Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/V6lXCsmtwaHoC0CGRpIbMOCyXNQ.roa
File: V6lXCsmtwaHoC0CGRpIbMOCyXNQ.roa (raw, json)
Hash identifier: q4pj9gn7F+GfhHNvLb83AeTay2Z/hjge0RYnnAsEodg=
Subject key identifier: 57:A9:57:0A:C9:AD:C1:A1:E8:0B:40:86:46:92:1B:30:E0:B2:5C:D4
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01924B6E3E5A7CAC72DCD50F8E7DC62DB7D5
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/V6lXCsmtwaHoC0CGRpIbMOCyXNQ.roa
Signing time: Wed 02 Oct 2024 04:12:48 +0000
ROA not before: Wed 02 Oct 2024 04:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201021
IP address blocks: 77.81.88.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
86.107.51.0/24 maxlen: 24
89.37.194.0/24 maxlen: 24
89.39.125.0/24 maxlen: 24
89.43.62.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
93.90.75.0/24 maxlen: 24
93.115.105.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4b:6e:3e:5a:7c:ac:72:dc:d5:0f:8e:7d:c6:2d:b7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 2 04:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57a9570ac9adc1a1e80b408646921b30e0b25cd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b5:7a:fd:8e:3d:e4:69:ac:2c:d2:84:cf:1b:
f2:cf:4a:b9:a2:29:62:6d:8e:f5:5a:bf:49:43:5e:
97:16:5f:cd:a5:67:2e:68:8d:85:b4:36:18:0a:b2:
77:2d:f8:c6:cd:cb:2e:4b:8e:5d:50:a3:1b:87:34:
ec:45:3a:bd:18:0c:a6:7e:3c:38:21:b0:aa:13:2e:
22:74:c4:57:aa:9c:a1:94:9d:33:67:3c:25:89:a2:
51:5d:a7:9d:93:6b:22:7d:12:9a:1a:78:55:31:bf:
64:02:0c:0f:e0:20:ec:0a:26:9f:7d:a8:2d:4f:89:
da:bf:d6:d2:11:28:7e:3d:71:32:10:6e:36:00:13:
29:7d:8d:e5:5d:9e:22:ed:02:45:8e:6c:b9:2c:be:
45:2f:5b:8a:69:8d:1d:47:59:86:91:2a:f9:74:48:
2f:85:68:07:a7:57:18:f1:6a:4c:75:d1:33:3e:24:
f9:c7:c3:0d:9b:81:83:78:c6:0a:78:47:b0:33:47:
2c:d4:bd:0a:01:3e:e1:16:6f:41:a7:a4:36:2e:84:
15:89:5a:b4:97:2a:05:03:cc:17:dc:b3:d5:d0:e5:
35:9e:05:4f:0c:25:97:7d:24:f2:10:03:9e:27:1b:
43:6e:2b:6e:98:ed:c7:3d:a1:64:da:96:b0:1e:12:
f2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A9:57:0A:C9:AD:C1:A1:E8:0B:40:86:46:92:1B:30:E0:B2:5C:D4
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/V6lXCsmtwaHoC0CGRpIbMOCyXNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.88.0/24
77.81.100.0/24
86.107.51.0/24
89.37.194.0/24
89.39.125.0/24
89.43.62.0/24
89.45.162.0/24
93.90.75.0/24
93.115.105.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:81:66:74:6d:5e:05:9b:86:18:fd:62:3e:ee:f0:a9:5f:fe:
51:17:27:26:12:b1:e2:84:29:49:c4:22:6c:6b:12:db:f6:88:
b8:1b:00:24:4b:63:58:c0:1b:70:5b:1b:5f:88:37:92:cc:93:
92:65:f8:1e:be:2b:e5:be:15:1a:da:3f:7e:91:f5:92:cd:4c:
9d:bf:49:ec:b9:dd:ee:90:53:46:cf:0a:18:14:57:6b:8f:9c:
59:e9:7e:4b:ef:64:ce:cb:72:8b:ff:54:58:52:dc:b1:3d:ea:
a1:84:5f:e0:01:5f:89:1b:42:59:f0:bb:b7:07:f8:2f:78:a6:
3e:3e:23:2c:c5:86:60:70:62:2d:9a:22:73:3b:cf:50:fd:3e:
9a:fe:32:ab:8d:f3:a8:33:da:57:06:0d:76:4d:1d:b7:c5:06:
d5:e6:a0:81:96:dd:44:de:e1:eb:9e:a3:f4:c0:77:95:68:cd:
c3:2f:e5:41:76:c2:8b:49:e1:98:ef:e5:7a:fb:e7:f8:b3:e7:
87:8d:c8:ec:94:48:9c:9e:e1:3f:f9:20:97:ab:dc:43:27:29:
9b:6a:8e:15:8b:ff:2b:17:c6:90:c7:2e:65:34:ac:8a:75:41:
be:40:79:c1:55:dc:3c:8d:00:b7:39:45:dc:a5:41:80:bf:b7:
e8:c4:bf:3e
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAZJLbj5afKxy3NUPjn3GLbfVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQxMDAyMDQxMjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1N2E5NTcwYWM5YWRjMWExZTgwYjQwODY0NjkyMWIzMGUwYjI1Y2Q0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbV6/Y495GmsLNKEzxvyz0q5oili
bY71Wr9JQ16XFl/NpWcuaI2FtDYYCrJ3LfjGzcsuS45dUKMbhzTsRTq9GAymfjw4
IbCqEy4idMRXqpyhlJ0zZzwliaJRXaedk2sifRKaGnhVMb9kAgwP4CDsCiaffagt
T4nav9bSESh+PXEyEG42ABMpfY3lXZ4i7QJFjmy5LL5FL1uKaY0dR1mGkSr5dEgv
hWgHp1cY8WpMddEzPiT5x8MNm4GDeMYKeEewM0cs1L0KAT7hFm9Bp6Q2LoQViVq0
lyoFA8wX3LPV0OU1ngVPDCWXfSTyEAOeJxtDbitumO3HPaFk2pawHhLyJwIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFFepVwrJrcGh6AtAhkaSGzDgslzUMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvVjZsWENzbXR3YUhvQzBDR1JwSWJNT0N5WE5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQATVFYAwQA
TVFkAwQAVmszAwQAWSXCAwQAWSd9AwQAWSs+AwQAWS2iAwQAXVpLAwQAXXNpAwQA
vPGJMA0GCSqGSIb3DQEBCwUAA4IBAQBfgWZ0bV4Fm4YY/WI+7vCpX/5RFycmErHi
hClJxCJsaxLb9oi4GwAkS2NYwBtwWxtfiDeSzJOSZfgevivlvhUa2j9+kfWSzUyd
v0nsud3ukFNGzwoYFFdrj5xZ6X5L72TOy3KL/1RYUtyxPeqhhF/gAV+JG0JZ8Lu3
B/gveKY+PiMsxYZgcGItmiJzO89Q/T6a/jKrjfOoM9pXBg12TR23xQbV5qCBlt1E
3uHrnqP0wHeVaM3DL+VBdsKLSeGY7+V6++f4s+eHjcjslEicnuE/+SCXq9xDJymb
ao4Vi/8rF8aQxy5lNKyKdUG+QHnBVdw8jQC3OUXcpUGAv7foxL8+
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:27:04 2024 by rpki-client on console-ams.rpki-client.org