Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/6da289-abec-49f5-a759-cf1f4c7c9222/1/1C6tltFBDQPN04vUqzOVR99ubmU.roa
File: 1C6tltFBDQPN04vUqzOVR99ubmU.roa (raw, json)
Hash identifier: qQkEUMBnfarnsGdpToWlIU5xSaS32l3uU/Ey6b5r270=
Subject key identifier: D4:2E:AD:96:D1:41:0D:03:CD:D3:8B:D4:AB:33:95:47:DF:6E:6E:65
Certificate issuer: /CN=7736a5c85a08d80749041cb9cfa517fb7d589ba8
Certificate serial: 01928B6828EE3299C8D6372E7116DFE610C5
Authority key identifier: 77:36:A5:C8:5A:08:D8:07:49:04:1C:B9:CF:A5:17:FB:7D:58:9B:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzalyFoI2AdJBBy5z6UX-31Ym6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/6da289-abec-49f5-a759-cf1f4c7c9222/1/1C6tltFBDQPN04vUqzOVR99ubmU.roa
Signing time: Mon 14 Oct 2024 14:21:52 +0000
ROA not before: Mon 14 Oct 2024 14:21:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62371
IP address blocks: 79.135.106.0/24 maxlen: 24
79.135.107.0/24 maxlen: 24
185.70.40.0/22 maxlen: 22
185.70.40.0/24 maxlen: 24
185.70.41.0/24 maxlen: 24
185.70.42.0/24 maxlen: 24
185.70.43.0/24 maxlen: 24
2a05:2700::/29 maxlen: 29
2a05:2700::/32 maxlen: 32
2a05:2701::/32 maxlen: 32
2a05:2701:f00::/40 maxlen: 40
2a05:2701:f00::/44 maxlen: 44
2a05:2701:f10::/44 maxlen: 44
2a05:2701:f40::/44 maxlen: 44
2a05:2701:f50::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/6da289-abec-49f5-a759-cf1f4c7c9222/1/dzalyFoI2AdJBBy5z6UX-31Ym6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/6da289-abec-49f5-a759-cf1f4c7c9222/1/dzalyFoI2AdJBBy5z6UX-31Ym6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzalyFoI2AdJBBy5z6UX-31Ym6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8b:68:28:ee:32:99:c8:d6:37:2e:71:16:df:e6:10:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7736a5c85a08d80749041cb9cfa517fb7d589ba8
Validity
Not Before: Oct 14 14:21:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d42ead96d1410d03cdd38bd4ab339547df6e6e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6c:61:59:84:e9:cc:52:d1:cf:4d:4a:50:0d:
f4:47:2e:e8:30:ca:23:46:aa:36:12:14:09:73:e2:
3a:52:75:0f:5a:8f:e7:52:33:6d:8b:1e:17:51:14:
b6:8b:94:06:ac:9c:d1:cf:37:5a:cf:bb:47:4c:e2:
c8:44:00:4a:bc:49:59:09:a2:b7:5e:d2:aa:52:95:
11:32:df:88:8a:bb:d8:8a:b4:72:f2:96:a5:86:45:
c4:89:7c:9c:46:a2:ca:fe:72:ec:44:a9:bd:c6:bb:
ac:d3:17:88:89:74:4c:15:18:6b:6a:4e:47:09:5d:
84:35:49:8b:f9:2f:70:89:c4:66:21:c4:74:61:90:
bb:1c:39:c2:4e:a0:d1:ff:1f:d7:e2:03:b6:75:85:
27:70:a5:34:01:87:2a:95:dc:8b:8f:47:f0:ea:3a:
c8:72:3a:b5:1f:09:84:c2:a0:e6:6b:2d:a3:be:c7:
b1:aa:1e:71:bd:35:88:7a:23:0f:66:e7:9d:be:39:
97:e2:24:96:68:27:f4:71:aa:d1:3b:ca:49:01:28:
0c:95:63:17:b4:15:f9:e8:10:a7:12:e2:07:01:2b:
bd:47:75:e0:b4:65:1c:98:b7:42:97:dd:36:f2:12:
dd:f1:40:73:da:d4:f2:57:ee:15:8c:a9:4a:9f:6d:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2E:AD:96:D1:41:0D:03:CD:D3:8B:D4:AB:33:95:47:DF:6E:6E:65
X509v3 Authority Key Identifier:
