Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/ARLasIxVIhIljMhjctHQtARNs1g.roa
File: ARLasIxVIhIljMhjctHQtARNs1g.roa (raw, json)
Hash identifier: rm7ZBECrET+r8wdWNgH74Qy9rzRwZ6qyqg7lr5XFDss=
Subject key identifier: 01:12:DA:B0:8C:55:22:12:25:8C:C8:63:72:D1:D0:B4:04:4D:B3:58
Certificate issuer: /CN=59ce1cc57acd4d8181ed305385dee78db175e221
Certificate serial: 018CC801D9C24F07304151981DDBEB35CC8B
Authority key identifier: 59:CE:1C:C5:7A:CD:4D:81:81:ED:30:53:85:DE:E7:8D:B1:75:E2:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wc4cxXrNTYGB7TBThd7njbF14iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/ARLasIxVIhIljMhjctHQtARNs1g.roa
Signing time: Tue 02 Jan 2024 02:30:13 +0000
ROA not before: Tue 02 Jan 2024 02:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205254
IP address blocks: 185.255.44.0/24 maxlen: 24
185.255.44.0/22 maxlen: 22
185.255.46.0/24 maxlen: 24
185.255.45.0/24 maxlen: 24
185.255.47.0/24 maxlen: 24
46.161.192.0/21 maxlen: 21
46.161.192.0/24 maxlen: 24
46.161.198.0/24 maxlen: 24
46.161.197.0/24 maxlen: 24
46.161.193.0/24 maxlen: 24
46.161.199.0/24 maxlen: 24
46.161.194.0/24 maxlen: 24
46.161.196.0/24 maxlen: 24
46.161.195.0/24 maxlen: 24
2a0c:58c0::/29 maxlen: 29
2a0c:58c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/Wc4cxXrNTYGB7TBThd7njbF14iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/Wc4cxXrNTYGB7TBThd7njbF14iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wc4cxXrNTYGB7TBThd7njbF14iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:d9:c2:4f:07:30:41:51:98:1d:db:eb:35:cc:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59ce1cc57acd4d8181ed305385dee78db175e221
Validity
Not Before: Jan 2 02:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0112dab08c552212258cc86372d1d0b4044db358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:49:a5:50:00:45:e9:fb:eb:69:3d:02:a6:6b:
65:f7:71:e2:a2:09:2b:90:b7:15:65:f1:aa:64:33:
0e:f3:8e:2d:ee:bf:63:bc:3c:8f:d8:04:77:ac:61:
3d:8d:dc:30:a2:94:ac:a8:44:c6:c7:05:93:10:aa:
a4:86:d3:e4:da:26:e2:16:0e:fc:92:c9:12:fe:73:
d2:5f:6a:87:f7:6a:2b:ee:a2:3a:0f:28:46:56:a3:
a0:8a:62:0e:2e:67:40:c3:cf:61:ab:fe:ea:38:a9:
38:15:a5:6a:41:f5:3a:90:ee:f9:2c:b2:ca:16:14:
ba:8f:be:9e:c2:b3:52:70:5b:dd:ef:1a:e3:07:bc:
ca:04:17:09:49:74:b7:91:cd:71:15:01:c7:01:17:
d9:1a:d5:0f:66:07:99:1c:09:99:d8:12:08:0b:f4:
03:23:70:c9:ce:bf:df:89:fb:4e:a7:f2:b4:47:ec:
77:a3:95:5e:b5:2d:72:14:8d:42:a6:42:26:f5:b6:
22:cb:e4:84:3c:32:1e:ab:d9:84:45:03:2b:af:d9:
9a:1f:9a:cc:fa:8c:e2:4b:bd:0b:a2:f2:83:fb:cd:
07:67:b3:20:64:47:3b:2b:d1:52:2f:c2:80:06:12:
ed:1a:43:36:2f:8c:ca:a8:58:cc:01:45:f2:94:9a:
83:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:12:DA:B0:8C:55:22:12:25:8C:C8:63:72:D1:D0:B4:04:4D:B3:58
X509v3 Authority Key Identifier:
