Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/zujPtX1D6vwCIk89ER10Zmj5iIg.roa
File: zujPtX1D6vwCIk89ER10Zmj5iIg.roa (raw, json)
Hash identifier: d8/iZMZRKxN/oiUdT8Y0CyNS0X69aVt1xZiucCuciRE=
Subject key identifier: CE:E8:CF:B5:7D:43:EA:FC:02:22:4F:3D:11:1D:74:66:68:F9:88:88
Certificate issuer: /CN=7015ed275005408d2a86a2303701744430eda34a
Certificate serial: 018CC7272FA1356B05E664929B1661E6D58B
Authority key identifier: 70:15:ED:27:50:05:40:8D:2A:86:A2:30:37:01:74:44:30:ED:A3:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/zujPtX1D6vwCIk89ER10Zmj5iIg.roa
Signing time: Mon 01 Jan 2024 22:31:23 +0000
ROA not before: Mon 01 Jan 2024 22:31:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 193.25.48.0/24 maxlen: 24
193.25.49.0/24 maxlen: 24
193.25.50.0/24 maxlen: 24
193.25.51.0/24 maxlen: 24
193.25.55.0/24 maxlen: 24
193.25.56.0/24 maxlen: 24
193.25.54.0/24 maxlen: 24
193.25.57.0/24 maxlen: 24
193.25.58.0/24 maxlen: 24
193.25.52.0/24 maxlen: 24
193.25.53.0/24 maxlen: 24
193.25.59.0/24 maxlen: 24
193.25.62.0/24 maxlen: 24
193.25.63.0/24 maxlen: 24
193.25.60.0/24 maxlen: 24
193.25.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/cBXtJ1AFQI0qhqIwNwF0RDDto0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/cBXtJ1AFQI0qhqIwNwF0RDDto0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:2f:a1:35:6b:05:e6:64:92:9b:16:61:e6:d5:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7015ed275005408d2a86a2303701744430eda34a
Validity
Not Before: Jan 1 22:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cee8cfb57d43eafc02224f3d111d746668f98888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:63:52:d7:a7:53:11:f7:40:00:ca:10:c8:e9:
b7:19:13:06:e9:e7:92:67:6c:e7:c3:0f:7e:a4:81:
a7:2a:b4:ea:eb:f9:b0:56:bf:7f:49:a2:47:97:15:
80:14:61:2a:58:5d:9d:3a:ae:79:58:88:1e:da:d0:
cc:ab:bd:99:0c:17:7f:10:e2:ba:51:8b:3f:f2:2f:
58:6f:83:3d:0c:20:b0:24:a0:98:c2:c4:de:9c:dc:
b4:09:b2:14:55:a7:62:7c:13:cb:32:c4:cc:01:2d:
51:fc:65:ed:5d:72:fc:c9:c3:f2:8b:33:f9:d7:4a:
91:4b:3e:48:19:da:b9:67:e9:5c:6f:09:f2:f1:8f:
dd:9e:95:8c:33:8a:3b:86:17:78:dd:5f:77:09:4a:
f6:ed:4d:29:53:28:59:11:3e:f6:53:fe:cc:09:07:
3c:8d:b5:a5:16:50:b3:36:22:32:b0:1a:64:0a:29:
27:9b:91:ca:ff:ea:fa:d6:dd:39:dd:1d:65:90:7b:
0f:21:db:b9:da:c3:34:67:32:cc:ff:d3:06:5e:c5:
b6:aa:23:5d:83:fd:df:67:32:16:4e:c2:86:a8:5b:
80:f8:95:06:f4:f1:c7:df:6d:51:05:5b:5c:d8:54:
9a:bd:cc:21:4d:93:f2:a4:5f:fe:69:f1:46:ea:04:
95:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E8:CF:B5:7D:43:EA:FC:02:22:4F:3D:11:1D:74:66:68:F9:88:88
X509v3 Authority Key Identifier:
