Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/wM9uy_urNTrOFIHWrmFJW2ybvao.roa
File: wM9uy_urNTrOFIHWrmFJW2ybvao.roa (raw, json)
Hash identifier: cTGkdLln7b0tJErvdp7U1g9vmevxBrnyzfqgckYITvc=
Subject key identifier: C0:CF:6E:CB:FB:AB:35:3A:CE:14:81:D6:AE:61:49:5B:6C:9B:BD:AA
Certificate issuer: /CN=9de783e9acd56992f5835fb4882183500ca03c83
Certificate serial: 018D6A819F4356E2200BD437DA130E19B139
Authority key identifier: 9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/wM9uy_urNTrOFIHWrmFJW2ybvao.roa
Signing time: Fri 02 Feb 2024 15:48:16 +0000
ROA not before: Fri 02 Feb 2024 15:48:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 62.182.168.0/21 maxlen: 21
62.182.168.0/24 maxlen: 24
62.182.169.0/24 maxlen: 24
62.182.170.0/24 maxlen: 24
62.182.171.0/24 maxlen: 24
62.182.172.0/24 maxlen: 24
62.182.173.0/24 maxlen: 24
62.182.174.0/24 maxlen: 24
62.182.175.0/24 maxlen: 24
83.97.96.0/21 maxlen: 21
83.97.96.0/24 maxlen: 24
83.97.97.0/24 maxlen: 24
83.97.98.0/24 maxlen: 24
83.97.99.0/24 maxlen: 24
83.97.100.0/24 maxlen: 24
83.97.101.0/24 maxlen: 24
83.97.102.0/24 maxlen: 24
83.97.103.0/24 maxlen: 24
89.47.52.0/24 maxlen: 24
89.47.252.0/24 maxlen: 24
91.202.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 22:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:81:9f:43:56:e2:20:0b:d4:37:da:13:0e:19:b1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9de783e9acd56992f5835fb4882183500ca03c83
Validity
Not Before: Feb 2 15:48:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0cf6ecbfbab353ace1481d6ae61495b6c9bbdaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e9:a9:c9:c9:d0:5e:4b:e6:2d:98:67:d7:98:
9e:1c:7a:02:bc:7f:17:4a:25:b3:15:2f:03:63:4f:
bd:1b:3b:a8:54:d1:3e:69:68:1f:6c:90:da:1e:0f:
0e:ce:cc:3d:60:c5:0b:cf:5a:c6:f2:86:cc:a3:ca:
c0:cc:20:de:bb:6e:5b:9a:1c:2a:00:c8:b4:aa:88:
a1:72:ec:a1:07:b7:3d:db:ae:fc:9f:9d:ad:58:41:
b2:e9:34:11:db:09:45:86:5f:ab:c4:dc:9a:67:48:
db:9f:3b:6a:53:2d:53:38:31:ad:6f:d7:84:1a:44:
2e:e3:55:93:b9:3c:74:ca:bb:21:85:d1:36:30:77:
c2:76:ef:1d:bf:fd:62:63:b7:21:fd:de:69:40:f8:
45:72:20:6d:a5:f8:b4:fe:9a:e0:b2:4d:d3:e4:3b:
07:ae:60:89:55:23:50:35:0d:70:dd:a7:95:db:38:
aa:29:c1:3a:d8:4c:93:a2:c7:5a:26:43:1b:ea:31:
63:51:ea:56:e9:08:94:7f:eb:01:2e:d2:ca:85:c4:
fd:cd:5e:f8:fa:3f:16:93:1c:64:51:26:54:c5:83:
55:dd:cb:f7:c3:90:21:17:64:68:b3:02:c5:95:5f:
89:09:09:76:e4:0f:c1:aa:41:9e:52:26:07:f2:11:
9c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CF:6E:CB:FB:AB:35:3A:CE:14:81:D6:AE:61:49:5B:6C:9B:BD:AA
X509v3 Authority Key Identifier:
keyid:9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/wM9uy_urNTrOFIHWrmFJW2ybvao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.168.0/21
