Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/VwBzQ1zcNWCdVqI8IhgLT4zbUeM.roa
File: VwBzQ1zcNWCdVqI8IhgLT4zbUeM.roa (raw, json)
Hash identifier: PXb+IqK8mgcYPL3W5uJ6G8IGbAztqC/G037RZzZoXfU=
Subject key identifier: 57:00:73:43:5C:DC:35:60:9D:56:A2:3C:22:18:0B:4F:8C:DB:51:E3
Certificate issuer: /CN=6eebaf15233d98eb8ef062c245f917362e632656
Certificate serial: 018CC64AFBD6BEE14935E3A9436B666DBAB6
Authority key identifier: 6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/buuvFSM9mOuO8GLCRfkXNi5jJlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/VwBzQ1zcNWCdVqI8IhgLT4zbUeM.roa
Signing time: Mon 01 Jan 2024 18:30:52 +0000
ROA not before: Mon 01 Jan 2024 18:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50630
IP address blocks: 195.8.194.0/24 maxlen: 24
109.95.57.0/24 maxlen: 24
109.95.58.0/24 maxlen: 24
2.56.4.0/24 maxlen: 24
2.56.6.0/24 maxlen: 24
2.56.5.0/24 maxlen: 24
2.56.7.0/24 maxlen: 24
2a0d:4d40::/44 maxlen: 48
2a0d:4d40:18::/48 maxlen: 48
2a0d:4d40:13::/48 maxlen: 48
2a0d:4d40:11::/48 maxlen: 48
2a0d:4d40:17::/48 maxlen: 48
2a0d:4d40:12::/48 maxlen: 48
2a0d:4d40:15::/48 maxlen: 48
2a0d:4d40:10::/48 maxlen: 48
2a0d:4d40:16::/48 maxlen: 48
2a0d:4d40:14::/48 maxlen: 48
2a0d:4d40:1a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/buuvFSM9mOuO8GLCRfkXNi5jJlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:fb:d6:be:e1:49:35:e3:a9:43:6b:66:6d:ba:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eebaf15233d98eb8ef062c245f917362e632656
Validity
Not Before: Jan 1 18:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=570073435cdc35609d56a23c22180b4f8cdb51e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0f:73:b2:5b:d9:eb:38:71:1b:bf:7a:62:1c:
df:b6:04:f7:47:d1:0f:95:b3:6c:d4:4e:fd:d7:23:
e1:ac:6a:e8:46:97:7a:e7:e6:84:ae:94:7b:a9:70:
68:28:6f:46:83:c7:cc:13:60:52:69:f7:ae:8c:1a:
0f:6a:88:3d:9e:a9:87:1e:77:21:36:e2:a4:a6:cf:
15:e8:ff:f9:c4:5c:bf:ef:fc:38:fc:f8:e4:4a:4f:
7f:52:15:70:5d:7e:8f:82:62:59:2f:37:fc:a3:bc:
99:8f:57:f6:57:0d:4c:49:55:ba:73:bd:ab:eb:80:
72:4f:3e:d6:b8:dd:1b:85:a3:26:8d:f2:02:e1:78:
62:21:72:8b:d1:c7:84:07:34:b5:4e:e8:b1:4f:27:
1a:99:81:d6:d3:33:62:a9:7f:34:ef:82:15:60:6e:
8d:48:47:5e:68:6d:6b:4f:6f:41:18:08:29:f5:95:
eb:82:8e:1d:ed:d8:a4:00:a7:1b:9d:e4:85:e4:72:
70:20:9b:5d:35:9d:ea:06:45:13:72:96:b1:10:27:
2f:d9:d8:b3:ac:3a:37:23:09:f2:ec:e3:11:8c:f3:
98:49:3a:5f:6c:93:1d:c8:fb:5b:e3:ab:b3:13:c7:
4f:50:8a:7c:60:51:04:19:75:69:82:35:18:9e:bd:
0e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:00:73:43:5C:DC:35:60:9D:56:A2:3C:22:18:0B:4F:8C:DB:51:E3
X509v3 Authority Key Identifier:
keyid:6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/buuvFSM9mOuO8GLCRfkXNi5jJlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/VwBzQ1zcNWCdVqI8IhgLT4zbUeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.4.0/22
