Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/ixWVJ0EBFpJEY9INGQcSm8_Q6xk.roa
File: ixWVJ0EBFpJEY9INGQcSm8_Q6xk.roa (raw, json)
Hash identifier: aPox4aVr0Yn0oi8P04UoPHAgL3jhX3emiLGVOWoAxHc=
Subject key identifier: 8B:15:95:27:41:01:16:92:44:63:D2:0D:19:07:12:9B:CF:D0:EB:19
Certificate issuer: /CN=d2d38f4597051b6c0ddf1bb866ae4e94703e155e
Certificate serial: 01914C18817AF016C84E0AD717FC0FA2AD4C
Authority key identifier: D2:D3:8F:45:97:05:1B:6C:0D:DF:1B:B8:66:AE:4E:94:70:3E:15:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/ixWVJ0EBFpJEY9INGQcSm8_Q6xk.roa
Signing time: Tue 13 Aug 2024 14:15:59 +0000
ROA not before: Tue 13 Aug 2024 14:15:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49724
IP address blocks: 91.215.220.0/22 maxlen: 22
91.215.220.0/24 maxlen: 24
91.215.221.0/24 maxlen: 24
91.215.222.0/23 maxlen: 23
188.0.160.0/19 maxlen: 19
188.0.160.0/20 maxlen: 20
188.0.162.0/24 maxlen: 24
188.0.166.0/23 maxlen: 23
188.0.169.0/24 maxlen: 24
188.0.175.0/24 maxlen: 24
188.0.176.0/21 maxlen: 21
188.0.178.0/24 maxlen: 24
188.0.179.0/24 maxlen: 24
188.0.180.0/24 maxlen: 24
188.0.183.0/24 maxlen: 24
188.0.184.0/22 maxlen: 22
188.0.186.0/24 maxlen: 24
188.0.188.0/24 maxlen: 24
188.0.189.0/24 maxlen: 24
188.0.190.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4c:18:81:7a:f0:16:c8:4e:0a:d7:17:fc:0f:a2:ad:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d38f4597051b6c0ddf1bb866ae4e94703e155e
Validity
Not Before: Aug 13 14:15:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b159527410116924463d20d1907129bcfd0eb19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:37:49:49:dc:5a:67:2a:b1:05:ee:8a:93:
0c:46:fd:a0:c3:3e:c0:64:3b:45:a1:55:df:bb:d3:
ff:dd:b3:3e:18:db:2c:a0:12:08:7e:9f:97:89:86:
b4:86:97:7a:82:dc:92:87:83:0d:18:d4:25:63:87:
67:e2:f4:8c:de:de:9a:f8:db:54:a6:19:c2:8b:a3:
6a:53:f7:d8:2a:7b:5b:4e:58:12:68:4d:17:86:a7:
07:2c:29:b9:7c:af:ab:0d:93:58:d7:46:e3:50:8a:
e5:ae:fb:ae:1b:13:2a:d7:9d:b1:15:26:24:d0:59:
a7:b7:25:5f:d7:55:cd:94:20:04:00:01:3a:aa:12:
e2:f2:0d:88:38:5c:c6:1b:9a:95:60:03:b4:d0:05:
52:ff:0d:dc:35:73:9e:a0:73:db:58:9a:2d:80:7b:
3a:29:33:9a:73:3e:29:92:c2:ac:0e:91:db:91:ed:
03:1f:e2:63:9c:a0:79:c5:9d:b0:35:5e:d8:d9:f9:
14:0a:da:8e:92:06:e6:b9:c7:97:ac:6a:55:f8:82:
77:b3:64:17:c6:8a:dc:05:b2:19:2d:12:c6:2e:9c:
b1:e4:c3:09:2f:66:55:0c:5b:0a:c9:45:36:b8:81:
aa:87:a5:9a:4a:37:16:1e:00:85:4f:81:2a:cc:e4:
c2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:15:95:27:41:01:16:92:44:63:D2:0D:19:07:12:9B:CF:D0:EB:19
X509v3 Authority Key Identifier:
keyid:D2:D3:8F:45:97:05:1B:6C:0D:DF:1B:B8:66:AE:4E:94:70:3E:15:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/ixWVJ0EBFpJEY9INGQcSm8_Q6xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8e7d77-89c8-452c-a9bf-bc5f897c724a/1/0tOPRZcFG2wN3xu4Zq5OlHA-FV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.220.0/22
