Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/g_QkSsvUuF1Hn-Tl_L_iucBafw0.roa
File: g_QkSsvUuF1Hn-Tl_L_iucBafw0.roa (raw, json)
Hash identifier: Xc0u5c58ztd3GA9s5zFZg9xgeTImVG0YzkCEC4mdLFA=
Subject key identifier: 83:F4:24:4A:CB:D4:B8:5D:47:9F:E4:E5:FC:BF:E2:B9:C0:5A:7F:0D
Certificate issuer: /CN=19622650048107918adf1b22cdf087c8a834f79c
Certificate serial: 018CC802DEDCD8B2E02A2F97187384EE8D5C
Authority key identifier: 19:62:26:50:04:81:07:91:8A:DF:1B:22:CD:F0:87:C8:A8:34:F7:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GWImUASBB5GK3xsizfCHyKg095w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/g_QkSsvUuF1Hn-Tl_L_iucBafw0.roa
Signing time: Tue 02 Jan 2024 02:31:20 +0000
ROA not before: Tue 02 Jan 2024 02:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206170
IP address blocks: 185.132.127.0/24 maxlen: 24
86.106.25.0/24 maxlen: 24
195.85.54.0/24 maxlen: 24
62.3.44.0/24 maxlen: 24
86.107.103.0/24 maxlen: 24
109.205.246.0/24 maxlen: 24
188.66.60.0/22 maxlen: 22
188.66.62.0/24 maxlen: 24
188.66.60.0/24 maxlen: 24
185.189.48.0/22 maxlen: 22
188.66.61.0/24 maxlen: 24
188.66.63.0/24 maxlen: 24
2a0b:dc80::/29 maxlen: 29
2a12:fe00::/29 maxlen: 29
2a0d:5f47:ffff::/48 maxlen: 48
2001:67c:750::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/GWImUASBB5GK3xsizfCHyKg095w.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/GWImUASBB5GK3xsizfCHyKg095w.mft
rsync://rpki.ripe.net/repository/DEFAULT/GWImUASBB5GK3xsizfCHyKg095w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:de:dc:d8:b2:e0:2a:2f:97:18:73:84:ee:8d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19622650048107918adf1b22cdf087c8a834f79c
Validity
Not Before: Jan 2 02:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83f4244acbd4b85d479fe4e5fcbfe2b9c05a7f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1e:be:65:0a:69:68:f2:32:98:05:4c:04:7d:
2d:b0:04:e6:5f:73:69:25:bc:7b:23:99:9d:33:f0:
c7:71:6c:a3:a3:67:22:93:a9:fd:b1:e9:5c:f7:44:
9e:d8:0c:c8:27:e3:95:5c:66:b5:c6:61:e0:6f:1c:
57:29:89:a0:e0:69:d2:31:52:a6:a1:bf:58:a0:21:
00:26:4e:8a:0b:6d:38:cb:8d:9f:c3:33:35:3e:cf:
17:8d:08:a2:3e:e0:2d:af:51:5a:73:8e:1e:bf:d3:
ad:c9:d4:87:2e:8a:1f:ca:99:8a:8d:4f:39:bf:bd:
9c:e1:04:79:14:d0:1f:dd:9f:f0:dc:11:25:bf:f0:
ab:eb:3a:a5:2c:92:ab:59:31:ea:28:c6:4a:26:83:
d0:a5:ef:37:f8:25:99:f8:60:9f:af:c0:98:98:ce:
07:f2:b5:f3:0e:c2:3f:d6:db:c5:00:a5:a0:5d:2c:
ef:1d:b7:c8:1e:dd:71:c5:5b:8c:df:0e:83:ff:f0:
17:c9:3d:a5:26:6d:1f:60:75:d1:4d:f8:37:0b:b0:
28:60:63:05:66:3d:df:67:6a:18:64:bd:4c:44:ae:
63:06:f5:46:8d:21:8d:92:4f:d4:f5:bc:a0:be:c2:
5a:d7:f0:74:30:7d:5a:ca:18:77:1e:0a:20:72:1f:
ad:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F4:24:4A:CB:D4:B8:5D:47:9F:E4:E5:FC:BF:E2:B9:C0:5A:7F:0D
X509v3 Authority Key Identifier:
keyid:19:62:26:50:04:81:07:91:8A:DF:1B:22:CD:F0:87:C8:A8:34:F7:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GWImUASBB5GK3xsizfCHyKg095w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/g_QkSsvUuF1Hn-Tl_L_iucBafw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/GWImUASBB5GK3xsizfCHyKg095w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.44.0/24