109.95.57.0-109.95.58.255
195.8.194.0/24
IPv6:
2a0d:4d40::-2a0d:4d40:18:ffff:ffff:ffff:ffff:ffff
2a0d:4d40:1a::/48
Signature Algorithm: sha256WithRSAEncryption
6a:37:9d:7b:4c:75:90:09:90:b1:4a:c2:ea:dc:ad:82:6d:4a:
52:ea:a5:a7:46:94:16:94:ec:06:8f:2f:83:2b:4a:48:6d:7d:
c7:e7:6f:82:48:28:6a:30:bb:83:10:4c:62:0f:4e:b6:e9:96:
6d:77:64:ba:4b:c1:ee:21:49:c2:b3:2f:f8:0c:66:4a:0f:c3:
8c:27:1d:f3:0b:cd:6e:20:fa:d2:38:be:ed:a4:17:80:29:f5:
e8:13:70:b6:12:b2:cd:8a:cd:68:fd:1f:66:b9:b1:6e:f8:44:
45:2c:5a:46:79:2f:6e:3e:50:2b:a6:fe:1a:29:85:0b:34:25:
28:4e:8d:e2:a1:9c:1f:34:79:02:ca:07:d4:0d:46:c2:f6:5a:
b3:28:fa:90:16:f3:b3:66:60:62:16:36:82:68:2c:e5:87:cf:
50:9d:52:96:8c:2b:d4:14:60:8f:ed:8d:46:ac:6d:84:a2:1a:
99:89:b8:93:27:bf:af:c5:23:13:57:88:14:c2:bb:c0:6d:00:
a2:f9:37:e3:25:ff:da:a6:cf:bd:a3:4a:e5:77:67:c6:13:a6:
b6:7d:13:3f:8b:6d:07:20:44:4b:1f:79:b4:86:34:31:f2:fc:
78:c2:67:d2:6b:64:83:6a:89:c3:68:68:94:a6:bd:4e:0f:ff:
e7:f7:8f:03
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgISAYzGSvvWvuFJNeOpQ2tmbbq2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlZWJhZjE1MjMzZDk4ZWI4ZWYwNjJjMjQ1ZjkxNzM2MmU2
MzI2NTYwHhcNMjQwMTAxMTgzMDUyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzAwNzM0MzVjZGMzNTYwOWQ1NmEyM2MyMjE4MGI0ZjhjZGI1MWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQ9zslvZ6zhxG796YhzftgT3R9EP
lbNs1E791yPhrGroRpd65+aErpR7qXBoKG9Gg8fME2BSafeujBoPaog9nqmHHnch
NuKkps8V6P/5xFy/7/w4/PjkSk9/UhVwXX6PgmJZLzf8o7yZj1f2Vw1MSVW6c72r
64ByTz7WuN0bhaMmjfIC4XhiIXKL0ceEBzS1TuixTycamYHW0zNiqX8074IVYG6N
SEdeaG1rT29BGAgp9ZXrgo4d7dikAKcbneSF5HJwIJtdNZ3qBkUTcpaxECcv2diz
rDo3Iwny7OMRjPOYSTpfbJMdyPtb46uzE8dPUIp8YFEEGXVpgjUYnr0OiwIDAQAB
o4ICQDCCAjwwHQYDVR0OBBYEFFcAc0Nc3DVgnVaiPCIYC0+M21HjMB8GA1UdIwQY
MBaAFG7rrxUjPZjrjvBiwkX5FzYuYyZWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnV1dkZTTTltT3VPOEdMQ1Jma1hOaTVqSmxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yNzEzZWQtY2IzMi00MDdlLTg2Mjgt
MGU0NjdlNTFiYTA2LzEvVndCelExemNOV0NkVnFJOEloZ0xUNHpiVWVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8yNzEzZWQtY2IzMi00MDdlLTg2MjgtMGU0NjdlNTFiYTA2
LzEvYnV1dkZTTTltT3VPOEdMQ1Jma1hOaTVqSmxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTAgBAIAATAaAwQCAjgEMAwD
BABtXzkDBABtXzoDBADDCMIwIQQCAAIwGzAQAwUGKg1NQAMHACoNTUAAGAMHACoN
TUAAGjANBgkqhkiG9w0BAQsFAAOCAQEAajede0x1kAmQsUrC6tytgm1KUuqlp0aU
FpTsBo8vgytKSG19x+dvgkgoajC7gxBMYg9OtumWbXdkukvB7iFJwrMv+AxmSg/D
jCcd8wvNbiD60ji+7aQXgCn16BNwthKyzYrNaP0fZrmxbvhERSxaRnkvbj5QK6b+
GimFCzQlKE6N4qGcHzR5AsoH1A1GwvZasyj6kBbzs2ZgYhY2gmgs5YfPUJ1Slowr
1BRgj+2NRqxthKIamYm4kye/r8UjE1eIFMK7wG0Aovk34yX/2qbPvaNK5XdnxhOm
tn0TP4ttByBESx95tIY0MfL8eMJn0mtkg2qJw2holKa9Tg//5/ePAw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 13:09:48 2024 by rpki-client on console-ams.rpki-client.org