Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/58guWZv4SYLXAkZH_qU3pvd-zEY.roa
File: 58guWZv4SYLXAkZH_qU3pvd-zEY.roa (raw, json)
Hash identifier: BgNPFyX+N0xZd+6eVC5wC/nCZfcJ7VXggP7w4a6eClk=
Subject key identifier: E7:C8:2E:59:9B:F8:49:82:D7:02:46:47:FE:A5:37:A6:F7:7E:CC:46
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0192E151199A28A5B32ED8E5ADEC36786374
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/58guWZv4SYLXAkZH_qU3pvd-zEY.roa
Signing time: Thu 31 Oct 2024 06:44:01 +0000
ROA not before: Thu 31 Oct 2024 06:44:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 107.150.169.0/24 maxlen: 24
107.150.173.0/24 maxlen: 24
162.218.177.0/24 maxlen: 24
162.218.178.0/24 maxlen: 24
167.160.1.0/24 maxlen: 24
167.160.2.0/24 maxlen: 24
185.192.213.0/24 maxlen: 24
185.192.214.0/24 maxlen: 24
185.203.149.0/24 maxlen: 24
185.203.150.0/24 maxlen: 24
185.212.173.0/24 maxlen: 24
185.212.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:03:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e1:51:19:9a:28:a5:b3:2e:d8:e5:ad:ec:36:78:63:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Oct 31 06:44:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7c82e599bf84982d7024647fea537a6f77ecc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fd:ef:75:a2:25:d6:18:af:b2:8d:c8:15:eb:
3b:96:a3:91:ed:e4:34:ac:ad:7e:f3:63:1a:43:05:
24:27:d7:42:64:ef:35:ac:9d:c4:5f:9f:74:87:13:
1c:77:92:c6:14:ca:06:b1:75:29:20:c5:ac:b6:73:
4c:e8:9e:5e:39:7c:7c:66:0b:96:6e:38:14:b3:1b:
8c:42:8a:8f:1b:9e:60:dd:a5:b7:c0:f9:20:53:28:
d4:ad:20:0e:85:7e:f3:ea:c1:0f:af:56:c3:ad:ed:
5d:4e:3b:d6:10:ce:0b:56:9d:b5:55:d9:17:2d:f9:
72:28:63:ce:1d:18:c4:1f:d8:25:40:1a:58:34:41:
e5:5b:ec:77:64:9a:c2:1a:75:6b:d6:da:3b:38:7e:
03:fc:cd:58:bc:81:a9:89:30:0e:1c:24:c9:c0:7f:
bc:98:4c:a7:53:7d:46:a1:04:a3:92:80:18:5c:cc:
f9:08:38:14:73:da:ea:6a:c0:8c:19:ad:55:f8:4c:
75:f5:29:41:39:1f:55:b4:fe:db:d2:30:2a:bf:ba:
e3:91:73:bb:da:0a:ef:7c:5c:35:39:0b:f1:3c:18:
09:5f:fb:24:9c:97:3b:39:cb:96:e6:02:ef:60:ed:
46:bd:73:eb:08:41:48:f7:90:bd:f9:d4:1d:fd:e3:
c4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C8:2E:59:9B:F8:49:82:D7:02:46:47:FE:A5:37:A6:F7:7E:CC:46
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/58guWZv4SYLXAkZH_qU3pvd-zEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.150.169.0/24
107.150.173.0/24
162.218.177.0-162.218.178.255
167.160.1.0-167.160.2.255
185.192.213.0-185.192.214.255
185.203.149.0-185.203.150.255
