Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/l3edjydXy2PNlaSYxLmUI_sgH3U.roa
File: l3edjydXy2PNlaSYxLmUI_sgH3U.roa (raw, json)
Hash identifier: qfy29Sx2CZrN81NN4yll5WrGNO/mxvY8ivHnYSH9rCQ=
Subject key identifier: 97:77:9D:8F:27:57:CB:63:CD:95:A4:98:C4:B9:94:23:FB:20:1F:75
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 018CC500A5DBA193DF83098DFD4A04ADBDAC
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/l3edjydXy2PNlaSYxLmUI_sgH3U.roa
Signing time: Mon 01 Jan 2024 12:30:03 +0000
ROA not before: Mon 01 Jan 2024 12:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211398
IP address blocks: 31.24.249.0/24 maxlen: 32
2001:678:f30::/48 maxlen: 48
2a12:4942:174::/48 maxlen: 48
2a12:4946:46::/48 maxlen: 48
2a12:4940::/32 maxlen: 48
2a12:4946:1655::/48 maxlen: 48
2a12:4946:3005::/48 maxlen: 48
2a12:4946:1650::/48 maxlen: 48
2a12:4946:1600::/48 maxlen: 48
2a12:4946:1700::/48 maxlen: 48
2a12:4946:1800::/48 maxlen: 48
2a12:4946:1900::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
2a12:4942::/31 maxlen: 48
2a12:4946:6960::/44 maxlen: 48
2a12:4946:1658::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:a5:db:a1:93:df:83:09:8d:fd:4a:04:ad:bd:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 1 12:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97779d8f2757cb63cd95a498c4b99423fb201f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:82:47:75:22:dd:08:d4:6d:f8:2c:e6:db:0a:
2f:3f:4f:51:da:39:e3:07:b6:a5:45:33:1e:ed:cb:
23:fe:33:a1:c7:09:94:4d:37:d4:f7:57:a6:de:f1:
62:38:ea:e9:54:fc:79:ac:1a:b5:b8:51:1c:54:a3:
5f:65:85:96:a1:4e:3b:e1:8b:db:ad:26:e0:4b:cb:
89:05:f9:40:6a:c2:a2:31:0d:50:1e:c0:cc:03:4e:
f6:f6:74:3a:ba:73:1f:b9:0a:52:0c:d8:e4:7d:fa:
34:39:cc:ba:7f:0a:2d:12:ec:03:eb:25:96:8f:cd:
89:ff:23:92:f7:31:f3:4d:3f:1b:5f:e5:a3:18:6c:
2f:b7:51:1c:f3:8b:ed:67:bc:c0:c2:fa:7a:be:72:
93:aa:97:0d:0b:e5:0f:21:6f:85:7a:40:b3:85:5e:
67:52:7a:7a:0d:c5:37:e8:e1:cc:1b:58:19:6c:9a:
56:8f:4a:70:33:7b:59:b3:e9:60:23:32:b4:62:46:
fd:49:23:5f:27:5c:bf:73:df:55:e4:fd:87:23:cd:
3e:19:2f:6e:33:c3:97:8c:08:99:e8:64:f2:36:2d:
50:4a:b7:3d:a1:09:71:67:11:f6:4f:c4:c2:e5:a7:
54:18:79:8a:0c:a0:f8:fc:3f:a7:59:10:01:73:b4:
33:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:77:9D:8F:27:57:CB:63:CD:95:A4:98:C4:B9:94:23:FB:20:1F:75
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/l3edjydXy2PNlaSYxLmUI_sgH3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2001:678:f30::/48
2a12:4940::/32
2a12:4942::/31
2a12:4946:46::/48
2a12:4946:1600::/48
2a12:4946:1650::/48
2a12:4946:1655::/48
2a12:4946:1658::/48
2a12:4946:1700::/48
2a12:4946:1800::/48
2a12:4946:1900::/48
2a12:4946:3000::/48