keyid:59:CE:1C:C5:7A:CD:4D:81:81:ED:30:53:85:DE:E7:8D:B1:75:E2:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wc4cxXrNTYGB7TBThd7njbF14iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/ARLasIxVIhIljMhjctHQtARNs1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/c144dc-f562-4a3e-b6ca-c162ddfdee73/1/Wc4cxXrNTYGB7TBThd7njbF14iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.192.0/21
185.255.44.0/22
IPv6:
2a0c:58c0::/29
Signature Algorithm: sha256WithRSAEncryption
82:b6:f2:1b:54:d7:92:66:d1:89:fc:bf:fa:51:c6:2d:0b:d2:
a4:a5:0a:44:35:a6:ee:63:9c:74:33:05:fa:dc:4d:dd:01:16:
aa:a2:4a:a5:98:e7:78:82:c8:0f:3c:a0:f4:9c:3e:c7:86:e8:
34:ec:17:4e:59:54:af:79:a8:f3:d6:ef:af:9b:f6:e6:18:60:
b8:06:c2:aa:59:24:ae:e1:87:be:e6:22:2f:b3:94:62:71:59:
5b:aa:2e:0c:c2:0a:fb:d3:40:ca:0b:c3:db:c8:5c:e6:cd:54:
8c:dd:81:e8:4a:47:f6:9b:0e:ab:05:95:39:d7:d7:e2:6d:51:
44:b7:03:9d:fa:bc:cf:bd:b6:e8:94:1c:20:05:fe:ec:ff:d1:
41:0b:7d:dc:f0:6b:3a:1c:38:e4:14:4e:96:e1:58:1b:34:cf:
83:fd:88:08:2b:06:6d:86:80:c9:79:99:89:8d:e8:88:34:37:
36:47:d6:08:7c:91:6f:67:08:67:8f:38:37:8f:a3:0d:3b:ed:
80:3d:78:04:b1:91:d3:9b:d8:e0:ae:e3:1d:63:b0:4b:94:23:
3e:91:97:f7:51:72:c3:8d:85:88:12:b2:37:20:b3:15:a1:04:
eb:e5:8c:68:88:14:1c:51:af:d2:ad:b4:f4:fb:83:52:8c:9c:
e3:38:06:5e
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYzIAdnCTwcwQVGYHdvrNcyLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5Y2UxY2M1N2FjZDRkODE4MWVkMzA1Mzg1ZGVlNzhkYjE3
NWUyMjEwHhcNMjQwMTAyMDIzMDEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTEyZGFiMDhjNTUyMjEyMjU4Y2M4NjM3MmQxZDBiNDA0NGRiMzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiEmlUABF6fvraT0Cpmtl93Hiogkr
kLcVZfGqZDMO844t7r9jvDyP2AR3rGE9jdwwopSsqETGxwWTEKqkhtPk2ibiFg78
kskS/nPSX2qH92or7qI6DyhGVqOgimIOLmdAw89hq/7qOKk4FaVqQfU6kO75LLLK
FhS6j76ewrNScFvd7xrjB7zKBBcJSXS3kc1xFQHHARfZGtUPZgeZHAmZ2BIIC/QD
I3DJzr/fiftOp/K0R+x3o5VetS1yFI1CpkIm9bYiy+SEPDIeq9mERQMrr9maH5rM
+oziS70LovKD+80HZ7MgZEc7K9FSL8KABhLtGkM2L4zKqFjMAUXylJqDawIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFAES2rCMVSISJYzIY3LR0LQETbNYMB8GA1UdIwQY
MBaAFFnOHMV6zU2Bge0wU4Xe542xdeIhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2M0Y3hYck5UWUdCN1RCVGhkN25qYkYxNGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9jMTQ0ZGMtZjU2Mi00YTNlLWI2Y2Et
YzE2MmRkZmRlZTczLzEvQVJMYXNJeFZJaElsak1oamN0SFF0QVJOczFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9jMTQ0ZGMtZjU2Mi00YTNlLWI2Y2EtYzE2MmRkZmRlZTcz
LzEvV2M0Y3hYck5UWUdCN1RCVGhkN25qYkYxNGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDLqHAAwQC
uf8sMA0EAgACMAcDBQMqDFjAMA0GCSqGSIb3DQEBCwUAA4IBAQCCtvIbVNeSZtGJ
/L/6UcYtC9KkpQpENabuY5x0MwX63E3dARaqokqlmOd4gsgPPKD0nD7Hhug07BdO
WVSveajz1u+vm/bmGGC4BsKqWSSu4Ye+5iIvs5RicVlbqi4Mwgr700DKC8PbyFzm
zVSM3YHoSkf2mw6rBZU519fibVFEtwOd+rzPvbbolBwgBf7s/9FBC33c8Gs6HDjk
FE6W4VgbNM+D/YgIKwZthoDJeZmJjeiINDc2R9YIfJFvZwhnjzg3j6MNO+2APXgE
sZHTm9jgruMdY7BLlCM+kZf3UXLDjYWIErI3ILMVoQTr5YxoiBQcUa/SrbT0+4NS
jJzjOAZe
-----END CERTIFICATE-----
Generated at Fri Jun 7 13:43:46 2024 by rpki-client on console-fra.rpki-client.org