Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/fwu30KnMoPEStUTqNbd6U26BbJg.roa
File: fwu30KnMoPEStUTqNbd6U26BbJg.roa (raw, json)
Hash identifier: P9JANgJutmxyAXL1qYdm/tzf2rWGuA+R0c4n4OrZ2FI=
Subject key identifier: 7F:0B:B7:D0:A9:CC:A0:F1:12:B5:44:EA:35:B7:7A:53:6E:81:6C:98
Certificate issuer: /CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b
Certificate serial: 018CC86F78E8218805AABC11EEE40E70AD4B
Authority key identifier: B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/fwu30KnMoPEStUTqNbd6U26BbJg.roa
Signing time: Tue 02 Jan 2024 04:29:57 +0000
ROA not before: Tue 02 Jan 2024 04:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64484
IP address blocks: 62.3.33.0/24 maxlen: 24
2a0e:1e40:1::/48 maxlen: 48
2a0e:1e40:c::/48 maxlen: 48
2a0e:1e40::/29 maxlen: 29
2a0e:1e40::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:78:e8:21:88:05:aa:bc:11:ee:e4:0e:70:ad:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b
Validity
Not Before: Jan 2 04:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f0bb7d0a9cca0f112b544ea35b77a536e816c98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4f:b8:9e:08:d4:1a:16:51:82:79:3f:e0:1e:
72:0b:63:4c:ca:8d:f0:2a:a3:5d:19:ac:26:0a:a1:
d3:59:24:bd:90:49:c1:78:3c:e2:93:74:fa:fc:d3:
76:8c:7b:25:08:c6:56:bd:79:b7:5f:06:da:17:29:
bc:5a:20:ae:64:10:b5:00:f3:8a:e5:66:51:23:a1:
48:51:1b:d8:b4:d8:b3:83:45:03:a0:ed:27:91:fb:
b9:54:fc:14:7f:9c:aa:76:16:b3:0f:c8:ba:18:8b:
18:0c:19:60:09:2b:87:0c:94:c9:7f:8a:6f:48:2b:
cc:5b:36:83:d8:b6:a1:80:4f:8b:46:19:94:4c:32:
7e:bb:ac:2d:a5:c1:eb:e5:4f:2e:11:35:90:86:21:
e3:55:26:d4:50:81:89:af:c9:61:62:4b:e2:fc:5a:
32:f7:17:fd:06:6e:48:a0:84:62:b5:67:ea:d8:00:
1e:fb:0c:c7:a7:93:e7:80:45:3c:0d:8f:ba:2a:98:
d7:a4:8f:6f:bc:e8:56:de:df:c6:d1:5f:74:75:6c:
64:d0:12:2d:68:db:fc:5f:b7:40:51:93:3c:25:36:
49:a3:d3:4e:3d:a9:62:24:c6:d9:a4:93:90:70:fa:
f7:d9:d1:6c:cf:cc:49:86:8e:be:bd:d1:4e:fc:49:
4d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0B:B7:D0:A9:CC:A0:F1:12:B5:44:EA:35:B7:7A:53:6E:81:6C:98
X509v3 Authority Key Identifier:
keyid:B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/fwu30KnMoPEStUTqNbd6U26BbJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.33.0/24
IPv6:
2a0e:1e40::/29
Signature Algorithm: sha256WithRSAEncryption
10:fb:ba:2e:02:ab:67:95:d0:43:09:fb:ca:3b:b9:fe:c3:78:
5d:00:7d:38:9f:58:65:d4:f0:6c:a9:a3:73:77:e9:20:cf:ba:
79:4a:1b:df:66:54:56:f5:01:a8:0d:b0:a2:c2:ba:52:df:bd:
36:09:66:dd:6a:5a:fd:d4:d8:ef:72:b1:a1:15:13:08:d7:26:
a8:25:a8:25:6b:84:4e:e3:d8:bd:c8:15:76:5a:5b:f8:7e:16:
c2:09:62:32:f4:9d:64:95:d6:00:a8:47:f3:f6:30:29:dc:6f:
b0:31:31:1d:59:f5:2b:5e:10:2b:df:0a:dd:6c:aa:22:77:1b:
25:48:d6:f0:c2:5b:25:fb:df:a1:26:be:6f:e1:57:99:a5:55:
c7:56:0e:80:48:07:97:d8:6f:13:01:30:02:83:49:39:46:c8:
a0:39:1b:42:e1:97:76:74:f1:20:64:a2:d2:50:ef:ae:f0:15:
4f:74:ca:1e:62:60:d8:e8:5b:c2:44:38:52:94:30:34:35:d4:
c7:46:d0:c0:eb:0a:9f:32:e6:52:85:a8:fe:be:97:eb:b8:f8:
91:a3:b8:9c:95:7e:d2:55:59:19:4b:b4:9f:4f:ca:4c:92:1f:
48:b7:af:15:da:ed:e8:5c:7e:6b:8d:63:73:6a:f4:81:72:a7:
1a:61:61:87
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzIb3joIYgFqrwR7uQOcK1LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MTcxNjI4NzdkYTlmNDAzMGJiY2I5ZmU4YWMxNDNlNmFi
Mjg3MWIwHhcNMjQwMTAyMDQyOTU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjBiYjdkMGE5Y2NhMGYxMTJiNTQ0ZWEzNWI3N2E1MzZlODE2Yzk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArk+4ngjUGhZRgnk/4B5yC2NMyo3w
KqNdGawmCqHTWSS9kEnBeDzik3T6/NN2jHslCMZWvXm3XwbaFym8WiCuZBC1APOK
5WZRI6FIURvYtNizg0UDoO0nkfu5VPwUf5yqdhazD8i6GIsYDBlgCSuHDJTJf4pv
SCvMWzaD2LahgE+LRhmUTDJ+u6wtpcHr5U8uETWQhiHjVSbUUIGJr8lhYkvi/Foy
9xf9Bm5IoIRitWfq2AAe+wzHp5PngEU8DY+6KpjXpI9vvOhW3t/G0V90dWxk0BIt
aNv8X7dAUZM8JTZJo9NOPaliJMbZpJOQcPr32dFsz8xJho6+vdFO/ElN3wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFH8Lt9CpzKDxErVE6jW3elNugWyYMB8GA1UdIwQY
MBaAFLgXFih32p9AMLvLn+isFD5qsocbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUJjV0tIZmFuMEF3dTh1ZjZLd1VQbXF5aHhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS8xNmI3YjQtYmIyMS00YjNlLWFlYjQt
YjI3Y2EyOTFiZDc3LzEvZnd1MzBLbk1vUEVTdFVUcU5iZDZVMjZCYkpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS8xNmI3YjQtYmIyMS00YjNlLWFlYjQtYjI3Y2EyOTFiZDc3
LzEvdUJjV0tIZmFuMEF3dTh1ZjZLd1VQbXF5aHhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAPgMhMA0E
AgACMAcDBQMqDh5AMA0GCSqGSIb3DQEBCwUAA4IBAQAQ+7ouAqtnldBDCfvKO7n+
w3hdAH04n1hl1PBsqaNzd+kgz7p5ShvfZlRW9QGoDbCiwrpS3702CWbdalr91Njv
crGhFRMI1yaoJagla4RO49i9yBV2Wlv4fhbCCWIy9J1kldYAqEfz9jAp3G+wMTEd
WfUrXhAr3wrdbKoidxslSNbwwlsl+9+hJr5v4VeZpVXHVg6ASAeX2G8TATACg0k5
RsigORtC4Zd2dPEgZKLSUO+u8BVPdMoeYmDY6FvCRDhSlDA0NdTHRtDA6wqfMuZS
haj+vpfruPiRo7iclX7SVVkZS7SfT8pMkh9It68V2u3oXH5rjWNzavSBcqcaYWGH
-----END CERTIFICATE-----
Generated at Mon May 20 19:24:49 2024 by rpki-client on console-fra.rpki-client.org