Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/A6sDby-LwswdA90lpc8Nv7YG5Og.roa
File: A6sDby-LwswdA90lpc8Nv7YG5Og.roa (raw, json)
Hash identifier: svUsdf/2+vmmwFk9DwJV5PPIqt13Gvc7s6tGJF13v0Q=
Subject key identifier: 03:AB:03:6F:2F:8B:C2:CC:1D:03:DD:25:A5:CF:0D:BF:B6:06:E4:E8
Certificate issuer: /CN=091cc5d90c9b681a6cb4e772ccaebec342fb9b05
Certificate serial: 019329C8B56EB14A55519144B6109595C560
Authority key identifier: 09:1C:C5:D9:0C:9B:68:1A:6C:B4:E7:72:CC:AE:BE:C3:42:FB:9B:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CRzF2QybaBpstOdyzK6-w0L7mwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/A6sDby-LwswdA90lpc8Nv7YG5Og.roa
Signing time: Thu 14 Nov 2024 08:27:19 +0000
ROA not before: Thu 14 Nov 2024 08:27:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31175
IP address blocks: 185.117.204.0/22 maxlen: 24
185.117.204.0/24 maxlen: 24
185.117.205.0/24 maxlen: 24
185.117.206.0/24 maxlen: 24
185.117.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/CRzF2QybaBpstOdyzK6-w0L7mwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/CRzF2QybaBpstOdyzK6-w0L7mwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CRzF2QybaBpstOdyzK6-w0L7mwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:29:c8:b5:6e:b1:4a:55:51:91:44:b6:10:95:95:c5:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091cc5d90c9b681a6cb4e772ccaebec342fb9b05
Validity
Not Before: Nov 14 08:27:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03ab036f2f8bc2cc1d03dd25a5cf0dbfb606e4e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:69:db:73:15:37:8c:6c:c6:87:51:cb:e1:e6:
3c:f1:e0:21:cf:f5:0a:55:b0:44:cc:b7:33:c1:bc:
be:65:18:c9:1a:65:2a:eb:37:b0:50:3e:c5:e1:e5:
43:9a:6c:a3:a6:07:34:e5:3d:5c:30:68:c1:62:10:
da:76:b9:99:f2:b8:b6:c5:92:45:99:3c:96:e1:f1:
d5:a5:b8:a0:07:74:06:5a:e7:b1:4d:0f:44:ab:a6:
4d:d4:37:fe:dd:80:3c:3a:cf:23:dc:e2:90:3c:4e:
f1:8d:10:b0:6e:db:74:27:90:95:94:26:c7:60:9a:
ca:98:2f:df:24:e9:4e:52:9e:68:54:b0:1e:58:3d:
40:53:45:63:db:c3:57:39:53:6d:2e:be:8c:5d:4c:
73:e2:50:ee:db:9f:82:18:53:47:01:f9:05:29:f3:
c8:4b:30:0f:fc:c1:9e:7e:13:28:4f:6e:d5:69:cf:
26:f9:b7:74:5a:40:a1:9c:ad:80:ac:6e:44:15:3f:
95:a7:26:14:ca:fa:49:8c:5d:66:42:12:e0:cc:41:
8b:ce:a2:4f:5f:b6:bf:1d:0d:53:99:ec:b7:8b:4e:
e4:ca:ec:6a:d9:89:9d:58:5c:8d:24:60:fe:38:18:
f0:9e:c1:9d:6a:d9:3c:36:fe:33:5c:48:e3:c1:cb:
aa:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AB:03:6F:2F:8B:C2:CC:1D:03:DD:25:A5:CF:0D:BF:B6:06:E4:E8
X509v3 Authority Key Identifier:
keyid:09:1C:C5:D9:0C:9B:68:1A:6C:B4:E7:72:CC:AE:BE:C3:42:FB:9B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CRzF2QybaBpstOdyzK6-w0L7mwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/A6sDby-LwswdA90lpc8Nv7YG5Og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/CRzF2QybaBpstOdyzK6-w0L7mwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.204.0/22