2a12:4946:3005::/48
2a12:4946:6960::/44
Signature Algorithm: sha256WithRSAEncryption
84:21:29:53:72:8f:52:7d:4f:71:24:5a:4f:8d:4a:df:63:d1:
61:66:df:d5:58:23:84:6d:15:1e:de:ec:c7:6c:25:70:60:38:
c3:e2:96:3c:88:d5:f5:b2:1f:35:b0:a3:89:94:27:15:be:33:
c2:39:98:21:6c:0c:e6:09:01:ce:9e:11:5f:75:6a:19:2d:a7:
29:74:55:d1:6f:3c:7b:2d:2d:ae:42:02:a4:60:47:ca:be:38:
29:17:2f:ca:44:75:57:2b:58:6e:25:26:c7:8f:f0:8a:c9:de:
73:fb:9a:80:b2:18:82:0a:89:f1:f7:7f:56:ba:2d:bf:20:03:
90:b4:f0:cc:97:96:c6:9a:04:35:c2:a0:62:cc:89:66:c1:2a:
f6:b6:fd:10:3a:1e:4f:8d:a7:1c:d0:02:16:8d:b2:8c:7a:93:
73:06:3d:53:83:61:b6:2e:46:05:46:5b:b8:37:0f:a4:40:66:
43:7c:18:8a:1c:4a:9b:ad:f1:53:4b:31:8b:9b:33:18:42:5a:
94:45:db:aa:ec:0c:4e:18:83:45:91:61:11:93:ab:99:2c:87:
4e:ed:10:50:8d:48:af:c0:c9:8b:d1:f1:74:65:93:8c:ea:f2:
0e:e6:85:f9:ed:19:c7:db:bd:f5:86:54:af:88:98:9a:f4:ca:
d5:0f:d8:7e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgISAYzFAKXboZPfgwmN/UoErb2sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjM5NWMxMjY3MmFkOTU4OTIxYjYyYjlkYzliMmJjZDhh
NjhhOWYwHhcNMjQwMTAxMTIzMDAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Nzc3OWQ4ZjI3NTdjYjYzY2Q5NWE0OThjNGI5OTQyM2ZiMjAxZjc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhoJHdSLdCNRt+Czm2wovP09R2jnj
B7alRTMe7csj/jOhxwmUTTfU91em3vFiOOrpVPx5rBq1uFEcVKNfZYWWoU474Yvb
rSbgS8uJBflAasKiMQ1QHsDMA0729nQ6unMfuQpSDNjkffo0Ocy6fwotEuwD6yWW
j82J/yOS9zHzTT8bX+WjGGwvt1Ec84vtZ7zAwvp6vnKTqpcNC+UPIW+FekCzhV5n
Unp6DcU36OHMG1gZbJpWj0pwM3tZs+lgIzK0Ykb9SSNfJ1y/c99V5P2HI80+GS9u
M8OXjAiZ6GTyNi1QSrc9oQlxZxH2T8TC5adUGHmKDKD4/D+nWRABc7QzOQIDAQAB
o4ICjzCCAoswHQYDVR0OBBYEFJd3nY8nV8tjzZWkmMS5lCP7IB91MB8GA1UdIwQY
MBaAFHRjlcEmcq2ViSG2K53JsrzYpoqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMt
ZmI3NzRhYmRmYWMyLzEvbDNlZGp5ZFh5MlBObGFTWXhMbVVJX3NnSDNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMtZmI3NzRhYmRmYWMy
LzEvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGkBggrBgEFBQcBBwEB/wSBlDCBkTAMBAIAATAGAwQAHxj5
MIGABAIAAjB6AwcAIAEGeA8wAwUAKhJJQAMFASoSSUIDBwAqEklGAEYDBwAqEklG
FgADBwAqEklGFlADBwAqEklGFlUDBwAqEklGFlgDBwAqEklGFwADBwAqEklGGAAD
BwAqEklGGQADBwAqEklGMAADBwAqEklGMAUDBwQqEklGaWAwDQYJKoZIhvcNAQEL
BQADggEBAIQhKVNyj1J9T3EkWk+NSt9j0WFm39VYI4RtFR7e7MdsJXBgOMPiljyI
1fWyHzWwo4mUJxW+M8I5mCFsDOYJAc6eEV91ahktpyl0VdFvPHstLa5CAqRgR8q+
OCkXL8pEdVcrWG4lJseP8IrJ3nP7moCyGIIKifH3f1a6Lb8gA5C08MyXlsaaBDXC
oGLMiWbBKva2/RA6Hk+NpxzQAhaNsox6k3MGPVODYbYuRgVGW7g3D6RAZkN8GIoc
Sput8VNLMYubMxhCWpRF26rsDE4Yg0WRYRGTq5ksh07tEFCNSK/AyYvR8XRlk4zq
8g7mhfntGcfbvfWGVK+ImJr0ytUP2H4=
-----END CERTIFICATE-----
Generated at Fri May 31 18:07:44 2024 by rpki-client on console-fra.rpki-client.org