83.97.96.0/21
89.47.52.0/24
89.47.252.0/24
91.202.211.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0a:cc:c6:d1:87:f2:79:84:7c:c4:48:82:9b:8f:7a:6b:31:
9b:27:2c:77:05:ff:39:59:c5:a7:11:a5:7e:96:91:43:62:3b:
65:94:8b:48:e2:27:a9:b6:04:65:e1:e7:c4:b8:fc:2f:bf:54:
89:a3:51:88:bb:0b:96:c2:a3:36:a0:62:0c:ac:47:ac:73:12:
33:f9:cf:c1:24:a9:75:3e:fd:e6:5e:22:26:e3:05:f4:7f:7a:
a3:91:26:0a:d0:7e:7b:e0:ce:c6:b4:8b:e9:ba:1e:f9:3a:88:
f2:6c:25:c2:2d:33:97:08:5a:b8:f3:09:4a:29:36:07:ff:d7:
de:07:5d:0b:d5:03:96:ea:80:9a:47:f9:c0:4c:74:23:a6:63:
5b:77:ec:b1:02:9a:f2:4d:f7:aa:84:e2:7e:21:82:64:b9:2a:
10:59:cc:f1:77:50:7d:ec:8b:dd:00:f0:47:2b:0f:db:a4:8c:
2f:fe:5a:42:3f:ad:72:5b:91:73:59:d6:22:e7:96:61:db:52:
13:b2:1d:ac:b9:b8:f1:6f:74:9d:9b:c8:54:b7:95:24:71:19:
7d:2e:58:8a:0b:8d:04:47:2d:42:e9:77:36:8a:05:86:b0:b1:
56:02:b8:11:0c:76:02:a7:1f:5d:f3:10:d4:b4:94:7f:b7:8a:
21:70:36:93
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAY1qgZ9DVuIgC9Q32hMOGbE5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkZTc4M2U5YWNkNTY5OTJmNTgzNWZiNDg4MjE4MzUwMGNh
MDNjODMwHhcNMjQwMjAyMTU0ODE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGNmNmVjYmZiYWIzNTNhY2UxNDgxZDZhZTYxNDk1YjZjOWJiZGFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkempycnQXkvmLZhn15ieHHoCvH8X
SiWzFS8DY0+9GzuoVNE+aWgfbJDaHg8Ozsw9YMULz1rG8obMo8rAzCDeu25bmhwq
AMi0qoihcuyhB7c92678n52tWEGy6TQR2wlFhl+rxNyaZ0jbnztqUy1TODGtb9eE
GkQu41WTuTx0yrshhdE2MHfCdu8dv/1iY7ch/d5pQPhFciBtpfi0/prgsk3T5DsH
rmCJVSNQNQ1w3aeV2ziqKcE62EyTosdaJkMb6jFjUepW6QiUf+sBLtLKhcT9zV74
+j8WkxxkUSZUxYNV3cv3w5AhF2RoswLFlV+JCQl25A/BqkGeUiYH8hGcKwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFMDPbsv7qzU6zhSB1q5hSVtsm72qMB8GA1UdIwQY
MBaAFJ3ng+ms1WmS9YNftIghg1AMoDyDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmVlRDZhelZhWkwxZzEtMGlDR0RVQXlnUElNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi80ZjA1Y2UtYTM4Mi00OWEwLTk5OTkt
ZTUyZjcwYzA2YzI5LzEvd005dXlfdXJOVHJPRklIV3JtRkpXMnlidmFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi80ZjA1Y2UtYTM4Mi00OWEwLTk5OTktZTUyZjcwYzA2YzI5
LzEvbmVlRDZhelZhWkwxZzEtMGlDR0RVQXlnUElNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQDPraoAwQD
U2FgAwQAWS80AwQAWS/8AwQAW8rTMA0GCSqGSIb3DQEBCwUAA4IBAQBICszG0Yfy
eYR8xEiCm496azGbJyx3Bf85WcWnEaV+lpFDYjtllItI4ieptgRl4efEuPwvv1SJ
o1GIuwuWwqM2oGIMrEescxIz+c/BJKl1Pv3mXiIm4wX0f3qjkSYK0H574M7GtIvp
uh75OojybCXCLTOXCFq48wlKKTYH/9feB10L1QOW6oCaR/nATHQjpmNbd+yxApry
TfeqhOJ+IYJkuSoQWczxd1B97IvdAPBHKw/bpIwv/lpCP61yW5FzWdYi55Zh21IT
sh2subjxb3Sdm8hUt5UkcRl9LliKC40ERy1C6Xc2igWGsLFWArgRDHYCpx9d8xDU
tJR/t4ohcDaT
-----END CERTIFICATE-----
Generated at Thu May 2 06:47:24 2024 by rpki-client on console-fra.rpki-client.org