86.106.25.0/24
86.107.103.0/24
109.205.246.0/24
185.132.127.0/24
185.189.48.0/22
188.66.60.0/22
195.85.54.0/24
IPv6:
2001:67c:750::/48
2a0b:dc80::/29
2a0d:5f47:ffff::/48
2a12:fe00::/29
Signature Algorithm: sha256WithRSAEncryption
58:1a:ea:ef:84:5b:0b:3f:98:b4:14:bd:5a:ed:1d:dd:4a:c7:
37:f1:a2:65:6f:dd:0d:59:d2:0c:86:92:30:e7:c6:ea:fc:1b:
56:7f:75:55:d4:6d:65:41:73:4d:1f:42:c1:29:59:db:7b:ad:
23:4a:b9:67:da:ba:cb:44:66:15:99:2b:f0:b5:bf:29:e6:3f:
1d:44:71:de:a9:67:a5:d3:de:66:e6:e8:bb:b1:f3:8a:fc:cc:
15:a0:8a:f2:f7:22:1d:b5:9f:01:d3:79:6e:88:0d:aa:94:7b:
17:1c:39:4e:72:c6:64:39:45:97:2c:7a:d6:6f:2b:45:3b:4a:
3d:52:b1:0d:39:7d:84:b8:24:a3:44:8f:9b:3a:ed:bc:01:0a:
9e:82:7e:38:be:5e:08:f4:bf:1c:28:2c:98:ca:fc:5e:d0:81:
b1:f5:58:cb:0c:f3:94:e5:3a:b5:68:19:94:2d:5d:e6:e9:84:
e2:f2:73:59:58:01:a4:3a:1d:1e:a7:e7:bc:28:9d:83:3c:45:
4f:a9:d3:05:6b:92:c5:a6:f4:cf:d1:ce:66:08:81:77:87:64:
bf:1a:32:87:43:fd:a9:a7:d2:56:1d:6a:ab:cf:80:3d:bb:10:
ce:b3:36:ed:30:b0:8d:71:7e:bc:46:0e:30:c5:f2:17:c7:3c:
c0:46:b1:e0
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAYzIAt7c2LLgKi+XGHOE7o1cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NjIyNjUwMDQ4MTA3OTE4YWRmMWIyMmNkZjA4N2M4YTgz
NGY3OWMwHhcNMjQwMTAyMDIzMTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4M2Y0MjQ0YWNiZDRiODVkNDc5ZmU0ZTVmY2JmZTJiOWMwNWE3ZjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjR6+ZQppaPIymAVMBH0tsATmX3Np
Jbx7I5mdM/DHcWyjo2cik6n9selc90Se2AzIJ+OVXGa1xmHgbxxXKYmg4GnSMVKm
ob9YoCEAJk6KC204y42fwzM1Ps8XjQiiPuAtr1Fac44ev9OtydSHLoofypmKjU85
v72c4QR5FNAf3Z/w3BElv/Cr6zqlLJKrWTHqKMZKJoPQpe83+CWZ+GCfr8CYmM4H
8rXzDsI/1tvFAKWgXSzvHbfIHt1xxVuM3w6D//AXyT2lJm0fYHXRTfg3C7AoYGMF
Zj3fZ2oYZL1MRK5jBvVGjSGNkk/U9bygvsJa1/B0MH1ayhh3Hgogch+tiwIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFIP0JErL1LhdR5/k5fy/4rnAWn8NMB8GA1UdIwQY
MBaAFBliJlAEgQeRit8bIs3wh8ioNPecMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1dJbVVBU0JCNUdLM3hzaXpmQ0h5S2cwOTV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9jNTAyYzEtZjMxNC00MGIxLWEwMjQt
OGQxMGZlZTU4NGZlLzEvZ19Ra1NzdlV1RjFIbi1UbF9MX2l1Y0JhZncwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9jNTAyYzEtZjMxNC00MGIxLWEwMjQtOGQxMGZlZTU4NGZl
LzEvR1dJbVVBU0JCNUdLM3hzaXpmQ0h5S2cwOTV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDA2BAIAATAwAwQAPgMsAwQA
VmoZAwQAVmtnAwQAbc32AwQAuYR/AwQCub0wAwQCvEI8AwQAw1U2MCYEAgACMCAD
BwAgAQZ8B1ADBQMqC9yAAwcAKg1fR///AwUDKhL+ADANBgkqhkiG9w0BAQsFAAOC
AQEAWBrq74RbCz+YtBS9Wu0d3UrHN/GiZW/dDVnSDIaSMOfG6vwbVn91VdRtZUFz
TR9CwSlZ23utI0q5Z9q6y0RmFZkr8LW/KeY/HURx3qlnpdPeZubou7HzivzMFaCK
8vciHbWfAdN5bogNqpR7Fxw5TnLGZDlFlyx61m8rRTtKPVKxDTl9hLgko0SPmzrt
vAEKnoJ+OL5eCPS/HCgsmMr8XtCBsfVYywzzlOU6tWgZlC1d5umE4vJzWVgBpDod
HqfnvCidgzxFT6nTBWuSxab0z9HOZgiBd4dkvxoyh0P9qafSVh1qq8+APbsQzrM2
7TCwjXF+vEYOMMXyF8c8wEax4A==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:48 2024 by rpki-client on console-fra.rpki-client.org