keyid:77:36:A5:C8:5A:08:D8:07:49:04:1C:B9:CF:A5:17:FB:7D:58:9B:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzalyFoI2AdJBBy5z6UX-31Ym6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/6da289-abec-49f5-a759-cf1f4c7c9222/1/1C6tltFBDQPN04vUqzOVR99ubmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/6da289-abec-49f5-a759-cf1f4c7c9222/1/dzalyFoI2AdJBBy5z6UX-31Ym6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.106.0/23
185.70.40.0/22
IPv6:
2a05:2700::/29
Signature Algorithm: sha256WithRSAEncryption
60:8f:f1:0b:46:47:20:67:f9:e0:fb:f0:14:5e:96:9e:de:b1:
d8:87:01:36:27:8d:71:4c:89:38:77:76:71:c0:59:0b:db:30:
24:68:c9:3e:7d:b8:72:8b:d1:e4:e2:81:79:70:58:b0:35:72:
3c:52:b1:fd:6e:eb:95:04:49:72:c9:da:e0:3a:ab:81:53:68:
15:56:56:f4:c9:20:0a:6c:a0:9a:76:3f:7b:b8:0f:4e:8a:7e:
1e:4a:7c:dd:c4:f0:0b:77:c9:96:5f:3a:72:ed:08:07:09:a5:
84:f1:fb:7f:d0:fb:15:e3:b7:ec:61:52:4e:f3:e5:8d:4e:85:
10:8f:25:8e:60:83:a3:a0:04:87:7c:ca:8a:ca:1b:da:fa:ff:
29:88:b9:7c:79:a4:4f:f1:1d:e6:b4:0e:ae:63:57:08:02:d7:
3a:2a:9b:fb:54:83:f8:16:a8:6f:90:95:cb:96:ac:ca:2f:81:
aa:0c:bd:4b:58:a3:3f:e4:42:85:4b:26:f5:42:97:99:b2:81:
f4:11:dc:a9:e7:55:3e:56:61:0c:10:d2:c7:44:fa:7f:6f:f6:
b3:eb:36:89:dc:b0:85:d7:84:c3:24:a0:5c:5d:21:de:8d:0f:
0d:07:b3:9d:d0:c2:4c:9b:41:d5:2a:20:17:1e:4f:5c:54:0b:
12:9b:13:1b
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZKLaCjuMpnI1jcucRbf5hDFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MzZhNWM4NWEwOGQ4MDc0OTA0MWNiOWNmYTUxN2ZiN2Q1
ODliYTgwHhcNMjQxMDE0MTQyMTUyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDJlYWQ5NmQxNDEwZDAzY2RkMzhiZDRhYjMzOTU0N2RmNmU2ZTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimxhWYTpzFLRz01KUA30Ry7oMMoj
Rqo2EhQJc+I6UnUPWo/nUjNtix4XURS2i5QGrJzRzzdaz7tHTOLIRABKvElZCaK3
XtKqUpURMt+IirvYirRy8palhkXEiXycRqLK/nLsRKm9xrus0xeIiXRMFRhrak5H
CV2ENUmL+S9wicRmIcR0YZC7HDnCTqDR/x/X4gO2dYUncKU0AYcqldyLj0fw6jrI
cjq1HwmEwqDmay2jvsexqh5xvTWIeiMPZuedvjmX4iSWaCf0carRO8pJASgMlWMX
tBX56BCnEuIHASu9R3XgtGUcmLdCl9028hLd8UBz2tTyV+4VjKlKn22xnQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFNQurZbRQQ0DzdOL1KszlUffbm5lMB8GA1UdIwQY
MBaAFHc2pchaCNgHSQQcuc+lF/t9WJuoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHphbHlGb0kyQWRKQkJ5NXo2VVgtMzFZbTZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC82ZGEyODktYWJlYy00OWY1LWE3NTkt
Y2YxZjRjN2M5MjIyLzEvMUM2dGx0RkJEUVBOMDR2VXF6T1ZSOTl1Ym1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC82ZGEyODktYWJlYy00OWY1LWE3NTktY2YxZjRjN2M5MjIy
LzEvZHphbHlGb0kyQWRKQkJ5NXo2VVgtMzFZbTZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBT4dqAwQC
uUYoMA0EAgACMAcDBQMqBScAMA0GCSqGSIb3DQEBCwUAA4IBAQBgj/ELRkcgZ/ng
+/AUXpae3rHYhwE2J41xTIk4d3ZxwFkL2zAkaMk+fbhyi9Hk4oF5cFiwNXI8UrH9
buuVBElyydrgOquBU2gVVlb0ySAKbKCadj97uA9Oin4eSnzdxPALd8mWXzpy7QgH
CaWE8ft/0PsV47fsYVJO8+WNToUQjyWOYIOjoASHfMqKyhva+v8piLl8eaRP8R3m
tA6uY1cIAtc6Kpv7VIP4FqhvkJXLlqzKL4GqDL1LWKM/5EKFSyb1QpeZsoH0Edyp
51U+VmEMENLHRPp/b/az6zaJ3LCF14TDJKBcXSHejQ8NB7Od0MJMm0HVKiAXHk9c
VAsSmxMb
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:41:02 2024 by rpki-client on console-ams.rpki-client.org