:fb:38:13:57:e0:0d:07:
44:4f:89:c7:62:48:28:d3:60:12:42:7c:52:b7:4d:0b:7c:0e:
ca:d0:4b:1c:65:96:28:72:1d:80:8f:3b:a8:6e:c6:46:b3:1c:
bc:aa:ba:db:be:7d:7e:bf:37:ae:ef:f7:e6:7a:ae:03:b2:88:
43:df:14:ad:1e:83:4c:52:e4:df:0a:ba:78:17:1e:bf:a3:52:
35:07:a5:78:3b:67:e7:9a:00:cc:e4:59:44:3d:e6:f3:c8:68:
bc:8b:98:10:97:1a:5b:cd:38:f2:cc:47:5d:87:dc:02:8d:ad:
37:93:2e:74:72:62:80:2c:bb:be:8b:4e:a0:2f:e0:c3:80:df:
16:54:73:34:9d:0d:04:7a:ca:79:ae:1f:77:af:85:35:b7:b9:
74:3c:9d:68:13:f7:2e:11:b5:ed:a3:71:56:e8:43:02:0e:5e:
d0:8c:d4:bd:05:23:86:67:e8:3e:18:04:c9:4b:0a:44:21:b9:
08:68:f7:c3:55:34:a6:16:a7:7e:f7:38:e5:7e:83:f6:c6:60:
29:92:3e:03:5d:1a:ca:81:a6:97:02:44:b2:6c:3f:b8:8d:bb:
ec:d7:6f:6c
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZLxAYRhJgAILd+gTbtRlB+8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZmI2NDVmMTM0ZjRmZGFkYTQ1ZTcwYmNmY2Q5M2I4OTdk
YmQ3MjUwHhcNMjQxMTAzMDc1MTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjBjMDA1ZDEwMjk0ZGRjZGE2MGUxNmFlZmQxNzc3MWIxM2Q3MjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvGge5q01mEjORWCsWwbQg1UakFp
Pad//QuN0JAqF+SRYh0GQo+JFcPiOUUsTnXb1LetdrlHu5lztd+SB51rRRYBurJP
GmtorgjGN4772ZuZiMekgrFILsKqjV+VX0ECIHIoU9w4H+Gd9ldeSsHmTOI+ZzvL
tfO+d9HRKIJIaZPXPfq8E9AMlBsFU3LPUG9yMdRhDY5GTqRvp3oExIAFAMzRin99
Rn0Xah0oevMeIiugog1CGkTvnNH/t0NN16Rr6Bkg7x90fvGgrurvtfbYbR679PXt
Lp93G9Prv29mmBJunns/ixeTptul8lc7mnjyjS2IhnpkICacP03DKiTGpwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFKIMAF0QKU3c2mDhau/Rd3GxPXITMB8GA1UdIwQY
MBaAFNr7ZF8TT0/a2kXnC8/Nk7iX29clMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnZ0a1h4TlBUOXJhUmVjTHo4MlR1SmZiMXlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi83YTQ4ZjUtYmQyNC00ZGM0LThjY2Et
NmJhMGEwY2UwMWVkLzEvb2d3QVhSQXBUZHphWU9GcTc5RjNjYkU5Y2hNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi83YTQ4ZjUtYmQyNC00ZGM0LThjY2EtNmJhMGEwY2UwMWVk
LzEvMnZ0a1h4TlBUOXJhUmVjTHo4MlR1SmZiMXlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBH7imAwQA
H7isAwQAH7ivAwQBJYLIAwQCJYLMMA0GCSqGSIb3DQEBCwUAA4IBAQAqnCcCGWbe
sWFaeDKQkwXrEN4Z/UtrjjZSQB/2tfs4E1fgDQdET4nHYkgo02ASQnxSt00LfA7K
0EscZZYoch2AjzuobsZGsxy8qrrbvn1+vzeu7/fmeq4DsohD3xStHoNMUuTfCrp4
Fx6/o1I1B6V4O2fnmgDM5FlEPebzyGi8i5gQlxpbzTjyzEddh9wCja03ky50cmKA
LLu+i06gL+DDgN8WVHM0nQ0Eesp5rh93r4U1t7l0PJ1oE/cuEbXto3FW6EMCDl7Q
jNS9BSOGZ+g+GATJSwpEIbkIaPfDVTSmFqd+9zjlfoP2xmApkj4DXRrKgaaXAkSy
bD+4jbvs129s
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:03 2024 by rpki-client on console-fra.rpki-client.org