188.0.160.0/19
Signature Algorithm: sha256WithRSAEncryption
a1:90:fe:a9:ec:4d:a4:4e:1d:86:bc:5a:9c:6f:f3:68:1c:fd:
01:d2:d3:0f:8d:94:51:7e:14:79:06:76:71:c7:6e:62:0f:37:
19:3a:95:2b:87:04:2c:6b:d9:d5:af:5e:b8:54:db:ea:ca:4f:
b4:42:66:71:8a:52:f2:27:d5:49:f5:7d:09:86:c4:23:ec:f6:
f8:e2:d1:05:f4:9c:84:8c:e4:00:97:4e:27:6a:9e:76:2f:70:
72:55:6e:7d:cb:13:92:a0:80:1e:12:94:86:75:18:55:c9:1e:
84:08:b9:0a:01:3a:73:c3:4d:1b:03:54:37:41:d6:9f:4b:ae:
30:99:71:95:8c:9a:aa:7b:7f:92:ed:61:74:e6:0c:1e:ef:3f:
4a:1d:7d:1e:8d:69:ac:9f:db:1e:92:64:e6:7e:c6:6a:8c:61:
21:da:65:3d:2b:c3:f5:f2:b5:03:24:01:a7:5a:27:02:3a:ac:
ec:3d:7b:27:3a:58:ff:51:8b:05:73:a2:3f:a0:fa:31:ae:a4:
ec:a7:28:5b:05:56:aa:1b:ac:ce:24:86:9f:c7:70:df:e0:f7:
b2:51:69:7e:52:83:6e:7e:ea:ba:31:da:5e:42:31:1e:7b:7c:
c1:37:00:69:5a:7b:36:c2:a3:a7:1f:66:87:a4:5b:3a:81:5a:
8c:a0:20:b6
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFMGIF68BbITgrXF/wPoq1MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyZDM4ZjQ1OTcwNTFiNmMwZGRmMWJiODY2YWU0ZTk0NzAz
ZTE1NWUwHhcNMjQwODEzMTQxNTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjE1OTUyNzQxMDExNjkyNDQ2M2QyMGQxOTA3MTI5YmNmZDBlYjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiE3SUncWmcqsQXuipMMRv2gwz7A
ZDtFoVXfu9P/3bM+GNssoBIIfp+XiYa0hpd6gtySh4MNGNQlY4dn4vSM3t6a+NtU
phnCi6NqU/fYKntbTlgSaE0XhqcHLCm5fK+rDZNY10bjUIrlrvuuGxMq152xFSYk
0FmntyVf11XNlCAEAAE6qhLi8g2IOFzGG5qVYAO00AVS/w3cNXOeoHPbWJotgHs6
KTOacz4pksKsDpHbke0DH+JjnKB5xZ2wNV7Y2fkUCtqOkgbmuceXrGpV+IJ3s2QX
xorcBbIZLRLGLpyx5MMJL2ZVDFsKyUU2uIGqh6WaSjcWHgCFT4EqzOTC9QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIsVlSdBARaSRGPSDRkHEpvP0OsZMB8GA1UdIwQY
MBaAFNLTj0WXBRtsDd8buGauTpRwPhVeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHRPUFJaY0ZHMndOM3h1NFpxNU9sSEEtRlY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi84ZTdkNzctODljOC00NTJjLWE5YmYt
YmM1Zjg5N2M3MjRhLzEvaXhXVkowRUJGcEpFWTlJTkdRY1NtOF9RNnhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi84ZTdkNzctODljOC00NTJjLWE5YmYtYmM1Zjg5N2M3MjRh
LzEvMHRPUFJaY0ZHMndOM3h1NFpxNU9sSEEtRlY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW9fcAwQF
vACgMA0GCSqGSIb3DQEBCwUAA4IBAQChkP6p7E2kTh2GvFqcb/NoHP0B0tMPjZRR
fhR5BnZxx25iDzcZOpUrhwQsa9nVr164VNvqyk+0QmZxilLyJ9VJ9X0JhsQj7Pb4
4tEF9JyEjOQAl04nap52L3ByVW59yxOSoIAeEpSGdRhVyR6ECLkKATpzw00bA1Q3
QdafS64wmXGVjJqqe3+S7WF05gwe7z9KHX0ejWmsn9sekmTmfsZqjGEh2mU9K8P1
8rUDJAGnWicCOqzsPXsnOlj/UYsFc6I/oPoxrqTspyhbBVaqG6zOJIafx3Df4Pey
UWl+UoNufuq6MdpeQjEee3zBNwBpWns2wqOnH2aHpFs6gVqMoCC2
-----END CERTIFICATE-----
Generated at Fri Dec 27 23:17:25 2024 by rpki-client on console-ams.rpki-client.org