Signature Algorithm: sha256WithRSAEncryption
14:0b:a3:a5:5d:44:6c:6e:f4:f0:a0:7c:61:cc:74:60:79:65:
3c:77:41:8a:c0:d2:4d:0f:8a:0d:86:1b:8f:db:7f:ff:47:b4:
96:f6:b2:fb:f8:f2:c2:9d:50:ad:58:49:1f:ee:61:ac:9f:c3:
2d:ea:ee:00:8d:5c:2e:c2:44:66:7a:4e:d7:91:62:23:68:56:
27:1f:71:04:fd:c1:d6:9c:91:1f:ad:15:6f:65:0e:76:b5:81:
cb:2f:b1:ef:40:ee:e4:b7:88:00:22:d5:73:4a:d0:d4:30:17:
07:fd:e3:2b:84:85:70:f4:40:42:81:26:44:b4:83:20:a8:11:
76:6a:88:e4:3c:ed:3e:7a:e0:1c:85:5e:41:d8:af:29:78:83:
53:dc:e7:7d:87:57:8b:c9:bd:65:3e:ac:d2:54:cf:8e:3a:dd:
79:ba:a4:f9:2a:3f:31:d1:8a:a4:67:16:4b:46:83:fc:ed:e6:
12:92:b6:c4:da:d6:34:4d:54:fd:84:2b:e6:a5:40:bb:47:32:
39:02:9f:67:51:7e:b8:37:48:dd:31:6b:07:8d:e7:8f:4c:5b:
f2:7f:88:66:8b:13:c4:e3:3b:5e:22:52:b4:17:38:18:df:28:
c7:f8:c8:a7:67:35:b1:f3:17:1f:9a:e3:40:0a:6f:57:eb:8e:
52:8c:a2:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMpyLVusUpVUZFEthCVlcVgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MWNjNWQ5MGM5YjY4MWE2Y2I0ZTc3MmNjYWViZWMzNDJm
YjliMDUwHhcNMjQxMTE0MDgyNzE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2FiMDM2ZjJmOGJjMmNjMWQwM2RkMjVhNWNmMGRiZmI2MDZlNGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mnbcxU3jGzGh1HL4eY88eAhz/UK
VbBEzLczwby+ZRjJGmUq6zewUD7F4eVDmmyjpgc05T1cMGjBYhDadrmZ8ri2xZJF
mTyW4fHVpbigB3QGWuexTQ9Eq6ZN1Df+3YA8Os8j3OKQPE7xjRCwbtt0J5CVlCbH
YJrKmC/fJOlOUp5oVLAeWD1AU0Vj28NXOVNtLr6MXUxz4lDu25+CGFNHAfkFKfPI
SzAP/MGefhMoT27Vac8m+bd0WkChnK2ArG5EFT+VpyYUyvpJjF1mQhLgzEGLzqJP
X7a/HQ1Tmey3i07kyuxq2YmdWFyNJGD+OBjwnsGdatk8Nv4zXEjjwcuqHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAOrA28vi8LMHQPdJaXPDb+2BuToMB8GA1UdIwQY
MBaAFAkcxdkMm2gabLTncsyuvsNC+5sFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1J6RjJReWJhQnBzdE9keXpLNi13MEw3bXdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny83MzhmNzgtNDM4Yy00YmZkLTgwNmIt
NzNiZmFkODMyZDJkLzEvQTZzRGJ5LUx3c3dkQTkwbHBjOE52N1lHNU9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny83MzhmNzgtNDM4Yy00YmZkLTgwNmItNzNiZmFkODMyZDJk
LzEvQ1J6RjJReWJhQnBzdE9keXpLNi13MEw3bXdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXXMMA0G
CSqGSIb3DQEBCwUAA4IBAQAUC6OlXURsbvTwoHxhzHRgeWU8d0GKwNJND4oNhhuP
23//R7SW9rL7+PLCnVCtWEkf7mGsn8Mt6u4AjVwuwkRmek7XkWIjaFYnH3EE/cHW
nJEfrRVvZQ52tYHLL7HvQO7kt4gAItVzStDUMBcH/eMrhIVw9EBCgSZEtIMgqBF2
aojkPO0+euAchV5B2K8peINT3Od9h1eLyb1lPqzSVM+OOt15uqT5Kj8x0YqkZxZL
RoP87eYSkrbE2tY0TVT9hCvmpUC7RzI5Ap9nUX64N0jdMWsHjeePTFvyf4hmixPE
4zteIlK0FzgY3yjH+MinZzWx8xcfmuNACm9X645SjKIJ
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:20:39 2024 by rpki-client on console-fra.rpki-client.org