185.212.173.0-185.212.174.255
Signature Algorithm: sha256WithRSAEncryption
a1:4f:ea:65:87:21:aa:4d:03:e8:c5:cc:98:b2:aa:42:c6:aa:
c6:11:cf:01:60:fe:47:27:38:5d:95:83:09:ad:fc:68:3b:0a:
11:6f:1f:de:7b:96:94:d7:87:f8:ed:be:37:e9:30:dd:64:c2:
08:8b:12:7c:e7:06:93:e2:84:a8:59:42:44:b5:7b:0c:6d:95:
1f:58:3b:2f:5d:72:02:48:06:0f:5f:09:24:ce:6d:64:1b:98:
93:a5:62:61:e3:38:a7:f5:71:08:1a:41:6e:7f:92:89:ea:95:
c3:25:d4:57:2b:e4:51:53:fc:19:95:c5:8b:9a:8b:76:88:94:
f8:4f:2d:11:db:0d:11:6f:f5:3d:c6:71:94:ca:b1:c0:d9:05:
32:a2:31:b2:53:a6:8c:cd:d3:e7:c6:e8:bf:99:1c:18:c8:99:
a5:85:09:59:5f:11:be:57:3e:2d:28:56:7f:13:44:c2:4e:82:
62:92:f0:bd:1f:96:04:d8:11:16:2e:75:ea:1d:ef:ec:1a:43:
34:67:17:2d:68:9f:ed:74:43:10:e9:c6:4f:0a:ff:18:ee:a7:
62:94:ab:bc:e4:fc:f7:bc:50:89:3f:86:e7:88:6a:35:57:e0:
c2:a4:21:ea:10:42:b4:36:e4:53:d8:3b:1c:fb:2c:34:2c:bd:
d8:c6:9b:06
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgISAZLhURmaKKWzLtjlrew2eGN0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5
NTkyZGEwHhcNMjQxMDMxMDY0NDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2M4MmU1OTliZjg0OTgyZDcwMjQ2NDdmZWE1MzdhNmY3N2VjYzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/3vdaIl1hivso3IFes7lqOR7eQ0
rK1+82MaQwUkJ9dCZO81rJ3EX590hxMcd5LGFMoGsXUpIMWstnNM6J5eOXx8ZguW
bjgUsxuMQoqPG55g3aW3wPkgUyjUrSAOhX7z6sEPr1bDre1dTjvWEM4LVp21VdkX
LflyKGPOHRjEH9glQBpYNEHlW+x3ZJrCGnVr1to7OH4D/M1YvIGpiTAOHCTJwH+8
mEynU31GoQSjkoAYXMz5CDgUc9rqasCMGa1V+Ex19SlBOR9VtP7b0jAqv7rjkXO7
2grvfFw1OQvxPBgJX/sknJc7OcuW5gLvYO1GvXPrCEFI95C9+dQd/ePEpwIDAQAB
o4ICVTCCAlEwHQYDVR0OBBYEFOfILlmb+EmC1wJGR/6lN6b3fsxGMB8GA1UdIwQY
MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt
ZjVmYjcxYjlhNTFmLzEvNThndVdadjRTWUxYQWtaSF9xVTNwdmQtekVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm
LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGsGCCsGAQUFBwEHAQH/BFwwWjBYBAIAATBSAwQAa5apAwQA
a5atMAwDBACi2rEDBACi2rIwDAMEAKegAQMEAKegAjAMAwQAucDVAwQAucDWMAwD
BAC5y5UDBAC5y5YwDAMEALnUrQMEALnUrjANBgkqhkiG9w0BAQsFAAOCAQEAoU/q
ZYchqk0D6MXMmLKqQsaqxhHPAWD+Ryc4XZWDCa38aDsKEW8f3nuWlNeH+O2+N+kw
3WTCCIsSfOcGk+KEqFlCRLV7DG2VH1g7L11yAkgGD18JJM5tZBuYk6ViYeM4p/Vx
CBpBbn+SieqVwyXUVyvkUVP8GZXFi5qLdoiU+E8tEdsNEW/1PcZxlMqxwNkFMqIx
slOmjM3T58bov5kcGMiZpYUJWV8Rvlc+LShWfxNEwk6CYpLwvR+WBNgRFi516h3v
7BpDNGcXLWif7XRDEOnGTwr/GO6nYpSrvOT897xQiT+G54hqNVfgwqQh6hBCtDbk
U9g7HPssNCy92MabBg==
-----END CERTIFICATE-----
Generated at Mon Nov 25 18:14:35 2024 by rpki-client on console-fra.rpki-client.org