Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/p9J_-0vOXukpW58ZFGjiprGOJIE.roa
File: p9J_-0vOXukpW58ZFGjiprGOJIE.roa (raw, json)
Hash identifier: VxQpoESXtJFimQ4M8kalWJJthY/YUqt3MD7AMv8FDLI=
Subject key identifier: A7:D2:7F:FB:4B:CE:5E:E9:29:5B:9F:19:14:68:E2:A6:B1:8E:24:81
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01917622E3E335F1B0EF670BC6697F1EAF8E
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/p9J_-0vOXukpW58ZFGjiprGOJIE.roa
Signing time: Wed 21 Aug 2024 18:11:23 +0000
ROA not before: Wed 21 Aug 2024 18:11:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41957
IP address blocks: 46.16.37.0/24 maxlen: 24
46.253.128.0/24 maxlen: 24
62.3.48.0/24 maxlen: 24
91.242.254.0/24 maxlen: 24
146.19.178.0/24 maxlen: 24
146.19.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:76:22:e3:e3:35:f1:b0:ef:67:0b:c6:69:7f:1e:af:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 21 18:11:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7d27ffb4bce5ee9295b9f191468e2a6b18e2481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:57:58:9a:58:d6:af:91:b4:80:aa:c3:d7:91:
8c:af:2d:36:27:a0:65:68:1a:5a:77:6e:ff:2a:ff:
41:f0:74:51:89:41:98:36:9d:97:00:f6:18:25:4b:
e2:14:e3:20:75:da:49:c2:f2:8f:57:d4:de:e0:27:
d9:60:91:2a:85:28:35:23:6e:ee:11:4e:e6:92:97:
27:df:70:37:da:92:53:5c:5e:08:44:b3:4c:3e:e8:
d8:85:c6:9f:07:dc:78:9f:db:d7:15:a6:6d:8b:b4:
1f:27:ef:ba:71:63:c5:19:12:b0:ad:3e:3c:5f:9a:
9c:2c:95:4c:bb:1f:a1:7a:72:88:0e:08:fb:20:e5:
15:51:44:6b:4c:92:ff:ac:28:15:40:f9:a5:f7:44:
79:2a:7b:1c:b1:b9:2b:24:ce:e6:04:eb:22:b9:71:
5a:b7:3a:1d:fa:b5:e3:55:7d:a5:fb:87:11:f9:11:
0b:ac:5d:d6:b1:66:50:65:b5:48:81:9a:f0:01:32:
d1:23:89:11:a1:70:8e:0b:03:34:68:5f:d0:96:46:
ec:e6:78:de:df:1a:1b:c0:0d:3a:d3:82:cd:a7:b6:
c1:7a:9d:9f:d2:55:fc:74:a1:fc:8b:4e:5f:23:7a:
c7:da:f4:22:76:38:47:22:31:b9:c5:05:4a:6b:71:
66:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D2:7F:FB:4B:CE:5E:E9:29:5B:9F:19:14:68:E2:A6:B1:8E:24:81
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/p9J_-0vOXukpW58ZFGjiprGOJIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.37.0/24
46.253.128.0/24
62.3.48.0/24
91.242.254.0/24
146.19.178.0/24
146.19.180.0/24
Signature Algorithm: sha256WithRSAEncryption
64:af:d1:4f:c6:44:86:25:c1:7e:91:38:de:0b:c0:d4:a6:dc:
c7:ab:fc:14:15:09:85:c6:3f:d5:e8:10:14:8f:21:3a:4e:b2:
01:8f:d1:00:eb:af:86:cf:39:e3:56:20:be:31:31:20:ec:1f:
bf:77:19:56:6e:69:55:7a:d6:a7:c2:63:c7:5f:58:c7:db:ad:
d8:e3:42:33:2c:61:d0:7f:15:b0:91:ca:42:b4:03:2b:55:7c:
30:a2:4b:59:c9:09:2a:1a:f1:2b:8b:2b:d0:30:29:ec:5d:b6:
74:3f:3f:00:a5:51:c0:71:35:d8:a7:4f:d4:f9:78:8c:cc:95:
75:af:50:12:ef:7f:ec:97:2e:f8:8b:96:1f:0e:88:91:be:4e:
cc:99:3e:62:72:11:a7:e2:aa:dd:a2:78:09:cd:74:46:f4:09:
38:34:5b:0e:ae:77:bf:64:8e:e4:d6:95:69:cc:67:02:db:86:
e6:1d:9e:2d:4a:13:22:69:a1:a1:51:02:10:82:9b:00:2b:f6:
b2:87:60:92:8b:e5:2f:16:0a:63:9b:f1:92:cf:a3:e7:5a:b9:
8b:5f:f3:ef:5d:cc:9c:5e:f3:f7:0c:35:02:37:ec:11:67:ff:
bd:0e:21:95:2a:90:a4:ff:2a:53:7f:cd:06:86:4d:09:34:83:
3f:30:23:ec
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZF2IuPjNfGw72cLxml/Hq+OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwODIxMTgxMTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2QyN2ZmYjRiY2U1ZWU5Mjk1YjlmMTkxNDY4ZTJhNmIxOGUyNDgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVdYmljWr5G0gKrD15GMry02J6Bl
aBpad27/Kv9B8HRRiUGYNp2XAPYYJUviFOMgddpJwvKPV9Te4CfZYJEqhSg1I27u
EU7mkpcn33A32pJTXF4IRLNMPujYhcafB9x4n9vXFaZti7QfJ++6cWPFGRKwrT48
X5qcLJVMux+henKIDgj7IOUVUURrTJL/rCgVQPml90R5KnscsbkrJM7mBOsiuXFa
tzod+rXjVX2l+4cR+RELrF3WsWZQZbVIgZrwATLRI4kRoXCOCwM0aF/Qlkbs5nje
3xobwA0604LNp7bBep2f0lX8dKH8i05fI3rH2vQidjhHIjG5xQVKa3FmmwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFKfSf/tLzl7pKVufGRRo4qaxjiSBMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvcDlKXy0wdk9YdWtwVzU4WkZHamlwckdPSklFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALhAlAwQA
Lv2AAwQAPgMwAwQAW/L+AwQAkhOyAwQAkhO0MA0GCSqGSIb3DQEBCwUAA4IBAQBk
r9FPxkSGJcF+kTjeC8DUptzHq/wUFQmFxj/V6BAUjyE6TrIBj9EA66+GzznjViC+
MTEg7B+/dxlWbmlVetanwmPHX1jH263Y40IzLGHQfxWwkcpCtAMrVXwwoktZyQkq
GvEriyvQMCnsXbZ0Pz8ApVHAcTXYp0/U+XiMzJV1r1AS73/sly74i5YfDoiRvk7M
mT5ichGn4qrdongJzXRG9Ak4NFsOrne/ZI7k1pVpzGcC24bmHZ4tShMiaaGhUQIQ
gpsAK/ayh2CSi+UvFgpjm/GSz6PnWrmLX/PvXcycXvP3DDUCN+wRZ/+9DiGVKpCk
/ypTf80Ghk0JNIM/MCPs
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:26:03 2024 by rpki-client on console-ams.rpki-client.org