keyid:70:15:ED:27:50:05:40:8D:2A:86:A2:30:37:01:74:44:30:ED:A3:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/zujPtX1D6vwCIk89ER10Zmj5iIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/cBXtJ1AFQI0qhqIwNwF0RDDto0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a0:6f:46:45:e3:19:cc:0f:55:58:b2:75:65:0e:78:32:8d:0a:
98:ba:af:5c:b8:fe:e1:4d:2f:0d:d2:33:f8:b5:91:81:d5:18:
09:38:20:0e:3e:ed:e2:5a:8b:4a:47:80:b4:5b:56:cc:50:fb:
a0:f5:6e:33:b7:c9:cb:63:ad:67:12:48:92:8f:32:ed:73:00:
db:5f:1e:5a:f4:c2:6f:91:50:80:5d:5f:55:86:4d:59:e1:bb:
e6:57:cf:3e:e5:4a:d4:42:1c:6d:c1:01:31:36:4a:9c:a5:fb:
ef:1a:cd:82:38:78:63:81:28:00:03:93:a2:ee:b3:c0:9c:f6:
32:fa:65:c9:9f:89:dc:51:69:c1:2b:3e:7d:29:65:93:fe:43:
7d:57:14:1a:7c:d7:6d:74:36:3e:59:99:33:36:e0:03:f6:d4:
1e:6f:a8:8e:9e:02:a3:36:57:b1:c6:91:58:46:e7:66:b9:d6:
80:16:ae:8a:26:27:51:68:78:ad:2d:4e:08:f1:8d:10:97:a9:
54:6c:c8:aa:be:db:29:fd:51:0d:98:f0:fa:6e:0d:7a:12:0b:
3b:90:b4:69:1c:3e:5f:79:f0:2a:9d:84:bf:9e:b3:19:a3:9d:
2a:1f:ba:9d:b8:fe:f9:9c:d4:34:c9:87:10:32:9e:04:c4:94:
dd:66:f9:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJy+hNWsF5mSSmxZh5tWLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMTVlZDI3NTAwNTQwOGQyYTg2YTIzMDM3MDE3NDQ0MzBl
ZGEzNGEwHhcNMjQwMTAxMjIzMTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWU4Y2ZiNTdkNDNlYWZjMDIyMjRmM2QxMTFkNzQ2NjY4Zjk4ODg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGNS16dTEfdAAMoQyOm3GRMG6eeS
Z2znww9+pIGnKrTq6/mwVr9/SaJHlxWAFGEqWF2dOq55WIge2tDMq72ZDBd/EOK6
UYs/8i9Yb4M9DCCwJKCYwsTenNy0CbIUVadifBPLMsTMAS1R/GXtXXL8ycPyizP5
10qRSz5IGdq5Z+lcbwny8Y/dnpWMM4o7hhd43V93CUr27U0pUyhZET72U/7MCQc8
jbWlFlCzNiIysBpkCiknm5HK/+r61t053R1lkHsPIdu52sM0ZzLM/9MGXsW2qiNd
g/3fZzIWTsKGqFuA+JUG9PHH321RBVtc2FSavcwhTZPypF/+afFG6gSVJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM7oz7V9Q+r8AiJPPREddGZo+YiIMB8GA1UdIwQY
MBaAFHAV7SdQBUCNKoaiMDcBdEQw7aNKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0JYdEoxQUZRSTBxaHFJd053RjBSRER0bzBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9kZGY1MjktMTUzNi00NGYwLTllZGEt
NGRhZDQ4YTE2ZTQyLzEvenVqUHRYMUQ2dndDSWs4OUVSMTBabWo1aUlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9kZGY1MjktMTUzNi00NGYwLTllZGEtNGRhZDQ4YTE2ZTQy
LzEvY0JYdEoxQUZRSTBxaHFJd053RjBSRER0bzBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEwRkwMA0G
CSqGSIb3DQEBCwUAA4IBAQCgb0ZF4xnMD1VYsnVlDngyjQqYuq9cuP7hTS8N0jP4
tZGB1RgJOCAOPu3iWotKR4C0W1bMUPug9W4zt8nLY61nEkiSjzLtcwDbXx5a9MJv
kVCAXV9Vhk1Z4bvmV88+5UrUQhxtwQExNkqcpfvvGs2COHhjgSgAA5Oi7rPAnPYy
+mXJn4ncUWnBKz59KWWT/kN9VxQafNdtdDY+WZkzNuAD9tQeb6iOngKjNlexxpFY
RudmudaAFq6KJidRaHitLU4I8Y0Ql6lUbMiqvtsp/VENmPD6bg16Egs7kLRpHD5f
efAqnYS/nrMZo50qH7qduP75nNQ0yYcQMp4ExJTdZvkL
-----END CERTIFICATE-----
Generated at Thu May 2 12:30:42 2024 by rpki-client on console-fra.rpki-client.org