Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/guUGRnzj5pwFHeQhW8ZyJN7k9iQ.roa
File: guUGRnzj5pwFHeQhW8ZyJN7k9iQ.roa (raw, json)
Hash identifier: gLHmuP0nLF/zGn0SSzgY4xfAayhoAMF8AAfJyBCxfuQ=
Subject key identifier: 82:E5:06:46:7C:E3:E6:9C:05:1D:E4:21:5B:C6:72:24:DE:E4:F6:24
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 018CF4AF0799F0921529E3EA0912BDCC0A08
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/guUGRnzj5pwFHeQhW8ZyJN7k9iQ.roa
Signing time: Wed 10 Jan 2024 18:42:40 +0000
ROA not before: Wed 10 Jan 2024 18:42:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202416
IP address blocks: 185.227.5.0/24 maxlen: 24
2a11:100::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 04:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f4:af:07:99:f0:92:15:29:e3:ea:09:12:bd:cc:0a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Jan 10 18:42:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82e506467ce3e69c051de4215bc67224dee4f624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ca:d4:c6:ea:e5:b9:a8:58:d7:99:f5:d8:dc:
20:32:00:47:72:5c:59:0b:a1:dc:df:52:0a:dd:6d:
1e:71:e5:fd:4d:81:50:1f:5e:f8:55:36:7d:29:5f:
c8:da:f7:5e:b6:af:8c:8e:ec:6f:12:bc:21:64:a5:
94:17:bc:77:ca:74:dc:20:32:85:f4:98:4f:f7:e8:
09:46:c6:46:17:d5:66:f9:a7:f7:72:a2:cf:84:d9:
73:d8:a6:43:97:30:02:31:1c:8d:92:fc:da:8e:b8:
bf:71:4b:6f:80:02:ba:90:47:ea:d6:ac:5c:40:3b:
a9:9d:10:70:17:5c:6b:e7:a3:9f:f5:5e:66:0f:ce:
50:a2:dd:9d:1e:2c:07:08:d7:50:f4:0a:3a:aa:87:
d3:ab:c2:53:b9:be:9c:92:f7:8b:a8:47:f1:ca:26:
06:a5:59:b1:c2:f8:ed:47:6f:ab:60:43:86:99:06:
a9:6f:29:f7:10:0d:af:9c:d8:38:e3:f1:d0:cf:04:
97:03:61:a4:4e:98:8d:16:03:77:02:25:e4:a5:d8:
88:ce:a2:07:ec:85:c8:5e:33:da:de:bb:63:a2:07:
11:22:19:76:d7:85:d6:8d:83:76:73:fd:7c:d4:3f:
3d:30:ee:14:04:49:bd:d4:78:15:8d:fc:20:09:71:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E5:06:46:7C:E3:E6:9C:05:1D:E4:21:5B:C6:72:24:DE:E4:F6:24
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/guUGRnzj5pwFHeQhW8ZyJN7k9iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.5.0/24
IPv6:
2a11:100::/29
Signature Algorithm: sha256WithRSAEncryption
93:bb:d1:72:65:ff:fd:a1:e9:1b:ed:65:f9:aa:7e:f4:ac:c2:
45:7a:83:13:6d:62:09:a2:ee:4e:6e:db:fe:09:4e:49:79:c1:
5b:67:56:ba:dd:89:8a:ec:93:bb:69:99:f2:54:ea:4e:f8:82:
d7:d9:ea:d1:5d:d7:07:22:7e:cf:aa:5b:6b:f1:5c:69:95:32:
ac:b8:ec:cd:ca:d4:5a:30:a4:bf:bf:e1:6a:a8:88:72:5b:e1:
e9:ee:f6:20:e3:e9:51:09:a7:0d:59:d3:90:6a:91:cf:51:05:
3d:6b:b2:c6:d9:d2:aa:bb:bf:dc:38:0f:c9:7b:54:be:36:be:
4d:68:c4:0f:9d:43:e4:3f:ba:79:ef:68:3f:50:7f:8b:a6:58:
86:3d:68:99:86:80:77:42:4a:f7:fe:58:b5:a9:a8:13:7b:81:
d2:48:23:a8:28:8b:0f:1a:20:9d:90:e4:21:44:5f:ee:bd:45:
ec:3d:0d:b8:bb:95:e6:f5:70:84:41:2e:63:14:29:3c:3d:49:
2f:1d:65:c4:28:27:ca:2b:ab:b6:6a:66:21:3d:b6:40:1e:38:
97:49:ec:ca:ee:04:f9:62:03:b2:8c:66:d0:46:aa:62:e8:7d:
18:a7:bd:b0:a2:40:c8:94:6d:e6:44:4c:45:97:a8:3c:a0:95:
c4:ea:b9:cf
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYz0rweZ8JIVKePqCRK9zAoIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNDQzMzg2NTk4NWE3YmI1ZTI2OWMzNzk0YWU2ZjE2NGNm
YzJkZGIwHhcNMjQwMTEwMTg0MjQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmU1MDY0NjdjZTNlNjljMDUxZGU0MjE1YmM2NzIyNGRlZTRmNjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68rUxurluahY15n12NwgMgBHclxZ
C6Hc31IK3W0eceX9TYFQH174VTZ9KV/I2vdetq+MjuxvErwhZKWUF7x3ynTcIDKF
9JhP9+gJRsZGF9Vm+af3cqLPhNlz2KZDlzACMRyNkvzajri/cUtvgAK6kEfq1qxc
QDupnRBwF1xr56Of9V5mD85Qot2dHiwHCNdQ9Ao6qofTq8JTub6ckveLqEfxyiYG
pVmxwvjtR2+rYEOGmQapbyn3EA2vnNg44/HQzwSXA2GkTpiNFgN3AiXkpdiIzqIH
7IXIXjPa3rtjogcRIhl214XWjYN2c/181D89MO4UBEm91HgVjfwgCXEkBwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFILlBkZ84+acBR3kIVvGciTe5PYkMB8GA1UdIwQY
MBaAFLpEM4ZZhae7XiacN5SubxZM/C3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEt
M2ExMjAyNzQwMGU2LzEvZ3VVR1Juemo1cHdGSGVRaFc4WnlKTjdrOWlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEtM2ExMjAyNzQwMGU2
LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAueMFMA0E
AgACMAcDBQMqEQEAMA0GCSqGSIb3DQEBCwUAA4IBAQCTu9FyZf/9oekb7WX5qn70
rMJFeoMTbWIJou5Obtv+CU5JecFbZ1a63YmK7JO7aZnyVOpO+ILX2erRXdcHIn7P
qltr8VxplTKsuOzNytRaMKS/v+FqqIhyW+Hp7vYg4+lRCacNWdOQapHPUQU9a7LG
2dKqu7/cOA/Je1S+Nr5NaMQPnUPkP7p572g/UH+LpliGPWiZhoB3Qkr3/li1qagT
e4HSSCOoKIsPGiCdkOQhRF/uvUXsPQ24u5Xm9XCEQS5jFCk8PUkvHWXEKCfKK6u2
amYhPbZAHjiXSezK7gT5YgOyjGbQRqpi6H0Yp72wokDIlG3mRExFl6g8oJXE6rnP
-----END CERTIFICATE-----
Generated at Mon Jun 3 10:38:36 2024 by rpki-client on console-ams.rpki-client.org